Re: [secdir] [manet] Combined Gen-art and secdir LC review: draft-ietf-manet-smc-sec-threats-05

Thomas Clausen <ietf@thomasclausen.org> Tue, 09 August 2016 09:24 UTC

Return-Path: <ietf@thomasclausen.org>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8B2A712D0DA; Tue, 9 Aug 2016 02:24:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=thomasclausen.org
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FSTFLqoY-nkP; Tue, 9 Aug 2016 02:24:16 -0700 (PDT)
Received: from maila2.tigertech.net (maila2.tigertech.net [208.80.4.152]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ED0E612D0AE; Tue, 9 Aug 2016 02:24:15 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by maila2.tigertech.net (Postfix) with ESMTP id B372D240E93; Tue, 9 Aug 2016 02:24:15 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=thomasclausen.org; s=1.tigertech; t=1470734655; bh=aWK5riFpFYKJvpm7zzn5sWydYFSmVurbaMcmS9q1GtU=; h=Subject:From:In-Reply-To:Date:Cc:References:To:From; b=k3A69lnNVA12SSWpuaDDsFlExDV7gvn+oyZjH9s44UOqCvHJu2nyFefbSBzTELosb QNKHz7arc0dxj5Ysjmidvx40l2DUCiytJGuvVWBenZtU1+ncrtR96MpwV1Z3eQjK0v q1AzUl+gSKWbRgAPiQOL3bPBs8ogYV8/WpRtrpW8=
X-Virus-Scanned: Debian amavisd-new at maila2.tigertech.net
Received: from [10.44.183.161] (unknown [37.165.31.6]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by maila2.tigertech.net (Postfix) with ESMTPSA id A1D74240302; Tue, 9 Aug 2016 02:24:14 -0700 (PDT)
Content-Type: multipart/alternative; boundary=Apple-Mail-91E7CF33-EDA5-4D62-9731-2C34A1C54FC1
Mime-Version: 1.0 (1.0)
From: Thomas Clausen <ietf@thomasclausen.org>
X-Mailer: iPhone Mail (14A5322e)
In-Reply-To: <c2c8df34-e456-be3f-ffb3-6b64d71bd458@nostrum.com>
Date: Tue, 9 Aug 2016 11:24:10 +0200
Content-Transfer-Encoding: 7bit
Message-Id: <13F5D40F-712E-4970-9CBF-B0E6A1A13F2D@thomasclausen.org>
References: <c2c8df34-e456-be3f-ffb3-6b64d71bd458@nostrum.com>
To: Robert Sparks <rjsparks@nostrum.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/1SQoNOfTKJf0fXMZfO6w_8pmWis>
Cc: General Area Review Team <gen-art@ietf.org>, manet@ietf.org, "ietf@ietf.org" <ietf@ietf.org>, draft-ietf-manet-smc-sec-threats.all@ietf.org, "secdir@ietf.org" <secdir@ietf.org>
Subject: Re: [secdir] [manet] Combined Gen-art and secdir LC review: draft-ietf-manet-smc-sec-threats-05
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Aug 2016 09:24:17 -0000

Hello Robert, all,

Thank you for this review. Much appreciated. As I understand it, there are no major issues to address?

If it is alright with you (& with our AD), We propose to fold the "nits" (as you call them) that you found in with a couple of "nits" raised by Alvaro already, and with whatever else the ongoing LC raises, and spin a revision capturing it all when the LC is closed?

Thanks again for your help,

Thomas


--
Thomas Heide Clausen  •  @thclausen  	• 	thomasclausen.org 
www.arkko.com/tools/allstats/thomasheideclausen.html

> On 8 Aug 2016, at 17:17, Robert Sparks <rjsparks@nostrum.com>; wrote:
> 
> I am the assigned Gen-ART and secdir reviewer for this draft. The General Area
> Review Team (Gen-ART) reviews all IETF documents being processed by the IESG
> for the IETF Chair. The secdir does the same for the security area directors.
> Please treat these comments just like any other last call comments.
> 
> For more information on Gen-Art, please see the FAQ at
> <https://wiki.tools.ietf.org/area/gen/trac/wiki/GenArtfaq>;.
> 
> For moe information on secdir, see the wiki at
> <https://trac.tools.ietf.org/area/sec/trac/wiki/SecDirReview>
> 
> Document: draft-ietf-manet-smf-sec-threats-05
> Reviewer: Robert Sparks
> Review Date: 8 Aug 2016
> IETF LC End Date: 11 Aug 2016
> IESG Telechat date: 18 Aug 2016
> 
> Summary: Ready for publication as an Informational RFC
> 
> This draft provides a discussion of vulnerabilities in Simplified Multicast
> Forwarding (SMF), focusing on attacking the Duplicate Packet Detection and
> Relay Set Selection mechanisms. It positions itself as being useful information
> for those deploying SMF as currently defined.  It does not propose mitigations,
> but does have a section that identifies potential future work that might.
> 
> I have sent several editorial nits directly to the authors.
> 
> _______________________________________________
> manet mailing list
> manet@ietf.org
> https://www.ietf.org/mailman/listinfo/manet