Last Call Review of draft-ietf-httpauth-basicauth-update-05

Request Review of draft-ietf-httpauth-basicauth-update
Requested rev. no specific revision (document currently at 07)
Type Last Call Review
Team General Area Review Team (Gen-ART) (genart)
Deadline 2015-02-17
Requested 2015-02-05
Draft last updated 2015-02-17
Completed reviews Genart Last Call review of -05 by Meral Shirazipour (diff)
Secdir Last Call review of -05 by Daniel Gillmor (diff)
Opsdir Last Call review of -05 by Jürgen Schönwälder (diff)
Assignment Reviewer Meral Shirazipour
State Completed
Review review-ietf-httpauth-basicauth-update-05-genart-lc-shirazipour-2015-02-17
Reviewed rev. 05 (document currently at 07)
Review result Ready with Nits
Review completed: 2015-02-17


I am the assigned Gen-ART reviewer for this draft. For background on Gen-ART, please see the FAQ  at <>.


Please wait for direction from your document shepherd or AD before posting a new version of the draft.


Document: draft-ietf-httpauth-basicauth-update-06

Reviewer: Meral Shirazipour

Review Date: 2015-02-19

IETF LC End Date: 2015-02-19

IESG Telechat date: 2015-02-19


Summary: This draft is ready to be published as Standards Track RFC but I have some comments.


Nits/editorial comments:

-[Page 4], "the definition of the '"Digest" authentication scheme"--->remove extra ' before Digest

-[Page 7], not sure about this, since this RFC is a Standards Track, how do we handle its  dependence on draft: [PRECIS] draft-ietf-precis-saslprepbis-13? I.e. will we wait for that draft to be RFC first?


For the password, recipients MUST support all characters defined in

   the "OpaqueString" profile defined in in Section 4.2 of [PRECIS].




Best Regards,



Meral Shirazipour