Last Call Review of draft-ietf-sidr-signed-object-
review-ietf-sidr-signed-object-secdir-lc-yu-2011-04-06-00
| Request | Review of | draft-ietf-sidr-signed-object |
|---|---|---|
| Requested revision | No specific revision (document currently at 04) | |
| Type | IETF Last Call Review | |
| Team | Security Area Directorate (secdir) | |
| Deadline | 2011-03-23 | |
| Requested | 2011-03-11 | |
| Authors | Matt Lepinski , Andrew Chi , Stephen Kent | |
| I-D last updated | 2015-10-14 (Latest revision 2011-05-10) | |
| Completed reviews |
Secdir IETF Last Call review of -??
by Taylor Yu
|
|
| Assignment | Reviewer | Taylor Yu |
| State | Completed | |
| Request | IETF Last Call review on draft-ietf-sidr-signed-object by Security Area Directorate Assigned | |
| Completed | 2011-04-06 |
review-ietf-sidr-signed-object-secdir-lc-yu-2011-04-06-00
This document defines a profile of the Cryptographic Message Syntax (CMS) signed-data object for use with the Resource Public Key Infrastructure (RPKI). I find Security Considerations section to be reasonable; it describes the expected security properties of RPKI signed objects (including a lack of confidentiality), and rightfully defers to the CMS specification for additional security considerations. Someone more familiar with CMS than I am should check whether the structure version numbers correspond to those specified in RFC 5652; they appear correct to me, though.