Re: [secdir] Secdir telechat review of draft-ietf-lime-yang-connectionless-oam-methods-11
Qin Wu <bill.wu@huawei.com> Thu, 26 October 2017 03:56 UTC
Return-Path: <bill.wu@huawei.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 89B47138BE2; Wed, 25 Oct 2017 20:56:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.22
X-Spam-Level:
X-Spam-Status: No, score=-4.22 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5qjKJOl6B4Bo; Wed, 25 Oct 2017 20:56:42 -0700 (PDT)
Received: from lhrrgout.huawei.com (lhrrgout.huawei.com [194.213.3.17]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 88C8F137C4A; Wed, 25 Oct 2017 20:56:41 -0700 (PDT)
Received: from 172.18.7.190 (EHLO lhreml706-cah.china.huawei.com) ([172.18.7.190]) by lhrrg01-dlp.huawei.com (MOS 4.3.7-GA FastPath queued) with ESMTP id DYL41846; Thu, 26 Oct 2017 03:56:39 +0000 (GMT)
Received: from NKGEML413-HUB.china.huawei.com (10.98.56.74) by lhreml706-cah.china.huawei.com (10.201.108.47) with Microsoft SMTP Server (TLS) id 14.3.361.1; Thu, 26 Oct 2017 04:56:39 +0100
Received: from NKGEML513-MBX.china.huawei.com ([169.254.1.105]) by NKGEML413-HUB.china.huawei.com ([10.98.56.74]) with mapi id 14.03.0235.001; Thu, 26 Oct 2017 11:56:31 +0800
From: Qin Wu <bill.wu@huawei.com>
To: Benjamin Kaduk <kaduk@mit.edu>, "secdir@ietf.org" <secdir@ietf.org>
CC: "draft-ietf-lime-yang-connectionless-oam-methods.all@ietf.org" <draft-ietf-lime-yang-connectionless-oam-methods.all@ietf.org>, "lime@ietf.org" <lime@ietf.org>, "ietf@ietf.org" <ietf@ietf.org>
Thread-Topic: Secdir telechat review of draft-ietf-lime-yang-connectionless-oam-methods-11
Thread-Index: AQHTTa7ue9H/pHu33EWTnbCYvsyLpKL1f3iQ
Date: Thu, 26 Oct 2017 03:56:31 +0000
Message-ID: <B8F9A780D330094D99AF023C5877DABA9AC176A0@nkgeml513-mbx.china.huawei.com>
References: <150894917478.4886.16418816851585609070@ietfa.amsl.com>
In-Reply-To: <150894917478.4886.16418816851585609070@ietfa.amsl.com>
Accept-Language: zh-CN, en-US
Content-Language: zh-CN
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.136.79.163]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-CFilter-Loop: Reflected
X-Mirapoint-Virus-RAPID-Raw: score=unknown(0), refid=str=0001.0A010204.59F15CF8.0009, ss=1, re=0.000, recu=0.000, reip=0.000, cl=1, cld=1, fgs=0, ip=169.254.1.105, so=2013-06-18 04:22:30, dmn=2013-03-21 17:37:32
X-Mirapoint-Loop-Id: 07da40cb0dfac61a35c5822d87060466
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/2E_zrOZNtt2LnipAJ2AsIsc11TI>
Subject: Re: [secdir] Secdir telechat review of draft-ietf-lime-yang-connectionless-oam-methods-11
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 26 Oct 2017 03:56:44 -0000
Thanks Benjamin for valuable review. This draft is updated based on YANG security guideline: https://trac.ietf.org/trac/ops/wiki/yang-security-guidelines Privacy issue has been considered in security section since "location-type" and other system identifiers are defined within two RPC operations. Regarding copy editing for language/grammar issue, yes, many other raised similar issue as you said, we will fix those typo and format issue in the update. Thanks a lot. -Qin -----邮件原件----- 发件人: Benjamin Kaduk [mailto:kaduk@mit.edu] 发送时间: 2017年10月26日 0:33 收件人: secdir@ietf.org 抄送: draft-ietf-lime-yang-connectionless-oam-methods.all@ietf.org; lime@ietf.org; ietf@ietf.org 主题: Secdir telechat review of draft-ietf-lime-yang-connectionless-oam-methods-11 Reviewer: Benjamin Kaduk Review result: Ready This draft is basically providing a YANG model as an abstraction over existing (connectionless OAM) functionality, perhaps with some intention of facilitating similar functionality in new spaces. (E.g., ICMP ping/traceroute exist, but entries are also given for SFC, MPLS, MPLS-TP, TWAMP, BIER, and I do not expect that all of those currently have such functionality.). The modeled functionality is intended to be run over management protocols such as NETCONF or RESTCONF (i.e., ssh or HTTPS), which are at least nominally secure transports. Though it is possible to configure either of them in an insecure fashion, I don't feel a particular need to beat the reader over the head with notes about actually verifying TLS certificates, etc.. The security considerations duly mention that access control is appropriate and that some operations may be considered sensitive or vulnerable in some environments, which is true, and probably the most that can reasonably be said at this level of abstraction. I do see several appearances of an abstract "location-type" field and other system identifiers ("identityref", "system-id", MAC/IPv4/IPv6 addresses), which are sometimes considered sensitive, especially when they can be associated back to individual users, which leads to privacy considerations about user tracking and similar. Since this is OAM work, I don't actually know that there are real users in scope as opposed to fixed infrastructure, but perhaps a statement in the security considerations about privacy and this sort of identifiers would still be useful. The document could benefit from some general copy editing for language/grammar/etc., but unfortunately given the short turnaround between last call end and the telechat, I cannot provide a more detailed patch or comments at the present time.