[Last-Call] Secdir last call review of draft-ietf-radext-radiusv11-08

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Reviewer: Barry Leiba
Review result: Has Issues

Thanks for this important update: getting rid of MD5 is quite overdue, and will
make a long-term difference.

The Abstract seems longer and more detailed than necessary.  In particular, I
would strike the second paragraph completely, as it’s detail that doesn’t need
to be in the Abstract.  I also think the last two sentences of the first
paragraph add detail that’s unnecessary in the Abstract.

— Section 1 —

I am concerned that you do not UPDATE 2865 or 6613, yet you say this:

   While this document permits MD5 to be removed when using (D)TLS
   transports, it makes no changes to UDP or TCP transports.  It is
   therefore RECOMMENDED that those transports only be used within
   secure networks, and only used in situations where FIPS compliance is
   not an issue.

Without the update to 2865 and 6613, how are implementors of the UDP and TCP
transports supposed to be aware of the RECOMMENDED statement above?  I think
this document should update 2865 and 6613, and that the statement above should
be at a MUST level, not a SHOULD, as this:

NEW
   While this document permits MD5 to be removed when using (D)TLS
   transports, it makes no changes to UDP or TCP transports.  It
   therefore follows that those transports MUST NOT be used outside of
   secure networks, and MUST NOT be used in situations where FIPS
   compliance is needed.
END

Near the end of the section is this:

   This specification is compatible with all past and future RADIUS
   specifications.

You can’t possibly promise compatibility with all future versions.  Maybe you
could change “future” to “anticipated”, or maybe just reconsider mentioning
that at all.

— Section 3.3 —

   When set, this flag contains the list of permitted ALPN versions in
   humanly readable form.

The flag contains the list of permitted RADIUS versions, not ALPN versions.

I have to say that I find this section to be pretty confusing.  I write it off
to the fact that I’m not generally familiar with RADIUS and the associated
documents, and I hope that RADIUS practitioners do fint it clearer than I do. 
In particular, I don’t get the distinction between the Version flag and the
ALPN name, and why both are needed when they each seem to identify the same
thing.  But again, I’m sure this just reflects my lack of familiarity with this.

— Section 10 —

The one-sentence security considerations doesn’t show any actual consideration
of the security properties of the changes proposed here.  I think you need to
spend some time looking at what happens when someone gets the implementation
wrong, when someone tries to attack this… just as other protocols do when they
write their Security Considerations section.  But I’ll leave that to the
Security ADs to sort out with you when they ballot DISCUSS….

— References —

Nit: the appearance of BCP 14 at the start of the references section is
redundant to the RFC 8174 reference at the end of the section.  You can remove
the former.


-- 
last-call mailing list -- last-call@xxxxxxxx
To unsubscribe send an email to last-call-leave@xxxxxxxx




[Index of Archives]     [IETF Annoucements]     [IETF]     [IP Storage]     [Yosemite News]     [Linux SCTP]     [Linux Newbies]     [Mhonarc]     [Fedora Users]

  Powered by Linux