[Bier] Secdir last call review of draft-ietf-bier-bfd-03

Catherine Meadows via Datatracker <noreply@ietf.org> Mon, 08 May 2023 19:33 UTC

MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: Catherine Meadows via Datatracker <noreply@ietf.org>
To: secdir@ietf.org
Cc: bier@ietf.org, draft-ietf-bier-bfd.all@ietf.org, last-call@ietf.org
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <168357442732.50421.6278366851868826816@ietfa.amsl.com>
Reply-To: Catherine Meadows <catherine.meadows@nrl.navy.mil>
Date: Mon, 08 May 2023 12:33:47 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/bier/liDkuCJO0Zj8HViY8UPFR1vcWas>
Subject: [Bier] Secdir last call review of draft-ietf-bier-bfd-03

Reviewer: Catherine Meadows
Review result: Ready

I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the
IESG. These comments were written primarily for the benefit of the
security area directors. Document editors and WG chairs should treat
these comments just like any other last call comments.

The summary of the review is Ready.

RFC8562 and RFC8563 define methods using Bidirectional Forwarding Detection
(BFD) for  monitoring  and detecting unicast failure between senders (heads)
and receivers (tails) in multipoint or multicast networks.   This document
describes procedures for applying these methods in the Bit Index Explicit
Replication (BIER) [RFC8279] domain.  Most of it is concerned with the format
and use of packet headers.

In the Security Consideration section, the reader is directed to
I-D.ietf-bier-ping for BIER packet processing security considerations, and
RFC8562 for general multipoint BFD security considerations. I agree with the
authors’ assertion that this document does not produce any additional security
considerations.

[Bier] Secdir last call review of draft-ietf-bier… Catherine Meadows via Datatracker
Re: [Bier] Secdir last call review of draft-ietf-… Greg Mirsky