Telechat Review of draft-ietf-tls-tls12-frozen-06
review-ietf-tls-tls12-frozen-06-opsdir-telechat-linkova-2025-03-15-00

Request Review of draft-ietf-tls-tls12-frozen
Requested revision No specific revision (document currently at 08)
Type Telechat Review
Team Ops Directorate (opsdir)
Deadline 2025-03-24
Requested 2025-03-09
Requested by Mohamed Boucadair
Authors Rich Salz , Nimrod Aviram
I-D last updated 2025-04-03 (Latest revision 2025-04-03)
Completed reviews Tsvart IETF Last Call review of -05 by Yoshifumi Nishida (diff)
Genart IETF Last Call review of -05 by Joel M. Halpern (diff)
Secdir IETF Last Call review of -06 by Chris M. Lonvick (diff)
Opsdir Telechat review of -06 by Jen Linkova (diff)
Comments 
Please focus on the deployment impacts/implications. Thank you.
Assignment Reviewer Jen Linkova
State Completed
Request Telechat review on draft-ietf-tls-tls12-frozen by Ops Directorate Assigned
Posted at https://mailarchive.ietf.org/arch/msg/ops-dir/yGpADJuEJ79yhQSrbTPRCZcn1jk
Reviewed revision 06 (document currently at 08)
Result Ready
Completed 2025-03-15
review-ietf-tls-tls12-frozen-06-opsdir-telechat-linkova-2025-03-15-00
The document is clearly written and easy to understand even by people who knows
very little about TLS (like this reviewer ;) I think the document has no
negative impact on deployments: quite the opposite, it might motivate people to
move to TLS1.3.

I think the document is ready. I do have a minor editorial comment, feel free
to address or ignore:

"Use of TLS 1.3 [TLS13] is growing, and it fixes most known deficiencies with
TLS 1.2 [TLS12], such as encrypting more of the traffic so that it is not
readable by outsiders and removing most cryptographic primitives now considered
weak"

I'm not a native speaker but I'm afraid this sentence may be read as
'encrypting more of the traffic' and 'removing primitives" are examples of
known deficiencies, not fixes. Maybe rephrase as '...it fixes most known
deficiencies with TLS 1.2 [TLS12]. In particular, TLS 1.3 encrypting more..."?