Re: [Pce] Shepherd/LC review of draft-ietf-pce-applicability-actn-08
"Adrian Farrel" <adrian@olddog.co.uk> Sat, 23 February 2019 04:29 UTC
Return-Path: <adrian@olddog.co.uk>
X-Original-To: pce@ietfa.amsl.com
Delivered-To: pce@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 09349128B33; Fri, 22 Feb 2019 20:29:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.601
X-Spam-Level:
X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id aOisJLndg4B4; Fri, 22 Feb 2019 20:29:21 -0800 (PST)
Received: from mta5.iomartmail.com (mta5.iomartmail.com [62.128.193.155]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 174751200ED; Fri, 22 Feb 2019 20:29:20 -0800 (PST)
Received: from vs2.iomartmail.com (vs2.iomartmail.com [10.12.10.123]) by mta5.iomartmail.com (8.14.4/8.14.4) with ESMTP id x1N4TB0a005935; Sat, 23 Feb 2019 04:29:12 GMT
Received: from vs2.iomartmail.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id 8061822044; Sat, 23 Feb 2019 04:29:11 +0000 (GMT)
Received: from asmtp2.iomartmail.com (unknown [10.12.10.249]) by vs2.iomartmail.com (Postfix) with ESMTPS id 6AA8B22042; Sat, 23 Feb 2019 04:29:11 +0000 (GMT)
Received: from LAPTOPK7AS653V ([218.189.35.128]) (authenticated bits=0) by asmtp2.iomartmail.com (8.14.4/8.14.4) with ESMTP id x1N4T6ZA021826 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Sat, 23 Feb 2019 04:29:09 GMT
Reply-To: adrian@olddog.co.uk
From: Adrian Farrel <adrian@olddog.co.uk>
To: 'Leeyoung' <leeyoung@huawei.com>
Cc: pce@ietf.org, draft-ietf-pce-applicability-actn@ietf.org
References: <061f01d4c9f7$3a4ce510$aee6af30$@olddog.co.uk> <7AEB3D6833318045B4AE71C2C87E8E173D0E1341@sjceml521-mbx.china.huawei.com>
In-Reply-To: <7AEB3D6833318045B4AE71C2C87E8E173D0E1341@sjceml521-mbx.china.huawei.com>
Date: Sat, 23 Feb 2019 04:29:05 -0000
Organization: Old Dog Consulting
Message-ID: <00d101d4cb30$52836ac0$f78a4040$@olddog.co.uk>
MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Outlook 16.0
Content-Language: en-gb
Thread-Index: AQI0G+vgh7xuMEYsORA1q9LCT4x8sAFcp+hipSM8LcA=
X-Originating-IP: 218.189.35.128
X-Thinkmail-Auth: adrian@olddog.co.uk
X-TM-AS-GCONF: 00
X-TM-AS-Product-Ver: IMSVA-9.0.0.1623-8.2.0.1013-24450.001
X-TM-AS-Result: No--8.957-10.0-31-10
X-imss-scan-details: No--8.957-10.0-31-10
X-TMASE-Version: IMSVA-9.0.0.1623-8.2.1013-24450.001
X-TMASE-Result: 10--8.957500-10.000000
X-TMASE-MatchedRID: u7Yf2n7Ca/3xIbpQ8BhdbKAWr9O8GGuSnophrTcsI7aqvcIF1TcLYDME cqwMcuifyeZmyVmXt4Ne7PkhSbTKtjB7AhAesYcjF6z9HGHKwNuaF3dhLfl72N9RlPzeVuQQ2HV VA7FniqR66wuw71Rpqe5w+CVKeiwle6k6FRH8ATyN8gNWZeeA6hkqnRJng/51KAzGd8VeOIicWp NZSj8YTQ94o746cN+H4c5VfY0GlV+tGUuyWCB/KtUFhgTP7/bWbv16+gil4jfIvQIyugvKdS0MH RhU+49Jj64/XF7EXIRP0qF38UTP1B8sKfBUK4IVngIgpj8eDcBZDL1gLmoa/JuTdmBzA9G/DMq3 z/Y/gtVYF3qW3Je6+yCdGHCKKFLR+7wJ2NFVdt8GZw9CPAh2hQmHXzWEfq7MWg91eiepNG6mVUh 7ZpVkR1whTgSyNLEB05hIMhiR7mYunBdu6pNXsuh6vUQky8b7LLR5nF3ltXgVUhluC41uNBWJz0 qF3xvHjd00uZU7WfJ+3BndfXUhXQ==
X-TMASE-SNAP-Result: 1.821001.0001-0-1-12:0,22:0,33:0,34:0-0
Archived-At: <https://mailarchive.ietf.org/arch/msg/pce/lZfP_QZioN2htB6vWxiIwsE86aQ>
Subject: Re: [Pce] Shepherd/LC review of draft-ietf-pce-applicability-actn-08
X-BeenThere: pce@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Path Computation Element <pce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pce>, <mailto:pce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pce/>
