Black, David writes: > > We (talking as secdir secretary) do not do security reviews on the > > independent submission documents. Area review teams only review IETF > > stream documents and ignore other streams (Independent, IAB, IRTF > > etc). > > Hmm - the process that I'd expect is that a SEC AD notices something > odd, suspicious or peculiar in an independent submission TEP spec > during conflict review and asks an expert on the secdir to take a > closer look. Given the threat of a weak TEP hash to all other > TEPs, I would think/hope that independent submission publication of > a TEP with a weak hash could be blocked then and there.
Sec AD will most likely post to the saag list [1] and ask if there is reason to block some specific ISE document. This does not mean there is security review done on that document. [1] https://mailarchive.ietf.org/arch/msg/saag/E8icM-Ak-wJnnqtG4t6I8bujxiI -- kivi...@iki.fi _______________________________________________ Tcpinc mailing list Tcpinc@ietf.org https://www.ietf.org/mailman/listinfo/tcpinc
