[secdir] secdir review of draft-ietf-mboned-deprecate-interdomain-asm-05
David Mandelberg <david@mandelberg.org> Sun, 15 December 2019 22:08 UTC
Return-Path: <david@mandelberg.org>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 24D7B120098 for <secdir@ietfa.amsl.com>; Sun, 15 Dec 2019 14:08:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mandelberg.org
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PHROCk_T6kDx for <secdir@ietfa.amsl.com>; Sun, 15 Dec 2019 14:08:33 -0800 (PST)
Received: from smtp.rcn.com (smtp.rcn.com [69.168.97.78]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 740E0120073 for <secdir@ietf.org>; Sun, 15 Dec 2019 14:08:33 -0800 (PST)
X_CMAE_Category: , ,
X-CNFS-Analysis: v=2.3 cv=WOMBoUkR c=1 sm=1 tr=0 a=OXtaa+9CFT7WVSERtyqzJw==:117 a=OXtaa+9CFT7WVSERtyqzJw==:17 a=KGjhK52YXX0A:10 a=TbrmGLU8W_AA:10 a=IkcTkHD0fZMA:10 a=NTnny0joGdQA:10 a=pxVhFHJ0LMsA:10 a=bmmO2AaSJ7QA:10 a=iiazv-oawmH03g7Men8A:9 a=QEXdDO2ut3YA:10 a=Z5ABNNGmrOfJ6cZ5bIyy:22 a=SsAZrZ5W_gNWK9tOzrEV:22
X-CM-Score: 0
X-Scanned-by: Cloudmark Authority Engine
X-Authed-Username: ZHNlb21uQHJjbi5jb20=
Authentication-Results: smtp03.rcn.cmh.synacor.com smtp.mail=david@mandelberg.org; spf=softfail; sender-id=softfail
Authentication-Results: smtp03.rcn.cmh.synacor.com header.DKIM-Signature=@mandelberg.org; dkim=pass
Authentication-Results: smtp03.rcn.cmh.synacor.com header.from=david@mandelberg.org; sender-id=softfail
Authentication-Results: smtp03.rcn.cmh.synacor.com smtp.user=dseomn@rcn.com; auth=pass (LOGIN)
Received: from [209.6.43.168] ([209.6.43.168:55000] helo=uriel.mandelberg.org) by smtp.rcn.com (envelope-from <david@mandelberg.org>) (ecelerity 3.6.25.56547 r(Core:3.6.25.0)) with ESMTPSA (cipher=DHE-RSA-AES256-GCM-SHA384) id 12/AB-36082-FDEA6FD5; Sun, 15 Dec 2019 17:08:32 -0500
Received: from [192.168.1.152] (DD-WRT [192.168.1.1]) by uriel.mandelberg.org (Postfix) with ESMTPSA id 893581C6045; Sun, 15 Dec 2019 17:08:29 -0500 (EST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=mandelberg.org; s=201909; t=1576447709; bh=9lSPqYYF8enYZVSZq/bVGmJ+zMgi/i47RdvCliNsjHk=; h=To:From:Subject:Date:From; b=S+e7DrfBsNVfXDojKNrzjlmMxxlKBHu2BfFZDzwFXxuNVMuGeJgEmwoC0Acmaz8c0 xx/Yh94JoHTANaEeCaYGjM6xeWCJFLfi56y5JUFIusi+R3VQtC3fq+MquEjFi6dF6G OT3+KTb3E2J0aKlaNjPOF5nUh6Cw94EAcw0rFjxPh6gRhQgQsOEmerl7zqhKMukjkU bXHi7z3MzeSTZ3bmEhw3q0lkNl969e7XEnPpwV8V6kSAINo5lETfHTLjI343I0sBPs 0lrKe/9/Cp4txO1qw8CjXzrBySEW6CaswHpJMJgiBFWK3DLZwefYbBd6e9vFz/H8hF 3I6SJbQsdv8vw==
To: secdir@ietf.org, iesg@ietf.org, draft-ietf-mboned-deprecate-interdomain-asm.all@ietf.org
From: David Mandelberg <david@mandelberg.org>
Message-ID: <58b3d90c-185d-b285-865f-d02e23dd22ae@mandelberg.org>
Date: Sun, 15 Dec 2019 17:08:27 -0500
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.9.0
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/6tUV814_zM-0lhksko2WKy8MBGo>
Subject: [secdir] secdir review of draft-ietf-mboned-deprecate-interdomain-asm-05
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 15 Dec 2019 22:08:34 -0000
I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. The summary of the review is Ready with issues. Section 3.2.3 talks about using source addresses for security. Doesn't that security rely on adoption of BCP38? (Or does the multicast destination address make BCP38 irrelevant here?)
- [secdir] secdir review of draft-ietf-mboned-depre… David Mandelberg
- Re: [secdir] secdir review of draft-ietf-mboned-d… Leonard Giuliano
- Re: [secdir] secdir review of draft-ietf-mboned-d… David Mandelberg