[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
IESG has approved 2 documents
- To: rap <firstname.lastname@example.org>
- Subject: IESG has approved 2 documents
- From: "Wijnen, Bert (Bert)" <email@example.com>
- Date: Mon, 5 Feb 2001 17:18:01 +0100
- Delivery-date: Mon, 05 Feb 2001 08:19:35 -0800
- Envelope-to: firstname.lastname@example.org
The IESG has now approved these documents:
We have added the attached notes to RFC-Editor:
Thanks to the Authors/editors and the WG for your work and patience.
> Note to RFC-Editor:
> for document draft-ietf-rap-signaled-priority-v2-00.txt
> - On title page, pls change "replaces RFC 2751" with
> "Obsoletes RFC 2751"
> - Pls add a reference to RFC2571 as well.
> for document draft-ietf-rap-rsvp-newidentity-01.txt
> - add this IESG note to the title page
> > IESG NOTE: The use of digital signatures, as (for example) described
> > in section 3.3.3 provides inadequate protection against a cut-and-paste
> > form of replay attack, even when used in connection with the INTEGRITY
> > object. This is due to the lack of cryptographic "freshness" guarantees
> > in the AUTH_DATA object. In fact this weakness exists for any policy
> > data object transported with this mechanism.
> > A future version of this document and related documents will
> > address this serious shortcoming.
> - move last sentence of section 1. to abstract section
> (make it last sentence in that section).
> - Pls add a reference to RFC2752 too.