IETF Logo Mail Archive

[I2nsf] FW: Writing YANG Model Security Considerations

Linda Dunbar <linda.dunbar@futurewei.com> Thu, 25 July 2019 14:14 UTC

Return-Path: <linda.dunbar@futurewei.com>
X-Original-To: i2nsf@ietfa.amsl.com
Delivered-To: i2nsf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 98DCB1202AF for <i2nsf@ietfa.amsl.com>; Thu, 25 Jul 2019 07:14:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=futurewei.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UQq36pn3nGk2 for <i2nsf@ietfa.amsl.com>; Thu, 25 Jul 2019 07:14:37 -0700 (PDT)
Received: from NAM02-CY1-obe.outbound.protection.outlook.com (mail-eopbgr760118.outbound.protection.outlook.com [40.107.76.118]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5BA831201EF for <i2nsf@ietf.org>; Thu, 25 Jul 2019 07:14:35 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=D/Zmh1v6zkv9aezw/I2cRYpbKX9Ibpo0R9kq4X2BgGEBlLKufw1c192CJ9byutL1ChS1gklXHGdWakE1+6fB4GHDOwfyie0/q6qKOP1hgXhQZCoYILaKnwGVqtbwKdh36pEXLtTfK0Sy0BTo01saN9JhlK3uC5TmQBoqapas0swQusObT1jte8cl/v8W52/lMrcfFuBRRkYkHmndtvubRQvdz822ZX9VjYG2oAmagG5hNS+xPVgftjAcL6y5J7VVxaLld8jnRW9WsKLKTyXViwjg6fNo0oEWo85m20J+eSKs4pik8hTwjqwvz2qH5wgzUzlod3j0bOhhs9wDWK3/Ng==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=P1PROhyicGEMURv00PvrGt0K1Hy9DjfhVGpzpYI2b6A=; b=alZKyJx6fPRyDRYHlEhRFzg0ePhsS6lh804WIs3Rr27+OobhdrdaxFAII+orA7QNEGk68vh33q/HJmAznkGBQ2IXDdA044NVygSYqhQr5l0GnRi8RfHVYcOyXg8H8HdGNuMwWW/7PVdrueYHzaD0dTRAfU/dq4lBg12sxs+OKhG0q36l+rlVThsEfL/ME5NmvsFvMh1SyWdiCCPlkIf0Hm2ryqhyZTV1Xp0SyMZ+3UCy24pW+q7+Xhirs8/6vyWm88/QJRRDxlEPWQoJi2aqIyrNsTuIiZ/9460vndeQiWU/NSCzlqWcbygoddS2XlXuBABms+ogGcMsAzfmnzUa3Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1;spf=pass smtp.mailfrom=futurewei.com;dmarc=pass action=none header.from=futurewei.com;dkim=pass header.d=futurewei.com;arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=Futurewei.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=P1PROhyicGEMURv00PvrGt0K1Hy9DjfhVGpzpYI2b6A=; b=icoA7UO4o2l5V8c196JRJtm2bh3Vrf2oqHlrmzhowfAW+RqzhggqAK/nv727ryGBk7wAJIVLQg0pQQrqcCdv0R7Dw7BiHo4gzoe9h9FfbTGRkO8G19Z26KE37yKwQGsRkVOUNJ8HtKDD6kGzzbIRhtYVzqspCdcys2rYHjQPp7Q=
Received: from MN2PR13MB3582.namprd13.prod.outlook.com (10.255.238.139) by MN2PR13MB2847.namprd13.prod.outlook.com (20.178.254.30) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2115.10; Thu, 25 Jul 2019 14:14:33 +0000
Received: from MN2PR13MB3582.namprd13.prod.outlook.com ([fe80::51ed:57ae:d3a7:e4bd]) by MN2PR13MB3582.namprd13.prod.outlook.com ([fe80::51ed:57ae:d3a7:e4bd%7]) with mapi id 15.20.2115.005; Thu, 25 Jul 2019 14:14:33 +0000
From: Linda Dunbar <linda.dunbar@futurewei.com>
To: "i2nsf@ietf.org" <i2nsf@ietf.org>
Thread-Topic: Writing YANG Model Security Considerations
Thread-Index: AdVBWgeWhgLR1TCjQ1WxThPAXoKadwBmR0aw
Date: Thu, 25 Jul 2019 14:14:32 +0000
Message-ID: <MN2PR13MB358226D5D5DD7F6A09F7314985C10@MN2PR13MB3582.namprd13.prod.outlook.com>
References: <359EC4B99E040048A7131E0F4E113AFC01B33E17B7@marchand>
In-Reply-To: <359EC4B99E040048A7131E0F4E113AFC01B33E17B7@marchand>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=linda.dunbar@futurewei.com;
x-originating-ip: [31.133.138.206]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: e4dcda4d-6a33-43a5-3003-08d7110a6aa2
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:MN2PR13MB2847;
x-ms-traffictypediagnostic: MN2PR13MB2847:
x-ms-exchange-purlcount: 1
