[secdir] secdir review of draft-ietf-tcpm-rfc1948bis-01
Joe Salowey <jsalowey@cisco.com> Tue, 01 November 2011 05:45 UTC
Return-Path: <jsalowey@cisco.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9325B11E8098; Mon, 31 Oct 2011 22:45:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.349
X-Spam-Level:
X-Spam-Status: No, score=-106.349 tagged_above=-999 required=5 tests=[AWL=0.250, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kyGQCtPcD9TM; Mon, 31 Oct 2011 22:45:00 -0700 (PDT)
Received: from mtv-iport-1.cisco.com (mtv-iport-1.cisco.com [173.36.130.12]) by ietfa.amsl.com (Postfix) with ESMTP id 24F3721F8DFC; Mon, 31 Oct 2011 22:45:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=jsalowey@cisco.com; l=719; q=dns/txt; s=iport; t=1320126300; x=1321335900; h=from:content-transfer-encoding:subject:date:message-id: to:mime-version; bh=sZp9vSghWfN2lSqQkH0Mm/oQykOEun4zv2iYPNWthos=; b=bulkuNy8xZD0UBM3m4winSg6zF2UTNxvRTaMvgtdCllU4WdmspCQ6UKw F8CYiQWn2YzdbTaX8VHFlPrG+x+505+ctZWecA1Oa80eJXb2knZoQ2Fiz r5dZ7mmzq3CYJ1qiE3PahmTW7bfDmnSgQXIeIIuZL8zUuc/LLSGBaP63M Q=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AvwEAE2Gr06rRDoJ/2dsb2JhbABDqTeBBYILASeBfQE0nV0BnkSIIWEEiAaMCYUtjFI
X-IronPort-AV: E=Sophos;i="4.69,436,1315180800"; d="scan'208";a="10318547"
Received: from mtv-core-4.cisco.com ([171.68.58.9]) by mtv-iport-1.cisco.com with ESMTP; 01 Nov 2011 05:44:59 +0000
Received: from [10.33.251.254] ([10.33.251.254]) by mtv-core-4.cisco.com (8.14.3/8.14.3) with ESMTP id pA15iw8d010154; Tue, 1 Nov 2011 05:44:59 GMT
From: Joe Salowey <jsalowey@cisco.com>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Date: Mon, 31 Oct 2011 22:45:20 -0700
Message-Id: <FF1A1F63-991A-49D2-92D5-90F92A8E4971@cisco.com>
To: secdir@ietf.org, The IESG <iesg@ietf.org>, draft-ietf-tcpm-rfc1948bis.all@tools.ietf.org
Mime-Version: 1.0 (Apple Message framework v1084)
X-Mailer: Apple Mail (2.1084)
Subject: [secdir] secdir review of draft-ietf-tcpm-rfc1948bis-01
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 01 Nov 2011 05:45:00 -0000
I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. This document is meant to put the ISN generation algorithm from RFC 1948 on standards track. I did not find any major issues with the document. In section 3 there is a repeated "the" in the first sentence of the second paragraph. I like that the document provides rationale why MD5 is okay to use as a function for the generation. Cheers, Joe