-1. IETF documents have to have a "Security Considerations" section that describes general security issues. In no cases that I know of do they contain protocol specification. See RFC 3552 for more info.
--Paul Hoffman, Director --Internet Mail Consortium
