Last Call Review of draft-ietf-sidr-signed-object-
review-ietf-sidr-signed-object-secdir-lc-yu-2011-04-06-00
Request | Review of | draft-ietf-sidr-signed-object |
---|---|---|
Requested revision | No specific revision (document currently at 04) | |
Type | Last Call Review | |
Team | Security Area Directorate (secdir) | |
Deadline | 2011-03-23 | |
Requested | 2011-03-11 | |
Authors | Matt Lepinski , Andrew Chi , Stephen Kent | |
I-D last updated | 2011-04-06 | |
Completed reviews |
Secdir Last Call review of -??
by Taylor Yu
|
|
Assignment | Reviewer | Taylor Yu |
State | Completed | |
Request | Last Call review on draft-ietf-sidr-signed-object by Security Area Directorate Assigned | |
Completed | 2011-04-06 |
review-ietf-sidr-signed-object-secdir-lc-yu-2011-04-06-00
This document defines a profile of the Cryptographic Message Syntax (CMS) signed-data object for use with the Resource Public Key Infrastructure (RPKI). I find Security Considerations section to be reasonable; it describes the expected security properties of RPKI signed objects (including a lack of confidentiality), and rightfully defers to the CMS specification for additional security considerations. Someone more familiar with CMS than I am should check whether the structure version numbers correspond to those specified in RFC 5652; they appear correct to me, though.