[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Response to Russ Housley's comment on security considerations

To: opsec@ops.ietf.org
Subject: Response to Russ Housley's comment on security considerations
From: George Jones <gmj@pobox.com>
Date: Tue, 17 Feb 2004 06:41:30 -0800 (PST)
Reply-to: gmj@pobox.com

> Date and Time: 2004-01-22, 10:44:52
> Version: 03
> Commented by: Housley, Russ
> State before Comment: 0
> State after Comment: 0
> Comment:   The security considerations ought to say how following the
> practices in this
>   document will improve security of the Internet.
>

I added the following sentence to the security considerations section:

    The justification
    section of each individual requirement lists the security
    implications of meeting or not meeting the requirement.

The benefits/vulnerabilities differ requirement by requirement.
I could try to generalize/summarize if you think it would be
useful.   This would largely be a restatement of info from
the goals, motivation and scope sections in the intro.

---George Jones

Prev by Date: Response to IESG comment: need to define SOHO
Next by Date: Response to various comments from Russ Housley
Previous by thread: Response to IESG comment: need to define SOHO
Next by thread: Response to various comments from Russ Housley
Index(es):
- Date
- Thread