Hi, Thanks for the review. We will take it into account in the next version of the draft. Regards, Frédéric Orange Restricted -----Message d'origine----- De : Valery Smyslov via Datatracker <noreply@xxxxxxxx> Envoyé : mardi 17 octobre 2023 14:45 À : secdir@xxxxxxxx Cc : cdni@xxxxxxxx; draft-ietf-cdni-delegation-acme.all@xxxxxxxx; last-call@xxxxxxxx Objet : Secdir last call review of draft-ietf-cdni-delegation-acme-03 Reviewer: Valery Smyslov Review result: Ready I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. This draft defines a CDNI metadata object to enable delegation of X.509 certificates using ACME protocol. The actual operations for certificates delegation using ACME protocol are defined in RFC9115, which contains a comprehensive list of security considerations. This document just extends the CDNI metadata interface to enable leveraging the schemes from RFC9115. Nits: 1. "CDN" is used in the Abstract without expanding, but it is later expanded in the Introduction. I found this inconsistent: if the abbreviation is well-known, then no expanding is needed, otherwise, it should be expanded in the Abstract. 2. "CDNI", "FCI" are used with no expanding before the Terminology section, which specifies where the terms are defined. ____________________________________________________________________________________________________________ Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration, Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci. This message and its attachments may contain confidential or privileged information that may be protected by law; they should not be distributed, used or copied without authorisation. If you have received this email in error, please notify the sender and delete this message and its attachments. As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified. Thank you. -- last-call mailing list last-call@xxxxxxxx https://www.ietf.org/mailman/listinfo/last-call
