Last Call Review of draft-ietf-sidrops-rpki-has-no-identity-04
review-ietf-sidrops-rpki-has-no-identity-04-genart-lc-joras-2022-03-16-00
Request | Review of | draft-ietf-sidrops-rpki-has-no-identity |
---|---|---|
Requested revision | No specific revision (document currently at 07) | |
Type | Last Call Review | |
Team | General Area Review Team (Gen-ART) (genart) | |
Deadline | 2022-03-18 | |
Requested | 2022-03-04 | |
Authors | Randy Bush , Russ Housley | |
I-D last updated | 2022-03-16 | |
Completed reviews |
Artart Last Call review of -04
by Tim Bray
(diff)
Rtgdir Telechat review of -05 by Martin Vigoureux (diff) Secdir Last Call review of -04 by Kyle Rose (diff) Genart Last Call review of -04 by Matt Joras (diff) Artart Telechat review of -05 by Tim Bray (diff) |
|
Assignment | Reviewer | Matt Joras |
State | Completed | |
Request | Last Call review on draft-ietf-sidrops-rpki-has-no-identity by General Area Review Team (Gen-ART) Assigned | |
Posted at | https://mailarchive.ietf.org/arch/msg/gen-art/XxrooGApKU44C2d967vyx73Ydjw | |
Reviewed revision | 04 (document currently at 07) | |
Result | Ready w/nits | |
Completed | 2022-03-16 |
review-ietf-sidrops-rpki-has-no-identity-04-genart-lc-joras-2022-03-16-00
I am the assigned Gen-ART reviewer for this draft. The General Area Review Team (Gen-ART) reviews all IETF documents being processed by the IESG for the IETF Chair. Please treat these comments just like any other last call comments. For more information, please see the FAQ at <https://trac.ietf.org/trac/gen/wiki/GenArtfaq>. Document: draft-ietf-sidrops-rpki-has-no-identity-?? Reviewer: Matt Joras Review Date: 2022-03-16 IETF LC End Date: 2022-03-18 IESG Telechat date: Not scheduled for a telechat Nits/editorial comments: 2. The Bottom Line This choice of idiom for a section title feels a bit weird. I understand what's trying to be conveyed but I have to imagine there's a way to do it without relying on an idiom. That the RPKI does not authenticate real-world identity is a feature, not a bug. If it tried to do so, aside from the liability, it would end in a world of complexity with no proof of termination, as X.400 learned. Again, "is a feature, not a bug" feels gratuitous, I would consider simply stating a fact (e.g. "RPKI does not authenticate real-world identities. This was a deliberate choice in its design") rather than relying on this expression. If it tried to do so, aside from the liability, it would end in a world of complexity with no proof of termination, as X.400 learned. What "liability" exactly is this referring to? Referencing X.400 in this way without an actual reference feels wrong. Similar to above, "world of complexity", is another expression that feels out of place in this document when a more straightforward statement on complexity would do.