Last Call Review of draft-ietf-lamps-ocsp-nonce-update-04
review-ietf-lamps-ocsp-nonce-update-04-artart-lc-fenton-2024-04-01-00
Request | Review of | draft-ietf-lamps-ocsp-nonce-update |
---|---|---|
Requested revision | No specific revision (document currently at 11) | |
Type | Last Call Review | |
Team | ART Area Review Team (artart) | |
Deadline | 2024-04-03 | |
Requested | 2024-03-20 | |
Authors | himanshu sharma | |
I-D last updated | 2024-04-01 | |
Completed reviews |
Secdir Last Call review of -04
by Joseph A. Salowey
(diff)
Secdir Telechat review of -07 by Joseph A. Salowey (diff) Artart Telechat review of -06 by Jim Fenton (diff) Opsdir Last Call review of -05 by Susan Hares (diff) Artart Last Call review of -04 by Jim Fenton (diff) Genart Last Call review of -05 by Ines Robles (diff) |
|
Assignment | Reviewer | Jim Fenton |
State | Completed | |
Request | Last Call review on draft-ietf-lamps-ocsp-nonce-update by ART Area Review Team Assigned | |
Posted at | https://mailarchive.ietf.org/arch/msg/art/dtDzAxFGJGhyzEj6cZUXCnLLUIo | |
Reviewed revision | 04 (document currently at 11) | |
Result | Almost ready | |
Completed | 2024-04-01 |
review-ietf-lamps-ocsp-nonce-update-04-artart-lc-fenton-2024-04-01-00
I am the designated ART ART reviewer for draft-ietf-lamps-ocsp-nonce-update-04. Status: Almost ready Comments: Section 1, suggest replacing "[RFC8954] enforce the maximum" to "[RFC8954] limits the maximum" Section 2, suggest replacing "enforce" with "limit". Section 2.1 paragraph 1 can be deleted since this is replacing RFC8954 in its entirety. Section 2.1 paragraph 3: "An OCSP client that implements this document SHOULD use a minimum length of 32 octets..." while RFC 8954 says, "Newer OCSP clients that support this document MUST use a length of 32 octets..." It seems like this requirement has been weakened; is there a reason for that? Also in that paragraph, rather than "in excess of what is permitted by RFC 8954" suggest saying "in excess of the limit of 32 octets that was specified in RFC 8954." Section 2.1 paragraph 4: replace "...MUST accept Nonce octets length of at least 16 octets..." with "...MUST accept Nonce lengths of at least 16 octets..." Section 2.1 paragraph 5: replace "Nonce octet length" with "Nonce length" In the example, the object identifier, in addition to Offset and Length, is in decimal. I don't have the expertise in ASN.1 to fully review Appendix A; hopefully another reviewer can check that. IDNITS points out that you have a normative reference to RFC 5912, which is informational. I'm not sure the reference is really normative, though.