[Ntp] Roman Danyliw's No Objection on draft-ietf-ntp-yang-data-model-15: (with COMMENT)

Roman Danyliw via Datatracker <noreply@ietf.org> Mon, 28 June 2021 23:38 UTC

Return-Path: <noreply@ietf.org>
X-Original-To: ntp@ietf.org
Delivered-To: ntp@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id C5F753A1B9F; Mon, 28 Jun 2021 16:38:16 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: Roman Danyliw via Datatracker <noreply@ietf.org>
To: "The IESG" <iesg@ietf.org>
Cc: draft-ietf-ntp-yang-data-model@ietf.org, ntp-chairs@ietf.org, ntp@ietf.org, Dieter Sibold <dsibold.ietf@gmail.com>, dsibold.ietf@gmail.com
X-Test-IDTracker: no
X-IETF-IDTracker: 7.33.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: Roman Danyliw <rdd@cert.org>
Message-ID: <162492349668.31080.1334454060517597879@ietfa.amsl.com>
Date: Mon, 28 Jun 2021 16:38:16 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/VI6VLaUWGLOgRCP2qPPvdDOXCXg>
Subject: [Ntp] Roman Danyliw's No Objection on draft-ietf-ntp-yang-data-model-15: (with COMMENT)
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Network Time Protocol <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 28 Jun 2021 23:38:17 -0000

Roman Danyliw has entered the following ballot position for
draft-ietf-ntp-yang-data-model-15: No Objection

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)


Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
for more information about DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://datatracker.ietf.org/doc/draft-ietf-ntp-yang-data-model/



----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------

Thank you to Takeshi Takahashi for the SECDIR review.

** YANG.  feature deprecated.  Typo. s/availaible/available/

** YANG.  Crypto algorithms. AES-CMAC has a reference but the others don’t. 
Consider adding them.

** Section 9.1. Typo. s/would used the an/would use an/

** Section 11.

A few clarifying items on describing the sensitivity of nodes:

For writable nodes:
-- /ntp/authentication/authentication-keys:  The entries in the list includes
all the NTP authentication keys.  Altering this list could cause a disruption
for clients and peers (for servers); or prevent a client from accessing a
server.

For readable notes:

-- /ntp/authentication/authentication-keys. Recommend being clearer on the risk:

s/can be exploited/can be exploited to permit unauthorized access to the NTP
service/

-- /ntp/authentication and /ntp/access-rules - The entries in the list include
the authentication and access control configurations.  Exposure of these nodes
could reveal network topology or trust relationship.