[secdir] Secdir review of draft-ietf-i2rs-yang-network-topo-18
Radia Perlman <radiaperlman@gmail.com> Wed, 29 November 2017 07:04 UTC
Return-Path: <radiaperlman@gmail.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C4835124C27; Tue, 28 Nov 2017 23:04:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bAyM6sMy1PDo; Tue, 28 Nov 2017 23:04:26 -0800 (PST)
Received: from mail-io0-x230.google.com (mail-io0-x230.google.com [IPv6:2607:f8b0:4001:c06::230]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 35252124BAC; Tue, 28 Nov 2017 23:04:26 -0800 (PST)
Received: by mail-io0-x230.google.com with SMTP id s37so2627145ioe.10; Tue, 28 Nov 2017 23:04:26 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=Ti5RU+im+O4x/W+lAK+C/GJSq66A7R8ns+tuuRgdeFg=; b=jo3M59nhvgzS8QxF5ij8IuIXTxXJaHQmnylRq+qwQ+odTctJNFDzIsvpDc1+fv63bv xoLhXzeHJwnMWkT8WOrTEPckjKi4xXSJuJG4mIpI1poioj3yF2c0U78SxpDdWsZ/kM+9 8qPS0kkkse4mU4F5jgYUT4qZEQqbqe9efxlMI114/m6WgQcPo5Tq/TVJDgppnqTdddhP wPI/mTTFAJeFcaTqRpDr1Ws4bde+bUk9QBDE6UPZLGY85C/FyNe/GfnklPaLMxdu/peS PQhGW8fActRfu8fPAtC/vh0iVyxDmqO3S6Gf30hlfHF0loJ8WjPSIG7RQWW2K4ecRChh k7Xw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=Ti5RU+im+O4x/W+lAK+C/GJSq66A7R8ns+tuuRgdeFg=; b=cRN5TGqlpfBxTrHljSSLQrdJ749TwFcIQcwQp1hiTA79uwUtPr+sjZndi6oWekoKYu fcZkXQqB1EQBYmOvC8qHWuCVSHEcwLUpXuLvqLi8ICavc/d+nqTR76AJ1/SuvAXjW32m Y8q1Avbe3zXp3J3d1FD2B9Y5TnzFFu6FaoCviUs31VbR7fTXLsVcv7ego3HU+78kMgof srGhr0y2v7HdMBk9FPUAWbm2HrRlQFHT7izybSPidFx7rgdQv55l4jUY+vxJHcWN3AiN oLX4hYxOhGsUv5z178klFSUD33Vv2bIPWqhRbAXOSIHFVsWCfnODqsdOVvwMjMVjG6Ql xuuA==
X-Gm-Message-State: AJaThX7mbNHEuWcksHN4u9BhBwTColtGE0HGkdmz2C2syBl6SbvnvWb1 LgjMh/6dJA1LxC+ovQIdxfAB5rpdpbjLINeiN5GwOA==
X-Google-Smtp-Source: AGs4zMZMyGP9HqKg0pzXy3Kx19PxiEYF6lzLqBs0K+kZO9QMSo7BiTNezijvBS2wbPV2MTZ/pgiT4j+DwTilB4qwQ/k=
X-Received: by 10.107.139.18 with SMTP id n18mr2313023iod.193.1511939065400; Tue, 28 Nov 2017 23:04:25 -0800 (PST)
MIME-Version: 1.0
Received: by 10.2.22.131 with HTTP; Tue, 28 Nov 2017 23:04:24 -0800 (PST)
From: Radia Perlman <radiaperlman@gmail.com>
Date: Tue, 28 Nov 2017 23:04:24 -0800
Message-ID: <CAFOuuo6QmGG6K8kx7JjQQ6ex75KgJybw7Dy=ribAYk2ECYRA1w@mail.gmail.com>
To: "secdir@ietf.org" <secdir@ietf.org>, The IESG <iesg@ietf.org>, draft-ietf-i2rs-yang-network-topo.all@tools.ietf.org
Content-Type: multipart/alternative; boundary="94eb2c055226ea5306055f19be35"
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/B3Yk3U_MbqNeNpb7Ku7hQbiIodQ>
Subject: [secdir] Secdir review of draft-ietf-i2rs-yang-network-topo-18
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 29 Nov 2017 07:04:28 -0000
Summary: No security issues found I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. I am not an expert at the "YANG model". This document introduces a YANG model to represent networks and topologies. As they point out in the security considerations section, if there was no authentication of network management traffic, people could do bad things, but the assumption is that this will run over TLS or SSH. Therefore, no security issues are raised by this document. Radia
- [secdir] Secdir review of draft-ietf-i2rs-yang-ne… Radia Perlman
- Re: [secdir] Secdir review of draft-ietf-i2rs-yan… Susan Hares