[secdir] Secdir last call review of draft-ietf-payload-rtp-vc2hq-05

Joseph Salowey <joe@salowey.net> Mon, 14 May 2018 03:48 UTC

Return-Path: <joe@salowey.net>
X-Original-To: secdir@ietf.org
Delivered-To: secdir@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 98A8C12946D; Sun, 13 May 2018 20:48:51 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Joseph Salowey <joe@salowey.net>
To: <secdir@ietf.org>
Cc: iesg@ietf.org, payload@ietf.org, draft-ietf-payload-rtp-vc2hq.all@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 6.80.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <152626973155.10254.510935141360676360@ietfa.amsl.com>
Date: Sun, 13 May 2018 20:48:51 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/x4ElwNmoWdHq0y2tmVsc_Mynaio>
Subject: [secdir] Secdir last call review of draft-ietf-payload-rtp-vc2hq-05
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.22
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 14 May 2018 03:48:52 -0000

Reviewer: Joseph Salowey
Review result: Ready

I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the
IESG.  These comments were written primarily for the benefit of the
security area directors.  Document editors and WG chairs should treat
these comments just like any other last call comments.

The summary of the review is the document is ready.

The security considerations seem well thought out and are follow the guidelines
of RFC7202 for RTP payload definitions.  I like the fact that it includes some
information on possible implementation pitfalls.