List-Post: <mailto:pce@ietf.org>
List-Help: <mailto:pce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pce>, <mailto:pce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 23 Feb 2019 04:29:24 -0000
Hello, Speedy reply from you: thanks. > Thanks for your shepherd/LC review of this draft. Here's our comment > (inline under YL>>). > > Diff file is also provided for your verifications of all the changes between > v.8 and v.9. OK. But (obviously?) please wait until the end of last call as other people may be reviewing and don't want a moving target. > Let us know if this would make you satisfied. Satisfied? Me? I think you may be mistaking me for someone with a sunny disposition and positive outlook 😊 Snipped and in line... >> Is Figure 1 any different from Figure 2 of RFC 8453? If it is the same, >> why do you need to repeat it here? > > YL>> Perhaps adding the text would clarify: > > OLD: The ACTN reference architecture identified a three-tier control > hierarchy as depicted in Figure 1: > > NEW: The ACTN reference architecture is shown in Figure 1 for the convenience. > It identifies a three-tier control hierarchy as depicted in Figure 1: I see your intent. How about... The ACTN reference architecture is shown in Figure 1 which is reproduced here from [RFC8453] for convenience. [RFC8453] remains the definitive reference for the ACTN architecture. As depicted in Figure 1, the ACTN architecture identifies a three-tier hierarchy. --- >> 6. >> >> I think you need to do a little more work. The first paragraph nicely lists the relevant >> security requirements. I think you need to say how each of these is met by security >> in PCEP. The second paragraph does mention how to secure PCEP, but doesn't >> make it clear whether this addresses the requirements. > > YL>> I would add a sentence as follows in the end of the first paragraph. > > NEW: The security considerations discussed in [RFC5440] are relevant for > this document, this document does not introduce any new security > issues. Weeeeeeeeell, I see what you want to do, but I don't quite buy this approach. It is true that it doesn't of itself introduce any security issues, but does it leave the ACTN security issues unresolved or not? You say that RFC8453 "lists various security considerations such as request and control of resources, confidentially of the information, and availability of function which should be taken into consideration." So you really should take them into consideration. 8453 has a very substantial security section, and what you have to do is pick the points that it identifies and for each say... - This consideration is not relevant to the use of PCE because it applies to a component that is remote from the PCE - This consideration applies to the use of PCE and can be addressed through the use of <foo> - This consideration applies to the use of PCE, but is not currently addressed. New features will need to be developed. I know this is a bit of work, but the Security reviewers will (should?) require us to do it, so it is better to try now. Thanks for all the work. Adrian
- [Pce] Shepherd/LC review of draft-ietf-pce-applic… Adrian Farrel
- Re: [Pce] Shepherd/LC review of draft-ietf-pce-ap… Leeyoung
- Re: [Pce] Shepherd/LC review of draft-ietf-pce-ap… Adrian Farrel