secdir review of draft-snell-atompub-bidi-06

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

I have reviewed this document as part of the security directorate's 
ongoing effort to review all IETF documents being processed by the 
IESG.  These comments were written primarily for the benefit of the 
security area directors.  Document editors and WG chairs should treat 
these comments just like any other last call comments.

draft-snell-atompub-bidi-06 is a very short document and adds an
experimental attribute to the atom syndication format to indicate
whether text should be presented left-to-right or right-to-left. This
experimental approach would replace the current "direction guessing"
heuristic approach.

I see nothing that leads me to believe there is any additional
security consideration that is not already discussed in the security
considerations of RFC4287 "The Atom Syndication Protocol". RFC4287
considers the HTML/XHTML content, URIs, IRIs, Spoofing, and encryption
and digital signatures. 

David Harrington
dbharrington@xxxxxxxxxxx
ietfdbh@xxxxxxxxxxx
dharrington@xxxxxxxxxx


> -----Original Message-----
> From: secdir-bounces@xxxxxxx [mailto:secdir-bounces@xxxxxxx] 
> On Behalf Of Samuel Weiler
> Sent: Friday, April 11, 2008 6:49 PM
> To: secdir@xxxxxxx
> Subject: [secdir] Assignments for April 18th
> 
> Two new reviewers enter the rotation this week: Richard 
> Barnes and Sam 
> Hartman.
> 
> We've moved the review instructions and related resources (e.g. the 
> list of reviewers) to a wiki:
>           http://tools.ietf.org/area/sec/trac/wiki/SecDirReview
> The mailing list may be moving from mit.edu to the IETF's servers 
> within the next week.  Stay tuned.
> 
> Paul Hoffman is next in the rotation.
> 
> -- Sam
> 
> 
> For telechat 2008-04-24
> 
> Lakshminath Dondeti            T  draft-ietf-mipshop-4140bis-02
> Susan Thomson                  T  draft-funk-eap-ttls-v0-04
> 
> Last calls and special requests:
> 
> Rob Austein                       draft-klensin-rfc2821bis-09
> Rob Austein                       draft-ietf-rmt-bb-norm-revised-04
> Richard Barnes                    draft-ietf-lemonade-msgevent-05
> Uri Blumenthal                    draft-ietf-smime-sha2-04
> Pat Cain                          draft-ietf-rserpool-threats-09
> Ran Canetti                       draft-ietf-rserpool-asap-19
> Ran Canetti
draft-ietf-rserpool-common-param-16
> Ran Canetti                       draft-ietf-rserpool-enrp-19
> Ran Canetti                       draft-ietf-rserpool-policies-08
> Lakshminath Dondeti               draft-irtf-nmrg-snmp-measure-04
> Donald Eastlake
draft-ietf-mpls-ldp-capabilities-02
> Shawn Emery                       draft-ietf-mpls-ldp-interarea-03
> Stephen Farrell                   draft-ietf-mpls-upstream-label-04
> Tobias Gondrom
draft-ietf-mpls-multicast-encaps-07
> Phillip Hallam-Baker              draft-ietf-krb-wg-anon-05
> Phillip Hallam-Baker              
> draft-ietf-mpls-number-0-bw-te-lsps-09
> Steve Hanna                       
> draft-ietf-tsvwg-rsvp-user-error-spec-06
> David Harrington                  draft-snell-atompub-bidi-06
> Sam Hartman                       draft-resnick-2822upd-06
> Tero Kivinen                      
> draft-ietf-softwire-mesh-framework-04
> Tero Kivinen                      draft-ietf-softwire-encaps-safi-00
> Tero Kivinen
draft-ietf-softwire-encaps-ipsec-00
> Tero Kivinen                      draft-ietf-softwire-v4nlri-v6nh-00
> Julien Laganier                   
> draft-ietf-softwire-mesh-framework-04
> Julien Laganier                   draft-ietf-softwire-encaps-safi-00
> Julien Laganier
draft-ietf-softwire-encaps-ipsec-00
> Julien Laganier                   draft-ietf-softwire-v4nlri-v6nh-00
> Catherine Meadows                 draft-ietf-speechsc-mrcpv2-15
> Sandy Murphy                      
> draft-vanelburg-sipping-served-user-04
> Sandy Murphy                      
> draft-ietf-l1vpn-bgp-auto-discovery-04
> Vidya Narayanan                   draft-ietf-nfsv4-nfsdirect-07
> Vidya Narayanan                   draft-ietf-enum-experiences-09
> Vidya Narayanan                   
> draft-ietf-l1vpn-ospf-auto-discovery-05
> Blake Ramsdell                    draft-ietf-ospf-rfc2370bis-02
> Stefan Santesson                  
> draft-iijima-netconf-soap-implementation-06
> Stefan Santesson                  draft-ietf-pim-lasthop-threats-03
> Juergen Schoenwaelder             draft-freed-sieve-environment-05
> Susan Thomson                     draft-carpenter-rfc2026-changes-02
> Sam Weiler                        draft-ietf-pim-bsr-mib-04
> Nico Williams                     draft-ietf-l1vpn-basic-mode-04
> Kurt Zeilenga                     draft-daboo-imap-annotatemore-12
> Larry Zhu                         
> draft-hautakorpi-sipping-uri-list-handling-refused-03
> Glen Zorn                         draft-ietf-iptel-tel-reg-05
> _______________________________________________
> secdir mailing list
> secdir@xxxxxxx
> https://mailman.mit.edu/mailman/listinfo/secdir
> 


_______________________________________________
IETF mailing list
IETF@xxxxxxxx
https://www.ietf.org/mailman/listinfo/ietf
[Index of Archives]     [IETF Annoucements]     [IETF]     [IP Storage]     [Yosemite News]     [Linux SCTP]     [Linux Newbies]     [Fedora Users]