Last Call Review of draft-ietf-tram-auth-problems-05
review-ietf-tram-auth-problems-05-secdir-lc-cooley-2014-08-21-00

Request Review of draft-ietf-tram-auth-problems
Requested rev. no specific revision
Type Last Call Review
Team Security Area Directorate (secdir)
Deadline 2014-08-19
Requested 2014-07-24
Other Reviews Genart Last Call review of -02 by Brian Carpenter (diff)
Genart Telechat review of -04 by Brian Carpenter (diff)
Opsdir Last Call review of -04 by Tina Tsou (diff)
Review State Completed
Reviewer Shaun Cooley
Review review-ietf-tram-auth-problems-05-secdir-lc-cooley-2014-08-21
Posted at http://www.ietf.org/mail-archive/web/secdir/current/msg04981.html
Reviewed rev. 05
Review result Ready
Draft last updated 2014-08-21
Review completed: 2014-08-21

Review
review-ietf-tram-auth-problems-05-secdir-lc-cooley-2014-08-21

I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG.  These comments were written primarily for the benefit of the security area directors.  Document editors and WG chairs should treat these comments just like any other last call comments.

This document describes security and practical problems with the current Session Traversal Utilities for NAT (STUN) authentication for Traversal Using Relays around NAT (TURN) messages.

I consider this document to be READY for publication.

-Shaun