ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

secdir review of draft-snell-atompub-bidi-06

2008-04-15 17:12:41
from [David Harrington] [Permanent Link] 
I have reviewed this document as part of the security directorate's 
ongoing effort to review all IETF documents being processed by the 
IESG.  These comments were written primarily for the benefit of the 
security area directors.  Document editors and WG chairs should treat 
these comments just like any other last call comments.

draft-snell-atompub-bidi-06 is a very short document and adds an
experimental attribute to the atom syndication format to indicate
whether text should be presented left-to-right or right-to-left. This
experimental approach would replace the current "direction guessing"
heuristic approach.

I see nothing that leads me to believe there is any additional
security consideration that is not already discussed in the security
considerations of RFC4287 "The Atom Syndication Protocol". RFC4287
considers the HTML/XHTML content, URIs, IRIs, Spoofing, and encryption
and digital signatures. 

David Harrington
dbharrington(_at_)comcast(_dot_)net
ietfdbh(_at_)comcast(_dot_)net
dharrington(_at_)huawei(_dot_)com



-----Original Message-----
From: secdir-bounces(_at_)mit(_dot_)edu 
[mailto:secdir-bounces(_at_)mit(_dot_)edu] 
On Behalf Of Samuel Weiler
Sent: Friday, April 11, 2008 6:49 PM
To: secdir(_at_)mit(_dot_)edu
Subject: [secdir] Assignments for April 18th

Two new reviewers enter the rotation this week: Richard 
Barnes and Sam 
Hartman.

We've moved the review instructions and related resources (e.g. the 
list of reviewers) to a wiki:
          http://tools.ietf.org/area/sec/trac/wiki/SecDirReview
The mailing list may be moving from mit.edu to the IETF's servers 
within the next week.  Stay tuned.

Paul Hoffman is next in the rotation.

-- Sam


For telechat 2008-04-24

Lakshminath Dondeti            T  draft-ietf-mipshop-4140bis-02
Susan Thomson                  T  draft-funk-eap-ttls-v0-04

Last calls and special requests:

Rob Austein                       draft-klensin-rfc2821bis-09
Rob Austein                       draft-ietf-rmt-bb-norm-revised-04
Richard Barnes                    draft-ietf-lemonade-msgevent-05
Uri Blumenthal                    draft-ietf-smime-sha2-04
Pat Cain                          draft-ietf-rserpool-threats-09
Ran Canetti                       draft-ietf-rserpool-asap-19
Ran Canetti

draft-ietf-rserpool-common-param-16

Ran Canetti                       draft-ietf-rserpool-enrp-19
Ran Canetti                       draft-ietf-rserpool-policies-08
Lakshminath Dondeti               draft-irtf-nmrg-snmp-measure-04
Donald Eastlake

draft-ietf-mpls-ldp-capabilities-02

Shawn Emery                       draft-ietf-mpls-ldp-interarea-03
Stephen Farrell                   draft-ietf-mpls-upstream-label-04
Tobias Gondrom

draft-ietf-mpls-multicast-encaps-07

Phillip Hallam-Baker              draft-ietf-krb-wg-anon-05
Phillip Hallam-Baker              
draft-ietf-mpls-number-0-bw-te-lsps-09
Steve Hanna                       
draft-ietf-tsvwg-rsvp-user-error-spec-06
David Harrington                  draft-snell-atompub-bidi-06
Sam Hartman                       draft-resnick-2822upd-06
Tero Kivinen                      
draft-ietf-softwire-mesh-framework-04
Tero Kivinen                      draft-ietf-softwire-encaps-safi-00
Tero Kivinen

draft-ietf-softwire-encaps-ipsec-00

Tero Kivinen                      draft-ietf-softwire-v4nlri-v6nh-00
Julien Laganier                   
draft-ietf-softwire-mesh-framework-04
Julien Laganier                   draft-ietf-softwire-encaps-safi-00
Julien Laganier

draft-ietf-softwire-encaps-ipsec-00

Julien Laganier                   draft-ietf-softwire-v4nlri-v6nh-00
Catherine Meadows                 draft-ietf-speechsc-mrcpv2-15
Sandy Murphy                      
draft-vanelburg-sipping-served-user-04
Sandy Murphy                      
draft-ietf-l1vpn-bgp-auto-discovery-04
Vidya Narayanan                   draft-ietf-nfsv4-nfsdirect-07
Vidya Narayanan                   draft-ietf-enum-experiences-09
Vidya Narayanan                   
draft-ietf-l1vpn-ospf-auto-discovery-05
Blake Ramsdell                    draft-ietf-ospf-rfc2370bis-02
Stefan Santesson                  
draft-iijima-netconf-soap-implementation-06
Stefan Santesson                  draft-ietf-pim-lasthop-threats-03
Juergen Schoenwaelder             draft-freed-sieve-environment-05
Susan Thomson                     draft-carpenter-rfc2026-changes-02
Sam Weiler                        draft-ietf-pim-bsr-mib-04
Nico Williams                     draft-ietf-l1vpn-basic-mode-04
Kurt Zeilenga                     draft-daboo-imap-annotatemore-12
Larry Zhu                         
draft-hautakorpi-sipping-uri-list-handling-refused-03
Glen Zorn                         draft-ietf-iptel-tel-reg-05
_______________________________________________
secdir mailing list
secdir(_at_)mit(_dot_)edu
https://mailman.mit.edu/mailman/listinfo/secdir




_______________________________________________
IETF mailing list
IETF(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • secdir review of draft-snell-atompub-bidi-06, David Harrington <=
Previous by Date:  Re: Last Call: draft-klensin-rfc2821bis: closing the implicit MX issue, Douglas Otis
Next by Date:  Re: IESG Statement on Spam Control on IETF Mailing Lists, Henrik Levkowetz
Previous by Thread:  Gen-ART review of draft-ietf-lemonade-convert-17.txt, Black_David
Next by Thread:  Proposed IESG Statement Regarding RFC Errata for IETF Sream RFCs, The IESG
Indexes:  [Date] [Thread] [Top] [All Lists]