[secdir] secdir review of draft-ietf-ippm-multimetrics

Stephen Farrell <stephen.farrell@cs.tcd.ie> Sun, 23 August 2009 17:33 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 95EBD3A6B8F for <secdir@core3.amsl.com>; Sun, 23 Aug 2009 10:33:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.915
X-Spam-Level:
X-Spam-Status: No, score=-0.915 tagged_above=-999 required=5 tests=[AWL=-0.916, BAYES_50=0.001]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iXYsXoqowZbb; Sun, 23 Aug 2009 10:33:31 -0700 (PDT)
Received: from relay.imagine.ie (relay.imagine.ie [87.232.1.41]) by core3.amsl.com (Postfix) with ESMTP id B39EC3A635F; Sun, 23 Aug 2009 10:33:31 -0700 (PDT)
Received: from mail1.int.imagine.ie (mail1 [87.232.1.152]) by relay.imagine.ie (Postfix) with ESMTP id 1695B476B; Sun, 23 Aug 2009 18:33:36 +0100 (IST)
Received: from [10.87.48.11] (dsl-102-234.cust.imagine.ie [87.232.102.234]) by mail1.int.imagine.ie (8.13.4/8.13.4/Debian-3) with ESMTP id n7NHXXbl012587 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Sun, 23 Aug 2009 18:33:34 +0100
Message-ID: <4A917D6E.7060205@cs.tcd.ie>
Date: Sun, 23 Aug 2009 18:33:34 +0100
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
User-Agent: Thunderbird 2.0.0.23 (X11/20090812)
MIME-Version: 1.0
To: secdir@ietf.org, draft-ietf-ippm-multimetrics@tools.ietf.org, ippm-chairs@tools.ietf.org, sec-ads@ietf.org
X-Enigmail-Version: 0.96.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-Bayes-Prob: 0.0001 (Score 0)
X-Canit-Stats-ID: 48519566 - e572010a579a (trained as not-spam)
X-CanItPRO-Stream: outgoing
X-Scanned-By: CanIt (www . roaringpenguin . com) on 87.232.1.52
Subject: [secdir] secdir review of draft-ietf-ippm-multimetrics
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 23 Aug 2009 17:33:32 -0000

Hi,

This is a security directorate review; editors should treat these
comments as any other last call comments.

The draft defines new "spatial" and multi-party metrics.

1. The security considerations section refers to the same section in
RFCs 2679, 2680 (are those identical?), 3393 and 3432. Those are all
pretty brief (~3 paragraphs) and don't really say much. Presumably this
was considered ok when those were produced so if the ADs are happy that
that remains the case, then its ok that this draft refers to those as
if they were more detailed than they are.

2. If I am a point of interest presumably I could send bad results in
order to attempt to get someone to reconfigure the network so as to
offer me better service or give someone else worse service. I would
think that that may warrant a specific mention as a security
consideration. The current text doesn't seem to cover that and I
guess I'd argue that this is more likely for a one-to-group measurement.

Regards,
Stephen.

Editorial/Nits:

- Are the "x" and "X" characters different in Figure 2? I think they
are, but the legend only mentions the "x" as not being of interest.
Maybe use Y/N instead but do say if the "X" (or "Y") are of interest.

- The acronym ipdv is used without expansion in section 3.

- 5.1.5 s/DTi+1/dTi+1/

- 5.2 s/from the section 2/from section 2/

- 8.0 s/This kind of statistics/This kind of statistic/ or
       /These kinds of statistics/

- 8.1 s/The packet loss/Packet loss/  (There are a number of
such language changes that should be made.)

- 10.4 In the informationm model should hosts_serie be hosts_series?
(same for other xxx_serie elements)