Last Call Review of draft-ietf-fecframe-simple-rs-
review-ietf-fecframe-simple-rs-secdir-lc-hutzelman-2012-12-20-00

I have reviewed this document as part of the security directorate's 
ongoing effort to review all IETF documents being processed by the 
IESG.  These comments were written primarily for the benefit of the 
security area directors.  Document editors and WG chairs should treat 
these comments just like any other last call comments.

This document defines a forward error correction scheme for use with the
FECFRAME framework, based on Reed-Solomon codes over finite fields of
order 2^m.  However, this is mostly a protocol document; the actual FEC
code is defined in RFC5510.

In discussing security considerations, this document relies heavily on
the security discussion in the already-published FEC framework document
(RFC6363).  It also contains a reasonably complete discussion of issues
that can arise if an attacker can modify the encoding parameters.  These
generally amount to resource exhaustion if a receiver accepts an overly
large parameter, or denial of service as a result of a receiver being
unable to recover data due to misinterpretation of the code.


I found that this document, especially the introduction, did not read
very smoothly.  However, the technical content was entirely
understandable, despite my abstract algebra being a bit rusty.


-- Jeff