[secdir] draft-ietf-rift-kv-tie-structure-and-processing-05 ietf last call Secdir review
Linda Dunbar via Datatracker <noreply@ietf.org> Tue, 11 November 2025 00:59 UTC
Return-Path: <noreply@ietf.org>
X-Original-To: secdir@ietf.org
Delivered-To: secdir@mail2.ietf.org
Received: from [10.244.8.124] (unknown [4.156.85.76]) by mail2.ietf.org (Postfix) with ESMTP id BE6488738734; Mon, 10 Nov 2025 16:59:27 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: Linda Dunbar via Datatracker <noreply@ietf.org>
To: secdir@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 12.53.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <176282276721.2054673.8477110870353064546@dt-datatracker-5df8666cb-7l4w5>
Date: Mon, 10 Nov 2025 16:59:27 -0800
Message-ID-Hash: OLASTN5T5677UREPGSMPVBENDHMP7VGH
X-Message-ID-Hash: OLASTN5T5677UREPGSMPVBENDHMP7VGH
X-MailFrom: noreply@ietf.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-secdir.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: draft-ietf-rift-kv-tie-structure-and-processing.all@ietf.org, last-call@ietf.org, rift@ietf.org
X-Mailman-Version: 3.3.9rc6
Reply-To: Linda Dunbar <linda.dunbar@futurewei.com>
Subject: [secdir] draft-ietf-rift-kv-tie-structure-and-processing-05 ietf last call Secdir review
List-Id: Security Area Directorate <secdir.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/5Cmd18bBSVkXBZLn-XWMJpS76iU>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Owner: <mailto:secdir-owner@ietf.org>
List-Post: <mailto:secdir@ietf.org>
List-Subscribe: <mailto:secdir-join@ietf.org>
List-Unsubscribe: <mailto:secdir-leave@ietf.org>
Document: draft-ietf-rift-kv-tie-structure-and-processing Title: RIFT Key/Value TIE Structure and Processing Reviewer: Linda Dunbar Review result: Has Nits Overall, the draft is safe but would benefit from a slightly expanded Security Considerations section covering input validation, flooding risks, and confidentiality hygiene. For example, the malicious or malformed KV-TIEs could cause unnecessary churn or resource exhaustion. Implementations SHOULD validate KV content, discard malformed entries, and log such events. NITS: “permenent” -> “permanent” “publically” -> “publicly” Warm Regards, Linda Dunbar
- [secdir] draft-ietf-rift-kv-tie-structure-and-pro… Linda Dunbar via Datatracker
- [secdir] Re: draft-ietf-rift-kv-tie-structure-and… Christian Kuhtz
- [secdir] Re: draft-ietf-rift-kv-tie-structure-and… Linda Dunbar
- [secdir] Re: [Rift] draft-ietf-rift-kv-tie-struct… Head, Jordan