[secdir] Secdir last call review of draft-ietf-extra-imap-unauth-00
David Waltermire <david.waltermire@nist.gov> Tue, 29 May 2018 17:50 UTC
Return-Path: <david.waltermire@nist.gov>
X-Original-To: secdir@ietf.org
Delivered-To: secdir@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 4280A12EAEC; Tue, 29 May 2018 10:50:12 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: David Waltermire <david.waltermire@nist.gov>
To: secdir@ietf.org
Cc: extra@ietf.org, ietf@ietf.org, draft-ietf-extra-imap-unauth.all@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 6.81.1
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <152761621220.30011.11575332790456344157@ietfa.amsl.com>
Date: Tue, 29 May 2018 10:50:12 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/t5w7I_P-Gxoux9jzV9Tv2c1SXTU>
Subject: [secdir] Secdir last call review of draft-ietf-extra-imap-unauth-00
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.22
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 29 May 2018 17:50:12 -0000
Reviewer: David Waltermire Review result: Has Nits This standards track draft adds a new state transition to IMAP allowing the current authentication context to be reset to an non-authenticated state using the UNAUTHENTICATE command. This allows a client to issue the IMAP AUTHENTICATE command with administrative credentials to act on behalf of other users, without having to create a new connection for each user, providing for greater efficiency. This draft appears to be ready for publication, with some relatively minor nits to improve readability. Section 4.1: The requirements in this list go beyond the stated requirement to reset connection state. Some text should be added to make it clear that the list defines additional behavior to be followed. Something like the following could be used to address this: s/This lists some IMAP extensions that have connection state that/The connection state for the following list of IMAP extensions/ Append to the end of the paragraph "Additional requirements apply to specific extensions as follows:".
- [secdir] Secdir last call review of draft-ietf-ex… David Waltermire