[secdir] SecDir review of draft-ietf-isis-prefix-attributes-02

Yaron Sheffer <yaronf.ietf@gmail.com> Thu, 10 December 2015 12:36 UTC

Return-Path: <yaronf.ietf@gmail.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0B96A1B2A37; Thu, 10 Dec 2015 04:36:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.276
X-Spam-Level:
X-Spam-Status: No, score=-1.276 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, MIME_HTML_ONLY=0.723, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5gHrkykzGyhf; Thu, 10 Dec 2015 04:36:31 -0800 (PST)
Received: from mail-pa0-x229.google.com (mail-pa0-x229.google.com [IPv6:2607:f8b0:400e:c03::229]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 45BFA1B29DC; Thu, 10 Dec 2015 04:35:42 -0800 (PST)
Received: by pacwq6 with SMTP id wq6so47062417pac.1; Thu, 10 Dec 2015 04:35:42 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=to:from:subject:message-id:date:user-agent:mime-version :content-type:content-transfer-encoding; bh=Pl4EbNWe9ShX2wi3H/V7NNqV3WBRRIesd0S48WmWVSA=; b=CYAJNoA9cywxyfYmKp3flGPyY7o+YifzjRJAKLUpHhD1LxMT74STvC3/BaIjfmY3od rfWCBjAiiB2+zlu0vP4LbHZqQWjK2COyUs10O0smoHnCaDLBMp1pFjkn5YO0pAfsBxht rQWOKMVTI7LCUxIbI5jTU65d44VDMYHwUtr6t/qhaIA8H04X8VUUaSrCffOHVjFoF++B iqhjq6dvhvYQj2twZ4239pGghz5CJIlCISSIGbcaB/L8IDvtikMeSGmGa4vL5U3QkVUB yh0k4pefHdi/UZz7RwJUKGSqqBTu0MmgQ62IxcxzAiN9cEqRpNaTIUcTMhCjNPine9mM TWiQ==
X-Received: by 10.66.236.162 with SMTP id uv2mr16233779pac.101.1449750941895; Thu, 10 Dec 2015 04:35:41 -0800 (PST)
Received: from [172.18.133.40] (cowboy.intuit.com. [65.204.229.11]) by smtp.gmail.com with ESMTPSA id ga13sm18693974pac.47.2015.12.10.04.35.39 (version=TLSv1/SSLv3 cipher=OTHER); Thu, 10 Dec 2015 04:35:40 -0800 (PST)
To: secdir@ietf.org, iesg@ietf.org, draft-ietf-isis-prefix-attributes.all@tools.ietf.org
From: Yaron Sheffer <yaronf.ietf@gmail.com>
Message-ID: <56697198.9090804@gmail.com>
Date: Thu, 10 Dec 2015 14:35:36 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.4.0
MIME-Version: 1.0
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: 8bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/secdir/EXhx8ESQ8YN3K5tUhSY8Mim2X2Y>
Subject: [secdir] SecDir review of draft-ietf-isis-prefix-attributes-02
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Dec 2015 12:36:33 -0000

I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors.  Document editors and WG chairs should treat these comments just like any other last call comments.

The document defines several extensions to prefix advertisements in IS-IS.

Summary

From a security perspective, the document is ready to be published.

Details

The document asserts that the new extensions do not have an additional security impact on the protocol, and this makes sense to me.

Thanks,
    Yaron