Last Call Review of draft-wkumari-dhc-capport-12
review-wkumari-dhc-capport-12-secdir-lc-tschofenig-2015-07-08-00

Request Review of draft-wkumari-dhc-capport
Requested rev. no specific revision (document currently at 16)
Type Last Call Review
Team Security Area Directorate (secdir)
Deadline 2015-07-07
Requested 2015-06-10
Authors Warren Kumari, Ólafur Guðmundsson, Ebersman P, Steve Sheng
Draft last updated 2015-07-08
Completed reviews Genart Last Call review of -13 by David Black (diff)
Genart Telechat review of -15 by David Black (diff)
Genart Last Call review of -16 by David Black
Secdir Last Call review of -12 by Hannes Tschofenig (diff)
Opsdir Last Call review of -12 by David Black (diff)
Opsdir Telechat review of -14 by David Black (diff)
Assignment Reviewer Hannes Tschofenig
State Completed
Review review-wkumari-dhc-capport-12-secdir-lc-tschofenig-2015-07-08
Reviewed rev. 12 (document currently at 16)
Review result Ready
Review completed: 2015-07-08

Review
review-wkumari-dhc-capport-12-secdir-lc-tschofenig-2015-07-08






I have reviewed this document as part of the security directorate's effort to review all IETF documents being processed by the IESG.




These comments were written primarily for the benefit of the security area directors.  Document editors and WG chairs should treat these comments just like any other last call comment.




 




This document communicates the presence of a captive portal in a WiFi network using DHCP and RAs.





 




Recommendation:  Ready




 




The motivation of the document makes sense, namely to avoid interception of traffic, and the document is an easy extension to already available mechanisms (RA/DHCP). I was expecting to see a reference to Hotspot 2.0, which aims to make the interaction between hotspot providers and end devices more intelligent (but covers a much larger scope). 




 




Minor nit: 




 




In Section 4 you write: 




 




“This document defines two DHCP Captive-Portal options, one for IPv6




   and one for IPv6.”




 




It should of course read “…, one for IPv4 and one for IPv6.”




 




Ciao




Hannes




 










-- IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents
 to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.





ARM Limited, Registered office 110 Fulbourn Road, Cambridge CB1 9NJ, Registered in England & Wales, Company No: 2557590


ARM Holdings plc, Registered office 110 Fulbourn Road, Cambridge CB1 9NJ, Registered in England & Wales, Company No: 2548782