x-microsoft-antispam-prvs: <MN2PR13MB28470241E0D50FB17A68265385C10@MN2PR13MB2847.namprd13.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:3513;
x-forefront-prvs: 0109D382B0
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(396003)(366004)(376002)(39850400004)(136003)(346002)(13464003)(189003)(199004)(5660300002)(66556008)(6506007)(2501003)(2351001)(66476007)(7736002)(76116006)(3846002)(76176011)(44832011)(305945005)(316002)(74316002)(2473003)(6116002)(9686003)(14454004)(2906002)(6306002)(86362001)(81156014)(66446008)(4744005)(15650500001)(25786009)(5640700003)(8676002)(55016002)(66946007)(81166006)(53546011)(8936002)(6436002)(486006)(102836004)(64756008)(68736007)(966005)(53936002)(33656002)(446003)(11346002)(229853002)(476003)(52536014)(66066001)(478600001)(256004)(186003)(71200400001)(7696005)(71190400001)(26005)(45080400002)(14444005)(6916009)(99286004); DIR:OUT; SFP:1102; SCL:1; SRVR:MN2PR13MB2847; H:MN2PR13MB3582.namprd13.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:3; A:1;
received-spf: None (protection.outlook.com: futurewei.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: Qdza6YWw5KKBa/OEnmtneQgmdjslpFe9FNAheO/oAaGtUFJxhnOqxNXarB50WU5rfj86nWyIoKvzPQ2Ytgg/kVNHYdEa9BZ4JbOaT+4dVHkHp3ONoHY8zpgJMjismfhCDRewWQTKpCswFxv6YdB3eOENGcDAbALsq0Us8UDmVnnhIz6eJxpILheeUH1opnUpUXef4Oc3aMc/nanTD8W9h1tbvTGmhfGehxjSnKzaBS0p2uWJAytgtFQgG4HB4ATNDVJUyRpgUso3IlF/A0Aukq4IoG6fi97SbCJON3leEy1kyuB/D16kYF5YNlBu4kEU9d1P9XwjM2CkBUTp09RNqg+TuQAdOu+5gis7DIKVEKpQpEdy2vBJeoz7TGCmbUOi89Z2iPMTJRShyKGPSGL5P5DlxFCi1WVRAhc84LVgaq4=
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: Futurewei.com
X-MS-Exchange-CrossTenant-Network-Message-Id: e4dcda4d-6a33-43a5-3003-08d7110a6aa2
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Jul 2019 14:14:32.9455 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 0fee8ff2-a3b2-4018-9c75-3a1d5591fedc
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: ldunbar@futurewei.com
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR13MB2847
Archived-At: <https://mailarchive.ietf.org/arch/msg/i2nsf/d81v-V1x44s-XDE1IrxHc-YwdD0>
Subject: [I2nsf] FW: Writing YANG Model Security Considerations
X-BeenThere: i2nsf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "*I2NSF: Interface to Network Security Functions mailing list*" <i2nsf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i2nsf/>
List-Post: <mailto:i2nsf@ietf.org>
List-Help: <mailto:i2nsf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Jul 2019 14:14:40 -0000

Please reference to the security consideration for YANG models per Ops Guidance. 

Linda

-----Original Message-----
From: Roman Danyliw <rdd@cert.org> 
Sent: Tuesday, July 23, 2019 8:27 AM
To: Linda Dunbar <linda.dunbar@futurewei.com>
Cc: Yoav Nir <ynir.ietf@gmail.com>; Roman Danyliw <rdd@cert.org>
Subject: Writing YANG Model Security Considerations

Hi Linda!

We talked about the need to write consistent security consideration in YANG models per Ops guidance.  This is the reference/template:

https://nam03.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftrac.ietf.org%2Ftrac%2Fops%2Fwiki%2Fyang-security-guidelines&amp;data=02%7C01%7Clinda.dunbar%40futurewei.com%7C4ea43a85074547e5418d08d70f71619a%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C0%7C636994851956133121&amp;sdata=Lf48WzFKPoXZvUKRua5od1In1JI5x%2FiTdE%2F1%2BnNiLZE%3D&amp;reserved=0

Roman

v2.23.0 | Report a Bug | By Email