Draft:  draft-ietf-sipping-config-framework-11.txt
Reviewer: EKR [ekr@networkresonance.com]
Review Date: 3/21/2007
Review Deadline: 
Status:  Interim Review

Summary: Right track; security. 


Comments:
---------
So, this seems kind of incomplete. In particular, the introduction
is fine, but it's hard to map it to the specific requirements in,
e.g., S 8.1. In particular, I'm not sure it really makes sense
to require X.509 certs for the PNC and/or PCC, given that when
you roam to some network you find out which server you should be 
connecting to via some untrusted mechanism like DHCP... More
interesting, I suppose, would be to have the DHCP server
give you the server fingerprint, thus eliminating the
X.509 stage.