[secdir] secdir review of draft-ietf-sipcore-199-02
Samuel Weiler <weiler@watson.org> Tue, 02 February 2010 14:56 UTC
Return-Path: <weiler@watson.org>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 7FB533A6951; Tue, 2 Feb 2010 06:56:13 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xCZnzxWpWgCY; Tue, 2 Feb 2010 06:56:12 -0800 (PST)
Received: from fledge.watson.org (fledge.watson.org [65.122.17.41]) by core3.amsl.com (Postfix) with ESMTP id 9ECE13A6963; Tue, 2 Feb 2010 06:56:12 -0800 (PST)
Received: from fledge.watson.org (localhost.watson.org [127.0.0.1]) by fledge.watson.org (8.14.3/8.14.3) with ESMTP id o12EuoPd085943; Tue, 2 Feb 2010 09:56:50 -0500 (EST) (envelope-from weiler@watson.org)
Received: from localhost (weiler@localhost) by fledge.watson.org (8.14.3/8.14.3/Submit) with ESMTP id o12EuouO085940; Tue, 2 Feb 2010 09:56:50 -0500 (EST) (envelope-from weiler@watson.org)
X-Authentication-Warning: fledge.watson.org: weiler owned process doing -bs
Date: Tue, 02 Feb 2010 09:56:50 -0500
From: Samuel Weiler <weiler@watson.org>
To: secdir@ietf.org, iesg@ietf.org
Message-ID: <alpine.BSF.2.00.1002020943030.81689@fledge.watson.org>
User-Agent: Alpine 2.00 (BSF 1167 2008-08-23)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; format="flowed"; charset="US-ASCII"
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.2.3 (fledge.watson.org [127.0.0.1]); Tue, 02 Feb 2010 09:56:50 -0500 (EST)
Cc: draft-ietf-sipcore-199@tools.ietf.org, sipcore-chairs@tools.ietf.org
Subject: [secdir] secdir review of draft-ietf-sipcore-199-02
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 Feb 2010 14:56:13 -0000
I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. Document editors and WG chairs should treat these comments just like any other last call comments. This defines an intermediate "we're done" response, allowing parties to tear down some state, while still requiring a final response. The obvious risk (forging these, just like forging a TCP reset) is documented. Even though the point of the 199 response is to allow early resource release, I notice that some state is still being maintained for these sessions. It might be worth explicitly reminding readers of when they can timeout (is there a timeout specified somewhere?). I'm also a little worried about the implications of one party or another trying to continue the dialog, perhaps maliciously, after sending or receiving one of these. What if one of these were used to disable a monitoring or billing system, but the parties continued to use the open session? (Compare to sending a weak C-tone on a wiretapped PSTN line.) Editorial: Please expand the acronyms in the abstract. (The id-nits checklist says the abstract "Should be meaningful to someone not versed in the technology; most abbreviations must be expanded on first use.") -- Sam
- [secdir] secdir review of draft-ietf-sipcore-199-… Samuel Weiler
- Re: [secdir] secdir review of draft-ietf-sipcore-… Christer Holmberg