Re: [secdir] Sector Review: draft-ietf-ospf-te-metric-extensions-09

Ben Laurie <benl@google.com> Mon, 05 January 2015 21:18 UTC

Return-Path: <benl@google.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A0BA91A8A8E for <ietf@ietfa.amsl.com>; Mon, 5 Jan 2015 13:18:21 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.389
X-Spam-Level:
X-Spam-Status: No, score=-1.389 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FM_FORGED_GMAIL=0.622, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CIL1XfNjwYyh for <ietf@ietfa.amsl.com>; Mon, 5 Jan 2015 13:18:20 -0800 (PST)
Received: from mail-qg0-x22a.google.com (mail-qg0-x22a.google.com [IPv6:2607:f8b0:400d:c04::22a]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EB7271A8A7D for <ietf@ietf.org>; Mon, 5 Jan 2015 13:18:19 -0800 (PST)
Received: by mail-qg0-f42.google.com with SMTP id q108so16243723qgd.29 for <ietf@ietf.org>; Mon, 05 Jan 2015 13:18:19 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; bh=yYpsNEQMil/t2xizsOadYMNt6nXV1LrPOeI47+pEnXQ=; b=SvVKw7cvbnR88mMRnjGzkFOHWfK+yakaqfIdD80Rc0+eAG1VFymUXCChUsKRwQHg7B bScUk08OTH/3s3KvcFk919Zu5PQkZJqSatg0AiId0A4ybI+63yHZM1gOtfXotTKqC3PX SN+C7z1TtroS+Q2z9uZpqbh3QFf6Z81ISOs2eR79YBoRc+BjplGnI2w2WzgmPt+witJz i9nqrCFAmXZQ93R405I2ixUJCiK4Ys7WR3a+6HUlLFgABFkh4lZ0KD22Au3anIkL7aYi q8PWGqL8p11CA7KWMppqajd4JsPqBi96TnI3oTUW38O4PRkeRb34McEOz1AnFIGmCkKX 7EIQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=yYpsNEQMil/t2xizsOadYMNt6nXV1LrPOeI47+pEnXQ=; b=JD4YpaVqYAic8GoM71KvidhHF8agFDnHGnCQp8b60HbJ04BHc62xIXMaBYPpp5CWbM HLL5kp8xlD2TuJ2zs7hREzbX5nDBR0zlT4j/boXIEB+EUAsZgTshfoRemGHkxfSGBoOJ N2kGBWD4sT7qYEYTHdhwr713JN+/RxjTLT0H5LR2SjGpZXeOYaYS6bBUoqv8J/7Wi88+ 0jjMqtfIHE4ORbpq3mDxy94l9H5AE5ll0d/woltnETGAHqteXD6HuJsKSDbgSRcnis52 YXySvAL62ViAKNohOkqUmYiitPYhbtFh/PuCRa9Bc6bS0eevrVZGK7/Ch9mmCfALCgXS 0Kmg==
X-Gm-Message-State: ALoCoQlR4kyudYWwWZ65vOwuJ6bImJmf83180+u9ujWjCdBcgduOD4g7uSaQabUKfMHt86oUGmQU
MIME-Version: 1.0
X-Received: by 10.224.137.65 with SMTP id v1mr138862790qat.95.1420492699058; Mon, 05 Jan 2015 13:18:19 -0800 (PST)
Received: by 10.229.183.201 with HTTP; Mon, 5 Jan 2015 13:18:18 -0800 (PST)
In-Reply-To: <m2bnmdym1g.wl%randy@psg.com>
References: <4E0F5009-4811-4FFE-AA26-ECFAC2398101@ogud.com> <m28uhj2wxg.wl%randy@psg.com> <96B524C4-B2E8-443E-871D-60B5FCD2F44A@ogud.com> <m2bnmdym1g.wl%randy@psg.com>
Date: Mon, 5 Jan 2015 21:18:18 +0000
Message-ID: <CABrd9STqBsPQpp_N751ybF_0uF8C3MGG3hKhzoPCBO_pgoCULw@mail.gmail.com>
Subject: Re: [secdir] Sector Review: draft-ietf-ospf-te-metric-extensions-09
From: Ben Laurie <benl@google.com>
To: Randy Bush <randy@psg.com>
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf/GJ0pwfH07ZJ24wOQZGf4-2cUok4
Cc: draft-ietf-ospf-te-metric-extension@tools.ietf.org, ietf <ietf@ietf.org>, Olafur Gudmundsson <ogud@ogud.com>, "secdir@ietf.org" <secdir@ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 05 Jan 2015 21:18:21 -0000

On 5 January 2015 at 21:06, Randy Bush <randy@psg.com> wrote:
>>>> The document contains no issues from a security perspective as it is
>>>> only creating LSA’s for new types of route selection metrics, time
>>>> instead of network hops.
>>>
>>> and the new lsas could not be used in path shortening attacks, right?
>>
>> this document only defines the format of the LSA’s it does
>> not talk about processing by the routing engines.
>
> so the secdir sees no need to warn about it.  got it.  </sarcasm>

If secdir is going to warn about it through this process, then shortly
the right place to do that is in the comments on the document that
does talk about processing by the routing engines?