> I find the security considerations in this registration rather weak. > What might have sufficed in 2005 seems to me inadequate for 2013. I > would expect a clearer statement of what are or are not considered > threats or attacks and what mitigations there then are for them.
Tom, do you have specific suggestions for the authors in this regard. Barry
