Skip to main content

Last Call Review of draft-pd-dispatch-msrp-websocket-12

Request Review of draft-pd-dispatch-msrp-websocket
Requested revision No specific revision (document currently at 15)
Type Last Call Review
Team Security Area Directorate (secdir)
Deadline 2016-07-08
Requested 2016-06-17
Authors Peter Dunkley , Gavin Llewellyn , Victor Pascual , Gonzalo Salgueiro , Ram R
I-D last updated 2016-07-06
Completed reviews Genart Last Call review of -12 by Joel M. Halpern (diff)
Secdir Last Call review of -12 by Donald E. Eastlake 3rd (diff)
Opsdir Last Call review of -10 by Fred Baker (diff)
Assignment Reviewer Donald E. Eastlake 3rd
State Completed
Request Last Call review on draft-pd-dispatch-msrp-websocket by Security Area Directorate Assigned
Reviewed revision 12 (document currently at 15)
Result Has nits
Completed 2016-07-06
I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the
IESG.  Document editors and WG chairs should treat these comments just
like any other last call comments.

This draft specifies a new WebSocket sub-protocol as a reliable
transport mechanism between MSRP (Message Session Relay Protocol)
clients and relays. It depends on the use of secure WebSocket
connections (TLS) and existing authentication mechanisms. I am not
particularly familiar with WebSockets or MSRP but the Security
Considerations section looks adequate to me.

There are a lot of example message flows in this document that i don't
really know enough to evaluate.


It is peculiar that Sections 10, Section 11, and Appendix A have only
a single subsection aa their entire content. In the case of Sections
10 and 11, I think the 10.1 and 11.1 headers should just be
eliminated. In the case of Appendix A, probably the A.1 heading should
be moved up to the A level.

 Donald E. Eastlake 3rd   +1-508-333-2270 (cell)
 155 Beaver Street, Milford, MA 01757 USA
 d3e3e3 at