Last Call Review of draft-ietf-ltans-xmlers-
review-ietf-ltans-xmlers-secdir-lc-emery-2011-01-10-00
| Request | Review of | draft-ietf-ltans-xmlers |
|---|---|---|
| Requested revision | No specific revision (document currently at 11) | |
| Type | Last Call Review | |
| Team | Security Area Directorate (secdir) | |
| Deadline | 2011-01-17 | |
| Requested | 2010-12-28 | |
| Authors | A. Jerman Blazic , Tobias Gondrom , Svetlana Saljic | |
| I-D last updated | 2011-01-10 | |
| Completed reviews |
Secdir Last Call review of -??
by Shawn M Emery
|
|
| Assignment | Reviewer | Shawn M Emery |
| State | Completed | |
| Request | Last Call review on draft-ietf-ltans-xmlers by Security Area Directorate Assigned | |
| Completed | 2011-01-10 |
review-ietf-ltans-xmlers-secdir-lc-emery-2011-01-10-00
I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. This draft outlines XML schema and rules for Evidence Record Syntax (ERS). The security considerations section does exist and states that tracking security suitability of cryptographic algorithms is out of scope for this document. It goes on to say that different Evidence Records should be generated for the same data object in case a particular algorithm becomes weak or an attack is discovered. On secure time stamps; the draft gives guidance on the strength of the algorithm to use between normal, archival, and renewal purposes. I agree with the above points and do not find other issues in the draft. General comments: None. Editorial comments: None. Shawn. --