[Last-Call] Genart last call review of draft-ietf-netmod-factory-default-14

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Reviewer: Stewart Bryant
Review result: Ready

I am the assigned Gen-ART reviewer for this draft. The General Area
Review Team (Gen-ART) reviews all IETF documents being processed
by the IESG for the IETF Chair.  Please treat these comments just
like any other last call comments.

For more information, please see the FAQ at

<https://trac.ietf.org/trac/gen/wiki/GenArtfaq>.

Document: draft-ietf-netmod-factory-default-14
Reviewer: Stewart Bryant
Review Date: 2020-03-12
IETF LC End Date: 2020-03-16
IESG Telechat date: Not scheduled for a telechat

Summary: A well written document that is pretty much ready to go. I only have
one concern and that is whether the overwrite pattern needs some text so that
it does not accidentally become a covert channel.

Major issues: None

Minor issues:

 "All security sensitive data (i.e., private keys, passwords, etc.)  SHOULD be
 overwritten with zeros or a pattern before deletion.  "

"a pattern" is possibly vague, and care needs to be taken that this is not a
covert channel. Possibly it needs to say something like "an implementation
specific common pattern"?

Nits/editorial comments:

Nits contains a warning about references, but one concerns text that will
removed, and the other is a format error that will be fixed in publication

I saw the SecDir comment on RPC. This is a starred term in the abbreviation
list and does not technically need expanding.


-- 
last-call mailing list
last-call@xxxxxxxx
https://www.ietf.org/mailman/listinfo/last-call



[Index of Archives]     [IETF Annoucements]     [IETF]     [IP Storage]     [Yosemite News]     [Linux SCTP]     [Linux Newbies]     [Mhonarc]     [Fedora Users]

  Powered by Linux