[secdir] SecDir review of draft-ietf-tcpm-initcwnd-06

"Waltermire, David A." <david.waltermire@nist.gov> Thu, 13 December 2012 16:59 UTC

Return-Path: <david.waltermire@nist.gov>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id C6CD221F8AF3; Thu, 13 Dec 2012 08:59:07 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.43
X-Spam-Status: No, score=-5.43 tagged_above=-999 required=5 tests=[AWL=-0.585, BAYES_00=-2.599, HTML_MESSAGE=0.001, MIME_BASE64_TEXT=1.753, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id gSo5mKPPwxbY; Thu, 13 Dec 2012 08:59:06 -0800 (PST)
Received: from wsget2.nist.gov (wsget2.nist.gov []) by ietfa.amsl.com (Postfix) with ESMTP id 1726921F8422; Thu, 13 Dec 2012 08:59:04 -0800 (PST)
Received: from WSXGHUB2.xchange.nist.gov ( by wsget2.nist.gov ( with Microsoft SMTP Server (TLS) id 14.2.318.4; Thu, 13 Dec 2012 11:58:33 -0500
Received: from MBCLUSTER.xchange.nist.gov ([fe80::d479:3188:aec0:cb66]) by WSXGHUB2.xchange.nist.gov ([]) with mapi; Thu, 13 Dec 2012 11:58:37 -0500
From: "Waltermire, David A." <david.waltermire@nist.gov>
To: "'iesg@ietf.org'" <iesg@ietf.org>, "'secdir@ietf.org'" <secdir@ietf.org>, "draft-ietf-tcpm-initcwnd-06.all@tools.ietf.org" <draft-ietf-tcpm-initcwnd-06.all@tools.ietf.org>
Date: Thu, 13 Dec 2012 11:58:36 -0500
Thread-Topic: SecDir review of draft-ietf-tcpm-initcwnd-06
Thread-Index: Ac3ZS4cWJaBHYgpjRj2+t+yrpmW8gw==
Message-ID: <D7A0423E5E193F40BE6E94126930C4930BAD85C5D8@MBCLUSTER.xchange.nist.gov>
Accept-Language: en-US
Content-Language: en-US
acceptlanguage: en-US
Content-Type: multipart/alternative; boundary="_000_D7A0423E5E193F40BE6E94126930C4930BAD85C5D8MBCLUSTERxcha_"
MIME-Version: 1.0
Subject: [secdir] SecDir review of draft-ietf-tcpm-initcwnd-06
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Dec 2012 16:59:08 -0000

I have reviewed this document as part of the security directorate's  ongoing effort to review all IETF documents being processed by the IESG.  These comments were written primarily for the benefit of the security area directors.  Document editors and WG chairs should treat these comments just like any other last call comments.


This document captures a proposal to raise the upper bound on the TCP's initial window to 10 segments to address the evolving scale of the internet improving the performance of many web services.  It presents the advantages and disadvantages of increasing the initial window size based on large-scale experimental findings.

In general I found this draft to be very clear on the basis for this change and the protocol implications.  I see no additional security-related concerns.


David Waltermire