Re: WG chair nits on draft-ietf-secsh-fingerprint-01.txt

To: Markus Friedl <markus%openbsd.org@localhost>
Subject: Re: WG chair nits on draft-ietf-secsh-fingerprint-01.txt
From: Bill Sommerfeld <sommerfeld%east.sun.com@localhost>
Date: Wed, 16 Jul 2003 09:04:25 -0400

> What do you like to see in the 'Security Considerations' section?

See http://www.ietf.org/internet-drafts/draft-iab-sec-cons-03.txt
("Guidelines for Writing RFC Text on Security Considerations").

for this document, this likely won't require much text.

Two points I'd make:

 - reference security considerations of [SSH-ARCH] and point out that
   this is a common exchange format to help with the problem.

 - point out that the 'trusted' copy of the fingerprint must be
   transmitted by some form of secure channel; how to do that is out
   of scope.

					- Bill

References:
- Re: WG chair nits on draft-ietf-secsh-fingerprint-01.txt
  - From: Markus Friedl

Prev by Date: Re: Secure Shell: WG Meeting Summary
Next by Date: Re: retrying keyex (was: Re: Why SFTP performance sucks, and how to fix it)
Previous by Thread: Re: WG chair nits on draft-ietf-secsh-fingerprint-01.txt
Next by Thread: wg chair comments on draft-ietf-secsh-break-00.txt
Indexes:

Home | Main Index | Thread Index | Old Index