Re: [secdir] SecDir review of draft-ietf-isis-rfc4971bis-01

"Les Ginsberg (ginsberg)" <ginsberg@cisco.com> Mon, 08 August 2016 13:35 UTC

From: "Les Ginsberg (ginsberg)" <ginsberg@cisco.com>
To: Yaron Sheffer <yaronf.ietf@gmail.com>, IETF Security Directorate <secdir@ietf.org>, The IESG <iesg@ietf.org>, "draft-ietf-isis-rfc4971bis.all@tools.ietf.org" <draft-ietf-isis-rfc4971bis.all@tools.ietf.org>
Thread-Topic: SecDir review of draft-ietf-isis-rfc4971bis-01
Thread-Index: AQHR7wBy8GKk5jMb70GIfEBKnuFC4aA/FUyQ
Date: Mon, 08 Aug 2016 13:35:34 +0000
Message-ID: <de8a68a01af94a1e96e91763c6f9b2b9@XCH-ALN-001.cisco.com>
References: <5751B895.1070400@gmail.com> <6c9c5a95-61a9-23e3-6df4-8103480fa684@gmail.com>
In-Reply-To: <6c9c5a95-61a9-23e3-6df4-8103480fa684@gmail.com>
Accept-Language: en-US
Content-Language: en-US
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/B1gIMqBMJ6iRy5m2dMGT0jbVxm4>
Subject: Re: [secdir] SecDir review of draft-ietf-isis-rfc4971bis-01
Precedence: list

Yaron -

Thanx for your review.

   Les


> -----Original Message-----
> From: Yaron Sheffer [mailto:yaronf.ietf@gmail.com]
> Sent: Friday, August 05, 2016 3:01 AM
> To: IETF Security Directorate; The IESG; draft-ietf-isis-
> rfc4971bis.all@tools.ietf.org
> Subject: SecDir review of draft-ietf-isis-rfc4971bis-01
> 
> I have reviewed this document as part of the security directorate's ongoing
> effort to review all IETF documents being processed by the IESG.
> These comments were written primarily for the benefit of the security area
> directors.  Document editors and WG chairs should treat these comments
> just like any other last call comments.
> 
> This document is a minor update to RFC4971, in order to correctly support
> IPv6-only routers.
> 
> Summary
> 
> The document is ready for publication.
> 
> Details
> 
> The Security Considerations are unchanged from the original RFC and cover
> the router capability feature reasonably. They still seem to describe this
> quaint world where each router can rely on all its peers to always send
> correct information. But at least we recommend to use protocol-level
> integrity mechanisms in "high risk" situations.
> 
> Thanks,
> 	Yaron

Re: [secdir] SecDir review of draft-ietf-dhc-topo… Bernie Volz (volz)
Re: [secdir] SecDir review of draft-ietf-dhc-topo… Tomek Mrugalski
Re: [secdir] SecDir review of draft-ietf-dhc-topo… Suresh Krishnan
Re: [secdir] SecDir review of draft-ietf-dhc-topo… Tomek Mrugalski
Re: [secdir] SecDir review of draft-ietf-isis-rfc… Les Ginsberg (ginsberg)
[secdir] SecDir review of draft-ietf-isis-rfc4971… Yaron Sheffer
Re: [secdir] SecDir review of draft-ietf-dhc-topo… Suresh Krishnan
[secdir] SecDir review of draft-ietf-dhc-topo-con… Yaron Sheffer
Re: [secdir] SecDir review of draft-ietf-dhc-topo… Ted Lemon
Re: [secdir] SecDir review of draft-ietf-dhc-topo… Tomek Mrugalski
Re: [secdir] SecDir review of draft-ietf-dhc-topo… Yaron Sheffer