IETF Logo Mail Archive

[mpls] Stephen Farrell's Discuss on draft-ietf-mpls-mldp-node-protection-05: (with DISCUSS and COMMENT)

"Stephen Farrell" <stephen.farrell@cs.tcd.ie> Tue, 15 September 2015 12:18 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: mpls@ietfa.amsl.com
Delivered-To: mpls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4D4CA1A6F53; Tue, 15 Sep 2015 05:18:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SKRZN4YEOZFe; Tue, 15 Sep 2015 05:18:44 -0700 (PDT)
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id D4D691ACED6; Tue, 15 Sep 2015 05:18:44 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
To: The IESG <iesg@ietf.org>
X-Test-IDTracker: no
X-IETF-IDTracker: 6.4.1
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <20150915121844.9126.51946.idtracker@ietfa.amsl.com>
Date: Tue, 15 Sep 2015 05:18:44 -0700
Archived-At: <http://mailarchive.ietf.org/arch/msg/mpls/3zSx0rrrWd6glVPXPDGQ5nf1Su8>
Cc: mpls@ietf.org, mpls-chairs@ietf.org, draft-ietf-mpls-mldp-node-protection.shepherd@ietf.org, draft-ietf-mpls-mldp-node-protection.ad@ietf.org, draft-ietf-mpls-mldp-node-protection@ietf.org
Subject: [mpls] Stephen Farrell's Discuss on draft-ietf-mpls-mldp-node-protection-05: (with DISCUSS and COMMENT)
X-BeenThere: mpls@ietf.org
X-Mailman-Version: 2.1.15
List-Id: Multi-Protocol Label Switching WG <mpls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mpls>, <mailto:mpls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mpls/>
List-Post: <mailto:mpls@ietf.org>
List-Help: <mailto:mpls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mpls>, <mailto:mpls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Sep 2015 12:18:46 -0000

Stephen Farrell has entered the following ballot position for
draft-ietf-mpls-mldp-node-protection-05: Discuss

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)


Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
for more information about IESG DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://datatracker.ietf.org/doc/draft-ietf-mpls-mldp-node-protection/



----------------------------------------------------------------------
DISCUSS:
----------------------------------------------------------------------


The MUST in para 2 section 3 seems to me to create a possibly
new DoS enabler. The ability of N to cause this kind of ripple
effect, (setting up then pushing traffic to a bunch of new
LSPs), is what may be new. Exactly where in the referenced RFCs
is that covered? Or am I wrong that this is a new threat? (BTW:
Answering that this new threat is no worse than other existing
threats if one has access to the internals of a node.... is a
non-answer:-)


----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------


While it is fine to re-use text, it is increasingly hard to
believe that almost nothing done since RFC5920 (dated in 2010)
has any new security considerations.  Put another way, who is
really helped by a 2 line security considerations section that
points at 6388 which points at 5036 (etc)?

v2.23.0 | Report a Bug | By Email