Hi Rich,
Thanks for your review!
Note that, based on discussions in Chicago, the draft will be extended to also
cover TLS associations. So, it may end up on your table again at some point :)
Never the less, I will reply to your comments, because some of them are not
related to the change.
Reviewer: Rich Salz
Review result: Has Nits
The term "ufrag" should be explained, or at least have a reference on its
first use. It seems important :)
I will add a reference to draft-5245bis.
I think the "fingerprint" reference should be moved up to the bullet list in
section 4, from the bullet list in 5.1
I am not sure. The bullet list in section 4 talks about the fingerprint in
general, while the bullet list in 5.1 talks about the fingerprint attribute.
Sec 4 uses the term "cryptographic random function" which is not a common
security term. (See
https://en.wikipedia.org/wiki/Cryptographically_secure_pseudorandom_number_generator)
I would just say "strong random function"; it's the number of random bits that
counts. Or use CSPRNG as the term.
I will use "strong random function".
In Sec 9, it seems like quoting all the old text is way too verbose.
I would just say "replace with the following NEW TEXT"
If it's not replacing an entire section, then say "the nnn paragraphs starting
with xxxxx" or similar construct.
This comes up everything a section is updated. Some people only want to updated
parts, while others want the whole updated section - no matter how much or
little has been updated. So, I'd like to keep it as it is.
Note, however, that based on the gen-art review I will place the updates of
each individual section in a separate sub section of the draft.
Regards,
Christer