[Dots] Warren Kumari's No Objection on draft-ietf-dots-data-channel-28: (with COMMENT)

Warren Kumari via Datatracker <noreply@ietf.org> Wed, 01 May 2019 19:21 UTC

Return-Path: <noreply@ietf.org>
X-Original-To: dots@ietf.org
Delivered-To: dots@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 231B01200B5; Wed, 1 May 2019 12:21:13 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: Warren Kumari via Datatracker <noreply@ietf.org>
To: "The IESG" <iesg@ietf.org>
Cc: draft-ietf-dots-data-channel@ietf.org, Roman Danyliw <rdd@cert.org>, dots-chairs@ietf.org, rdd@cert.org, dots@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 6.95.1
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: Warren Kumari <warren@kumari.net>
Message-ID: <155673847313.950.15705754597246734431.idtracker@ietfa.amsl.com>
Date: Wed, 01 May 2019 12:21:13 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/dots/gDGIU9vHTw04389vuEZ76Ls35Xw>
Subject: [Dots] Warren Kumari's No Objection on draft-ietf-dots-data-channel-28: (with COMMENT)
X-BeenThere: dots@ietf.org
X-Mailman-Version: 2.1.29
List-Id: "List for discussion of DDoS Open Threat Signaling \(DOTS\) technology and directions." <dots.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dots>, <mailto:dots-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dots/>
List-Post: <mailto:dots@ietf.org>
List-Help: <mailto:dots-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dots>, <mailto:dots-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 01 May 2019 19:21:13 -0000

Warren Kumari has entered the following ballot position for
draft-ietf-dots-data-channel-28: No Objection

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)

Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
for more information about IESG DISCUSS and COMMENT positions.

The document, along with other ballot positions, can be found here:


Thank you for writing this - I found it useful and interesting.

I do have a few comments / suggestions to try improve the document further.

1:  "In most cases, sufficient scale can be achieved by compromising enough
end-hosts and using those infected hosts to perpetrate and amplify the attack."
This is somewhat misleading - it sounds somewhat like the reflectors which get
used for amplification attacks (e.g DNS servers) have been compromised. Perhaps
"In most cases, sufficient scale can be achieved by compromising enough
end-hosts or using amplification attacks" - in the grand scheme of things this
isn't super important, but because it is so close to the beginning of the
document it would be nice to set the tone correctly...

2: "After discovering the RESTCONF API root, a DOTS client uses this value as
the initial part of the path in the request URI, in any subsequent request to
the DOTS server." The commas seem superfluous, and make reading this hard.

3: "It is RECOMMENDED that DOTS clients and gateways support means to alert
administrators about loop errors so that appropriate actions are undertaken."
Truly a nit, but I had to reread this sentence multiple times before I got it
-- I would suggest s/means/methods/ (or "provide methods").

4: TCP flags. It is really common to match on "Established" sessions (or
packets with or without the SYN flag -- I think it would be **really** helpful
to describe how this is done / have an example, etc. While readers should be
able to figure this out, it would be helpful to have this so people can find it
in a panic. Actually, more examples in the Appendix would be generally useful...

5: "The DOTS gateway, that inserted a ’cdid’ in a PUT request, MUST strip the
’cdid’ parameter in the corresponding response before forwarding the response
to the DOTS client." Extra commas...