[secdir] Secdir last call review of draft-ietf-dnsop-rfc7958bis-03
Klaas Wierenga via Datatracker <noreply@ietf.org> Thu, 01 August 2024 18:33 UTC
Return-Path: <noreply@ietf.org>
X-Original-To: secdir@ietf.org
Delivered-To: secdir@ietfa.amsl.com
Received: from [10.244.2.81] (unknown [104.131.183.230]) by ietfa.amsl.com (Postfix) with ESMTP id ED8C3C14F6A9; Thu, 1 Aug 2024 11:33:17 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Klaas Wierenga via Datatracker <noreply@ietf.org>
To: secdir@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 12.19.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <172253719755.2383132.16085097683731517707@dt-datatracker-659f84ff76-9wqgv>
Date: Thu, 01 Aug 2024 11:33:17 -0700
Message-ID-Hash: NHL65LJKWHOACPYFQOY3W2IJF3U4X4LC
X-Message-ID-Hash: NHL65LJKWHOACPYFQOY3W2IJF3U4X4LC
X-MailFrom: noreply@ietf.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-secdir.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: dnsop@ietf.org, draft-ietf-dnsop-rfc7958bis.all@ietf.org, last-call@ietf.org
X-Mailman-Version: 3.3.9rc4
Reply-To: Klaas Wierenga <klaas@wierenga.net>
Subject: [secdir] Secdir last call review of draft-ietf-dnsop-rfc7958bis-03
List-Id: Security Area Directorate <secdir.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/zKfRSOCzOHwDO7yFER-7sNNN6O0>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Owner: <mailto:secdir-owner@ietf.org>
List-Post: <mailto:secdir@ietf.org>
List-Subscribe: <mailto:secdir-join@ietf.org>
List-Unsubscribe: <mailto:secdir-leave@ietf.org>
Reviewer: Klaas Wierenga Review result: Has Nits The draft reads well and is clear. I have one question that is maybe worth answering in the security considerations. What is the impact of retrieving the trust anchors over http instead of https? Does that lead to a risk of ending up with an invalid set of trust anchors? Klaas
- [secdir] Re: Secdir last call review of draft-iet… Klaas Wierenga
- [secdir] Secdir last call review of draft-ietf-dn… Klaas Wierenga via Datatracker
- [secdir] Re: Secdir last call review of draft-iet… Joe Abley
- [secdir] Re: [Ext] Secdir last call review of dra… Paul Hoffman