[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[sasl] AD review comments for draft-ietf-sasl-gs2

From: <Pasi.Eronen at nokia.com>
To: <sasl at ietf.org>
Date: Mon, 26 Oct 2009 14:05:43 +0100

I've now done my AD review for draft-ietf-sasl-gs2-17. Basically,
it looks good, so I've asked the secretariat to start IETF Last Call.

I do have couple of minor comments that can be considered as the
first last call comments:

- I have two questions about Section 8. First, if the GS2 mechanism
doesn't e.g. support confidentiality, wouldn't setting conf_req_flag
cause things to fail? (so it's not really "irrelevant")

- Second, should Section 8 say something about the flags that are not
related to per-message tokens? (deleg, mutual, anon)

- Section 4 should say either that character case (for things like
"p=" and "a=") must be exactly as shown here, or that they're case
insensitive (if nothing is said, RFC 5234 strings are by default case
insensitive, I think).

- In Section 5, I would suggest adding parenthesis to the "gs2-cb-flag"
('gs2-cbind-flag  = ("p=" cb-name) / "n" / "y"') to make it easier
to parse for the reader..

Best regards,
Pasi

Follow-Ups:
- Re: [sasl] AD review comments for draft-ietf-sasl-gs2
  - From: Simon Josefsson
- Re: [sasl] AD review comments for draft-ietf-sasl-gs2
  - From: Nicolas Williams

Prev by Date: Re: [sasl] ID Tracker State Update Notice: draft-ietf-sasl-scram
Next by Date: [sasl] Last Call: draft-ietf-sasl-gs2 (Using GSS-API Mechanisms in SASL: The GS2 Mechanism Family) to Proposed Standard
Previous by thread: Re: [sasl] ID Tracker State Update Notice: draft-ietf-sasl-scram
Next by thread: Re: [sasl] AD review comments for draft-ietf-sasl-gs2
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.