Last Call Review of draft-ietf-straw-b2bua-dtls-srtp-08
review-ietf-straw-b2bua-dtls-srtp-08-secdir-lc-wouters-2015-11-26-00

Request Review of draft-ietf-straw-b2bua-dtls-srtp
Requested rev. no specific revision (document currently at 12)
Type Last Call Review
Team Security Area Directorate (secdir)
Deadline 2015-12-01
Requested 2015-10-29
Authors Ram R, Tirumaleswar Reddy.K, Gonzalo Salgueiro, Victor Pascual, Parthasarathi Ravindran
Draft last updated 2015-11-26
Completed reviews Genart Last Call review of -08 by Francis Dupont (diff)
Genart Last Call review of -09 by Francis Dupont (diff)
Secdir Last Call review of -08 by Paul Wouters (diff)
Opsdir Last Call review of -08 by Dan Romascanu (diff)
Assignment Reviewer Paul Wouters 
State Completed
Review review-ietf-straw-b2bua-dtls-srtp-08-secdir-lc-wouters-2015-11-26
Reviewed rev. 08 (document currently at 12)
Review result Has Nits
Review completed: 2015-11-26

Review
review-ietf-straw-b2bua-dtls-srtp-08-secdir-lc-wouters-2015-11-26

I have reviewed this document as part of the security directorate's 


ongoing effort to review all IETF documents being processed by the 


IESG.  These comments were written primarily for the benefit of the 


security area directors.  Document editors and WG chairs should treat 


these comments just like any other last call comments.




As far as I understood the document and its dependancies (I'm not very
familiar with the sip/srtp world), the document is Ready.

One minor nit: Section 1.2 has a broken link for RFC-7092.

This document describes how a "middle man" relaying connections between
two sip endpoints should behave so it will not break the connection
between the sip endpoints. The security section clearly lists the
defenses the sip endpoints should take to ensure this "middle man" is
not maliciously decrypting/re-encrypting the content of the connection
it forwards between the endpoints.

Paul