Re: [secdir] secdir review of draft-ietf-dime-overload-reqs-11
Eric McMurry <emcmurry@computer.org> Tue, 10 September 2013 00:42 UTC
Return-Path: <emcmurry@computer.org>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AB5DC21E80FA; Mon, 9 Sep 2013 17:42:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.371
X-Spam-Level:
X-Spam-Status: No, score=-6.371 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, SARE_SUB_OBFU_Q1=0.227, UNPARSEABLE_RELAY=0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SSuEtKHC1PXe; Mon, 9 Sep 2013 17:42:00 -0700 (PDT)
Received: from aserp1040.oracle.com (aserp1040.oracle.com [141.146.126.69]) by ietfa.amsl.com (Postfix) with ESMTP id 2771D21E8063; Mon, 9 Sep 2013 17:41:59 -0700 (PDT)
Received: from acsinet21.oracle.com (acsinet21.oracle.com [141.146.126.237]) by aserp1040.oracle.com (Sentrion-MTA-4.3.1/Sentrion-MTA-4.3.1) with ESMTP id r8A0ftJ5032763 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Tue, 10 Sep 2013 00:41:56 GMT
Received: from aserz7021.oracle.com (aserz7021.oracle.com [141.146.126.230]) by acsinet21.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id r8A0fr6J024104 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 10 Sep 2013 00:41:54 GMT
Received: from abhmt105.oracle.com (abhmt105.oracle.com [141.146.116.57]) by aserz7021.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id r8A0frbF024101; Tue, 10 Sep 2013 00:41:53 GMT
Received: from ericlaptop.casamcmurry.com (/76.184.161.215) by default (Oracle Beehive Gateway v4.0) with ESMTP ; Mon, 09 Sep 2013 17:41:53 -0700
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 6.5 \(1508\))
From: Eric McMurry <emcmurry@computer.org>
In-Reply-To: <CE523E27.49E49%carl@redhoundsoftware.com>
Date: Mon, 09 Sep 2013 19:41:52 -0500
Content-Transfer-Encoding: quoted-printable
Message-Id: <B259C343-A289-422B-95EE-DCB46D818736@computer.org>
References: <CE523E27.49E49%carl@redhoundsoftware.com>
To: Carl Wallace <carl@redhoundsoftware.com>
X-Mailer: Apple Mail (2.1508)
X-Source-IP: acsinet21.oracle.com [141.146.126.237]
X-Mailman-Approved-At: Mon, 09 Sep 2013 17:43:47 -0700
Cc: Ben Allen Campbell <ben@nostrum.com>, secdir@ietf.org, draft-ietf-dime-overload-reqs.all@tools.ietf.org, jouni.nospam@gmail.com, "lionel.morand@orange.com Morand" <lionel.morand@orange.com>, iesg@ietf.org, "bclaise@cisco.com Claise" <bclaise@cisco.com>
Subject: Re: [secdir] secdir review of draft-ietf-dime-overload-reqs-11
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 10 Sep 2013 00:42:06 -0000
Hi Carl, Thanks for taking the time to look at this and provide comments. For your first comment, we think it would be fine to drop the last sentence of requirement 13 to avoid confusion. It is not necessary. For your second, are you asking if the load levels in req 24 should have granularity requirements? It may make sense for a load metric to have similar granularity to the overload information, but the thinking was that the load metric may be used in different ways and we did not want to constrain it. I'm a bit lost on how requirement 10 would relate to this though. Can you please elaborate a bit on the question? Thanks! Eric On Sep 8, 2013, at 13:46 , Carl Wallace <carl@redhoundsoftware.com> wrote: > I have reviewed this document as part of the security directorate's > ongoing effort to review all IETF documents being processed by the IESG. > These comments were written primarily for the benefit of the security area > directors. Document editors and WG chairs should treat these comments just > like any other last call comments. > > This document describes the limitations of the existing Diameter overload > mechanisms and provides requirements for new overload management > mechanisms. The document is very well written and clear. I had just two > comments: > > 1) The last sentence of Requirement 13 is a bit hard to parse. > > 2) Requirement 31 requires indication of overload at specified > granularities (realm, application, node). Should overload status > mechanisms have similar granularity requirements (see requirements 10 or > 24)? > >
- [secdir] secdir review of draft-ietf-dime-overloa… Carl Wallace
- Re: [secdir] secdir review of draft-ietf-dime-ove… Eric McMurry
- Re: [secdir] secdir review of draft-ietf-dime-ove… Carl Wallace
- Re: [secdir] secdir review of draft-ietf-dime-ove… Carl Wallace
- Re: [secdir] secdir review of draft-ietf-dime-ove… Jouni Korhonen
- Re: [secdir] secdir review of draft-ietf-dime-ove… Eric McMurry
- Re: [secdir] secdir review of draft-ietf-dime-ove… Jouni Korhonen
- Re: [secdir] secdir review of draft-ietf-dime-ove… Benoit Claise
- Re: [secdir] secdir review of draft-ietf-dime-ove… Eric McMurry
- Re: [secdir] secdir review of draft-ietf-dime-ove… Ben Campbell
- Re: [secdir] secdir review of draft-ietf-dime-ove… Ben Campbell