Last Call Review of draft-ietf-ipsecme-chacha20-poly1305-10
review-ietf-ipsecme-chacha20-poly1305-10-opsdir-lc-schoenwaelder-2015-06-30-00

Request Review of draft-ietf-ipsecme-chacha20-poly1305
Requested rev. no specific revision (document currently at 12)
Type Last Call Review
Team Ops Directorate (opsdir)
Deadline 2015-06-29
Requested 2015-06-23
Authors Yoav Nir
Draft last updated 2015-06-30
Completed reviews Genart Last Call review of -10 by Meral Shirazipour (diff)
Opsdir Last Call review of -10 by Jürgen Schönwälder (diff)
Assignment Reviewer Jürgen Schönwälder
State Completed
Review review-ietf-ipsecme-chacha20-poly1305-10-opsdir-lc-schoenwaelder-2015-06-30
Reviewed rev. 10 (document currently at 12)
Review result Ready
Review completed: 2015-06-30

Review
review-ietf-ipsecme-chacha20-poly1305-10-opsdir-lc-schoenwaelder-2015-06-30

Hi,

I have reviewed draft-ietf-mip4-multiple-tunnel-support-12.txt as part
of the Operational directorate's ongoing effort to review all IETF
documents being processed by the IESG.  These comments were written
with the intent of improving the operational aspects of the IETF
drafts. Comments that are not addressed in last call may be included
in AD reviews during the IESG review.  Document editors and WG chairs
should treat these comments just like any other last call comments.

I believe the document is 'Ready' for publication.

The I-D adds the ChaCha20 stream cipher along with the Poly1305
authenticator into IKEv2 and IPsec. The main motivation seems to be
that ChaCha20 can serve as standby cipher in case security relevant
issues with AES will be identified.

Section 4 says 'the value xxx (TBA by IANA) should be used'; since I
am not familiar with the internals of IKE, I am nore sure if this is
the same as the value ENCR_CHACHA20_POLY1305 mentioned in section 2
and the IANA considerations (I assume it is the same and in that case
I would suggest to use ENCR_CHACHA20_POLY1305 instead of xxx - if it
is not the same, well, then the text in the IANA Considerations is
incomplete).

I note that this document has a normative reference to RFC7539, which
is Informational (for reasons I am not aware of).

/js

-- 
Juergen Schoenwaelder           Jacobs University Bremen gGmbH
Phone: +49 421 200 3587         Campus Ring 1 | 28759 Bremen | Germany
Fax:   +49 421 200 3103         <

http://www.jacobs-university.de/

>