[secdir] secdir review of draft-jabley-sink-arpa-02.txt

Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de> Fri, 25 December 2009 17:00 UTC

Return-Path: <j.schoenwaelder@jacobs-university.de>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id D82A33A67B2; Fri, 25 Dec 2009 09:00:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.471
X-Spam-Level:
X-Spam-Status: No, score=-0.471 tagged_above=-999 required=5 tests=[AWL=-1.422, BAYES_50=0.001, HELO_EQ_DE=0.35, J_CHICKENPOX_44=0.6]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lYrI+QPkJalg; Fri, 25 Dec 2009 09:00:38 -0800 (PST)
Received: from hermes.jacobs-university.de (hermes.jacobs-university.de [212.201.44.23]) by core3.amsl.com (Postfix) with ESMTP id 9A5EB3A62C1; Fri, 25 Dec 2009 09:00:34 -0800 (PST)
Received: from localhost (demetrius4.jacobs-university.de [212.201.44.49]) by hermes.jacobs-university.de (Postfix) with ESMTP id 16CD2C000D; Fri, 25 Dec 2009 18:00:16 +0100 (CET)
X-Virus-Scanned: amavisd-new at jacobs-university.de
Received: from hermes.jacobs-university.de ([212.201.44.23]) by localhost (demetrius4.jacobs-university.de [212.201.44.32]) (amavisd-new, port 10024) with ESMTP id 3+i4JV6Pk91I; Fri, 25 Dec 2009 18:00:14 +0100 (CET)
Received: from elstar.local (elstar.iuhb02.iu-bremen.de [10.50.231.133]) by hermes.jacobs-university.de (Postfix) with ESMTP id 6E20EC0003; Fri, 25 Dec 2009 18:00:14 +0100 (CET)
Received: by elstar.local (Postfix, from userid 501) id 0201FFA14F6; Fri, 25 Dec 2009 18:00:10 +0100 (CET)
Date: Fri, 25 Dec 2009 18:00:10 +0100
From: Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de>
To: joe.abley@icann.org, ogud@ogud.com
Message-ID: <20091225170010.GA4657@elstar.local>
Mail-Followup-To: joe.abley@icann.org, ogud@ogud.com, iesg@ietf.org, secdir@ietf.org
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
User-Agent: Mutt/1.5.20 (2009-06-14)
Cc: iesg@ietf.org, secdir@ietf.org
Subject: [secdir] secdir review of draft-jabley-sink-arpa-02.txt
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
Reply-To: Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de>
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 25 Dec 2009 17:00:38 -0000

I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the
IESG.  These comments were written primarily for the benefit of the
security area directors.  Document editors and WG chairs should treat
these comments just like any other last call comments.

The document creates an IANA registry called "ARPA Reserved Names" and
allocates the name "sink.arpa", which is guaranteed to be a never
existing name. The security considerations briefly discuss what could
happen if the name suddenly would exist and I am fine with the text.

On the editorial side, I am wondering why the authors use ARPA and
SINK.ARPA instead of the quoted writing style ("arpa" and "sink.arpa")
for DNS names, as used in RFC 2606 and RFC 3172. Note that section 5.1
suddenly uses "arpa" - if there is a subtle semantic difference
between ARPA and "arpa" please make it clear; otherwise I prefer a
single consistent writing style.

/js

-- 
Juergen Schoenwaelder           Jacobs University Bremen gGmbH
Phone: +49 421 200 3587         Campus Ring 1, 28759 Bremen, Germany
Fax:   +49 421 200 3103         <http://www.jacobs-university.de/>