Secdir last call review of draft-campbell-sip-messaging-smime-03

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Reviewer: Liang Xia
Review result: Ready

In general, this draft is clear and well written.

I have 2 comments as below:
1. For Section 6, is it required to protect the UA capabilities negotiation
messages? Have you considered the possible downgrade attack, like: the
adversary tampered the UA capabilities negotiation message to make the UA work
without s/mime?

2. For Section 12, is there any general way to defend against the attacks from
malicious or compromised intermediaries mentioned in this section? Maybe some
guidances are helpful here.




[Index of Archives]     [IETF Annoucements]     [IETF]     [IP Storage]     [Yosemite News]     [Linux SCTP]     [Linux Newbies]     [Mhonarc]     [Fedora Users]

  Powered by Linux