Re: [secdir] secdir review of draft-ietf-mpls-lsp-ping-enhanced-dsmap-10

Nitin Bahadur <nitinb@juniper.net> Tue, 02 August 2011 17:43 UTC

Return-Path: <nitinb@juniper.net>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6F83311E80AC; Tue, 2 Aug 2011 10:43:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.599
X-Spam-Level:
X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id b+H8hBHkwU71; Tue, 2 Aug 2011 10:43:39 -0700 (PDT)
Received: from exprod7og120.obsmtp.com (exprod7og120.obsmtp.com [64.18.2.18]) by ietfa.amsl.com (Postfix) with ESMTP id 5D77811E807F; Tue, 2 Aug 2011 10:43:35 -0700 (PDT)
Received: from P-EMHUB03-HQ.jnpr.net ([66.129.224.36]) (using TLSv1) by exprod7ob120.postini.com ([64.18.6.12]) with SMTP ID DSNKTjg3TwakdAT6qWBFxpwv0sxuc8oxbgWq@postini.com; Tue, 02 Aug 2011 10:43:49 PDT
Received: from EMBX02-HQ.jnpr.net ([fe80::18fe:d666:b43e:f97e]) by P-EMHUB03-HQ.jnpr.net ([::1]) with mapi; Tue, 2 Aug 2011 10:42:39 -0700
From: Nitin Bahadur <nitinb@juniper.net>
To: Joe Salowey <jsalowey@cisco.com>, "secdir@ietf.org" <secdir@ietf.org>, The IESG <iesg@ietf.org>, "draft-ietf-mpls-lsp-ping-enhanced-dsmap.all@tools.ietf.org" <draft-ietf-mpls-lsp-ping-enhanced-dsmap.all@tools.ietf.org>
Date: Tue, 02 Aug 2011 10:42:37 -0700
Thread-Topic: secdir review of draft-ietf-mpls-lsp-ping-enhanced-dsmap-10
Thread-Index: AcxROUtATAhp5ZDQQ3KcFelWnqIRjQAAkYTr
Message-ID: <CA5D851D.1F892%nitinb@juniper.net>
In-Reply-To: <6B1C78CB-B687-45B1-BA74-1B02FDFCB86D@cisco.com>
Accept-Language: en-US
Content-Language: en
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Mailman-Approved-At: Thu, 04 Aug 2011 08:03:41 -0700
Subject: Re: [secdir] secdir review of draft-ietf-mpls-lsp-ping-enhanced-dsmap-10
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 Aug 2011 17:43:40 -0000

Thanks Joe for your review. I will address the nit.

Nitin


On 8/2/11 10:26 AM, "Joe Salowey" <jsalowey@cisco.com> wrote:

I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the
IESG.  These comments were written primarily for the benefit of the
security area directors.  Document editors and WG chairs should treat
these comments just like any other last call comments.

This document describes modifications to LSP Ping to allow it to work with MPLS tunnels.  It is possible that in some cases a provider may not want to disclose information about tunnels.  The security considerations in the document describe mechanisms to keep this information private.   In addition the security considerations reference RFC 4379 which seems sufficient.

One nit: the first sentence in section 1 is missing a closing parenthesis.

Joe