Skip to main content

Last Call Review of draft-ietf-tls-grease-03

Request Review of draft-ietf-tls-grease
Requested revision No specific revision (document currently at 04)
Type Last Call Review
Team Security Area Directorate (secdir)
Deadline 2019-08-12
Requested 2019-07-29
Authors David Benjamin
I-D last updated 2019-08-15
Completed reviews Secdir Last Call review of -03 by Carl Wallace (diff)
Genart Last Call review of -03 by Francis Dupont (diff)
Assignment Reviewer Carl Wallace
State Completed
Request Last Call review on draft-ietf-tls-grease by Security Area Directorate Assigned
Posted at
Reviewed revision 03 (document currently at 04)
Result Ready
Completed 2019-08-15
I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the IESG.
These comments were written primarily for the benefit of the security area
directors.  Document editors and WG chairs should treat these comments
just like any other last call comments.

This document describes a mechanism to prevent extensibility failures in
the TLS ecosystem.  It reserves a set of TLS protocol values that may be
advertised to ensure peers correctly handle unknown values. Aside from a
nit/question, the document is ready.

The question relates to language in section 2. which states: "The values
allocated above are thus no longer available for use as TLS or DTLS
[RFC6347] version numbers." Should this draft be marked as updating 6347
and 8446 as a result? At present it is Informational and does not update
any other specifications.