[lamps] Genart last call review of draft-ietf-lamps-rfc5750-bis-05

Ines Robles <mariainesrobles@googlemail.com> Fri, 27 April 2018 11:28 UTC

Return-Path: <mariainesrobles@googlemail.com>
X-Original-To: spasm@ietf.org
Delivered-To: spasm@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 65197126C89; Fri, 27 Apr 2018 04:28:16 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Ines Robles <mariainesrobles@googlemail.com>
To: gen-art@ietf.org
Cc: spasm@ietf.org, draft-ietf-lamps-rfc5750-bis.all@ietf.org, ietf@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 6.79.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <152482849638.5933.11114167602347254978@ietfa.amsl.com>
Date: Fri, 27 Apr 2018 04:28:16 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/S_88nYQ9UHGbGGqBrnVyqRTu9W4>
Subject: [lamps] Genart last call review of draft-ietf-lamps-rfc5750-bis-05
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.22
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 27 Apr 2018 11:28:16 -0000

Reviewer: Ines Robles
Review result: Ready with Issues


I am the assigned Gen-ART reviewer for this draft. The General Area
Review Team (Gen-ART) reviews all IETF documents being processed
by the IESG for the IETF Chair.  Please treat these comments just
like any other last call comments.

For more information, please see the FAQ at


Document: draft-ietf-lamps-rfc5750-bis-05
Reviewer: Ines Robles
Review Date: 27-04-2018
IETF LC End Date:  27-04-2018
IESG Telechat date: ---


I believe the draft is technically good. This document is well written and
clear to understand. Some minor concerns are mentioned that should be resolved
before publication.

Major issues: No major issues found.

Minor issues:

Section 1.6:

    It would be nice to start the section with some text like "This document
    obsoletes 5750 due to the addition of the following information...."

Section 2.3:

    "but SHOULD use some other mechanism to determine ...." => It would be nice
    to mention some examples of the other mechanism

    "...but SHOULD use some other mechanism (such as ....) to determine..."

Section 4:

    Related to this:
    "Another method under consideration by the IETF is to provide certificate
    retrieval services as part of the existing Domain Name System (DNS)"

    - This text seems to be out of the date (since belongs as well to RFC5750
    (2010)), maybe it would be nice to re-write it (e.g. method under
    consideration => method approved) and add a reference of the proposed
    methods. Would it be RFC 8162 [1] a good reference for this topic?

[1] https://tools.ietf.org/html/rfc8162:  Using Secure DNS to Associate
Certificates with Domain Names for S/MIME

Nits/editorial comments:

Section 2.3: CertificateSet --> Certificate Set

Section 4.4.1: basicConstraints --> basic Constraints

Thanks for this document!