[secdir] secdir review of draft-ietf-trill-ia-appsubtlv-08

"Shaun Cooley (shcooley)" <shcooley@cisco.com> Mon, 27 June 2016 17:39 UTC

Return-Path: <shcooley@cisco.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 58A5C12D0E4; Mon, 27 Jun 2016 10:39:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -15.946
X-Spam-Level:
X-Spam-Status: No, score=-15.946 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-1.426, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lvnU5KGjFkKi; Mon, 27 Jun 2016 10:39:33 -0700 (PDT)
Received: from rcdn-iport-9.cisco.com (rcdn-iport-9.cisco.com [173.37.86.80]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7007D12D0ED; Mon, 27 Jun 2016 10:39:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=5608; q=dns/txt; s=iport; t=1467049173; x=1468258773; h=from:to:subject:date:message-id:mime-version; bh=Ntn0A4hqngMAw6hq03IyZQWn/jHfyiGK/SzYLvMrmkc=; b=ZRiYmAW1s0/wzqT/citkaTM5L3ChKqMysisH+QKGEjuZRE+3wfoXPSR/ Aa2vzpODtanL3ay/D6h/uEkwzXP75DWWEQwurCXJTqYAKapOqZMlw8mwS 622mSyCoEAJOgXuan0I/9BaYTit75LnUV/UOdPfaZZyDs3KzdL1ucAhWy I=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0AIAgDZY3FX/40NJK1bgnBOVoEDtSaFA?= =?us-ascii?q?YF7hjaBGDgUAQEBAQEBAWUnhFMjCl4BDD4CBDAmAQQBGogosmmQHQEBAQEBAQE?= =?us-ascii?q?DAQEBAQEBAQEfhiiMDoJaBZkBAY4vjyuPfgEeNoNwiWZ/AQEB?=
X-IronPort-AV: E=Sophos;i="5.26,537,1459814400"; d="scan'208,217";a="117411526"
Received: from alln-core-8.cisco.com ([173.36.13.141]) by rcdn-iport-9.cisco.com with ESMTP/TLS/DHE-RSA-AES256-SHA; 27 Jun 2016 17:39:32 +0000
Received: from XCH-RCD-014.cisco.com (xch-rcd-014.cisco.com [173.37.102.24]) by alln-core-8.cisco.com (8.14.5/8.14.5) with ESMTP id u5RHdW9R023415 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Mon, 27 Jun 2016 17:39:32 GMT
Received: from xch-aln-012.cisco.com (173.36.7.22) by XCH-RCD-014.cisco.com (173.37.102.24) with Microsoft SMTP Server (TLS) id 15.0.1210.3; Mon, 27 Jun 2016 12:39:31 -0500
Received: from xch-aln-012.cisco.com ([173.36.7.22]) by XCH-ALN-012.cisco.com ([173.36.7.22]) with mapi id 15.00.1210.000; Mon, 27 Jun 2016 12:39:31 -0500
From: "Shaun Cooley (shcooley)" <shcooley@cisco.com>
To: "draft-ietf-trill-ia-appsubtlv.all@tools.ietf.org" <draft-ietf-trill-ia-appsubtlv.all@tools.ietf.org>, "secdir@ietf.org" <secdir@ietf.org>, "iesg@ietf.org" <iesg@ietf.org>
Thread-Topic: secdir review of draft-ietf-trill-ia-appsubtlv-08
Thread-Index: AdHQmLjX5lOI0DGcQkeBM/f6iFiNTQ==
Date: Mon, 27 Jun 2016 17:39:31 +0000
Message-ID: <5a378e11b43e44a2b94de7399a215965@XCH-ALN-012.cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.24.103.179]
Content-Type: multipart/alternative; boundary="_000_5a378e11b43e44a2b94de7399a215965XCHALN012ciscocom_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/F_CQVkPEKKq1breGz8YW5PiIk_4>
Subject: [secdir] secdir review of draft-ietf-trill-ia-appsubtlv-08
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 27 Jun 2016 17:39:35 -0000

I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG.  These comments were written primarily for the benefit of the security area directors.  Document editors and WG chairs should treat these comments just like any other last call comments.

This document specifies a TRILL (Transparent Interconnection of Lots of Links) intermediate system-to-intermediate system (IS-IS) sub-type length value (sub-TLV) data format for is used for reporting sets of addresses associated with a port on a TRILL switch. The Security Considerations section relies on existing RFCs for transport security of the proposed data format.

I consider this document ready for publication.

-Shaun