Last Call Review of draft-ietf-insipid-logme-marking-11
review-ietf-insipid-logme-marking-11-secdir-lc-johansson-2018-07-09-00

Request Review of draft-ietf-insipid-logme-marking
Requested rev. no specific revision (document currently at 13)
Type Last Call Review
Team Security Area Directorate (secdir)
Deadline 2018-07-10
Requested 2018-06-26
Other Reviews Genart Last Call review of -11 by Francesca Palombini (diff)
Review State Completed
Reviewer Leif Johansson
Review review-ietf-insipid-logme-marking-11-secdir-lc-johansson-2018-07-09
Posted at https://mailarchive.ietf.org/arch/msg/secdir/uoOSYbTErT_OwZdKU-EIQCK0AD0
Reviewed rev. 11 (document currently at 13)
Review result Ready
Draft last updated 2018-07-09
Review completed: 2018-07-09

Review
review-ietf-insipid-logme-marking-11-secdir-lc-johansson-2018-07-09

I have reviewed this document as part of the security directorate's 
ongoing effort to review all IETF documents being processed by the 
IESG.  These comments were written primarily for the benefit of the 
security area directors.  Document editors and WG chairs should treat 
these comments just like any other last call comments.

From the abstract: This document describes an indicator for the SIP 
protocol which can be used to mark signaling as being of interest to 
logging.

The document is clearly written and feels ready for publication from
a quality standpoint.

My only issue is in 7.4.6 - User Control of Logging: Why is the "must" 
in the first paragraph non-normative? Is it because there is no way
to prove the existence or absence of user consent? I realize this may
be a hard problem to solve but if this issue was considered and rejected 
it might be worth including a discussion about this in the document.