Telechat Review of draft-ietf-uta-tls-attacks-05
review-ietf-uta-tls-attacks-05-secdir-telechat-harrington-2014-10-30-00

Request Review of draft-ietf-uta-tls-attacks
Requested rev. no specific revision
Type Telechat Review
Team Security Area Directorate (secdir)
Deadline 2014-10-14
Requested 2014-10-16
Other Reviews Genart Last Call review of -04 by Meral Shirazipour (diff)
Genart Last Call review of -04 by Meral Shirazipour (diff)
Opsdir Last Call review of -04 by David Harrington (diff)
Review State Completed
Reviewer David Harrington
Review review-ietf-uta-tls-attacks-05-secdir-telechat-harrington-2014-10-30
Posted at https://www.ietf.org/mail-archive/web/secdir/current/msg05174.html
Reviewed rev. 05
Review result Has Nits
Last updated 2014-10-30

Review
review-ietf-uta-tls-attacks-05-secdir-telechat-harrington-2014-10-30

Hi,

I have reviewed this document as part of the security directorate's 
ongoing effort to review all IETF documents being processed by the 
IESG.  These comments were written primarily for the benefit of the 
security area directors.  Document editors and WG chairs should treat 
these comments just like any other last call comments.

Abstract:

Over the last few years there have been several serious attacks on
   Transport Layer Security (TLS), including attacks on its most
   commonly used ciphers and modes of operation.  This document
   summarizes these attacks, with the goal of motivating generic and
   protocol-specific recommendations on the usage of TLS and Datagram
   TLS (DTLS).

I consider this document ready for publication.

This document is an Information draft, summarizing somer of the known attacks on TLS and DTLS.

I agree with the security considerations section statement that this document has no security implications.

A few editorial nits:

s/

This attacks summarized/The attacks summarized/

s/

the Klima attack relies on a version-

check oracle is only mitigated by TLS 1.1./

the Klima attack relies on a version-

check oracle and is only mitigated by TLS 1.1./ 




David Harrington

ietfdbh at comcast.net