Re: [secdir] RESEND: Secdir review of draft-ietf-pwe3-oam-msg-map-14.txt

"Malis, Andrew G. (Andy)" <> Fri, 07 January 2011 15:52 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 05AB33A6919; Fri, 7 Jan 2011 07:52:25 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -2.837
X-Spam-Status: No, score=-2.837 tagged_above=-999 required=5 tests=[AWL=-0.239, BAYES_00=-2.599, HTML_MESSAGE=0.001]
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id 8OM6M-Q4C-KB; Fri, 7 Jan 2011 07:52:23 -0800 (PST)
Received: from ( []) by (Postfix) with ESMTP id A72BF3A6905; Fri, 7 Jan 2011 07:52:23 -0800 (PST)
Received: from ( []) by (8.13.6/8.13.3) with ESMTP id p07FmDUH017377; Fri, 7 Jan 2011 10:48:22 -0500 (EST)
X-AuditID: 8a53433a-b7b57ae0000011e0-1c-4d273730d229
Received: from ( []) by (EMF) with SMTP id 21.8D.04576.037372D4; Fri, 7 Jan 2011 10:54:24 -0500 (EST)
Received: from ( []) by (8.13.3/8.13.3) with ESMTP id p07FsNX9017584; Fri, 7 Jan 2011 10:54:23 -0500 (EST)
Received: from ([fe80::30d0:a653:fa92:eedb]) by ([2002:a644:3bbd::a644:3bbd]) with mapi; Fri, 7 Jan 2011 10:54:23 -0500
From: "Malis, Andrew G. (Andy)" <>
To: Charlie Kaufman <>, "" <>, "" <>, "" <>
Date: Fri, 7 Jan 2011 10:54:22 -0500
Thread-Topic: RESEND: Secdir review of draft-ietf-pwe3-oam-msg-map-14.txt
Thread-Index: AcuuKd9EKwp+v9B5SwSfHxd1LFfVUgAWUc4a
Message-ID: <>
In-Reply-To: <>
Accept-Language: en-US
Content-Language: en-US
user-agent: Microsoft-Entourage/
acceptlanguage: en-US
Content-Type: multipart/alternative; boundary="_000_C94CA15E15196andrewgmalisoneverizoncom_"
MIME-Version: 1.0
X-Brightmail-Tracker: AAAAAA==
X-Mailman-Approved-At: Fri, 07 Jan 2011 08:40:55 -0800
Subject: Re: [secdir] RESEND: Secdir review of draft-ietf-pwe3-oam-msg-map-14.txt
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Fri, 07 Jan 2011 15:52:25 -0000


On behalf of the WG, many thanks for your review and comments.


On 1/7/11 0:15 , "Charlie Kaufman" <> wrote:

**Please ignore previous version; I had a typo in an email address and draft name. **

I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG.  These comments were written primarily for the benefit of the security area directors.  Document editors and WG chairs should treat these comments just like any other last call comments.

This document specifies a standardized way of translating error notification codes between several different protocols. The need comes up in the context of using Pseudowire (PW) protocol to replace a physical link in a network. Pseudowires replace physical wires imperfectly in that they can have more complex failure modes. These can interact in complex ways with the failure modes of the protocols running over the pseudowires.

There are no real security considerations in the code mappings. This document references the security considerations sections of other RFCs where the translated error codes are handled. This seems appropriate.

The only thing that came to my mind that relates to security that was not discussed was emergent errors, where the pseudowire could introduce an error not detectable at its endpoints that could nevertheless cause problems at a higher layer. Examples would be a pseudowire that duplicated, selectively lost, or reordered packets. There are also interesting problems to be had where the pseudowire capacity is variable and its carrying capacity falls below the higher layer protocol’s ability to use it. An example would be a link between two routers that should be declared down when it gets slow enough so that higher layers will find better routes. Even so, any such discussion would belong in a different document.

I’d like to express my great appreciation for Section 4.1, which expands almost all of the acronyms used in the document. It made it possible for me – with almost no previous knowledge of the subject matter – to read and mostly understand most of the document. I wish such a thing could be made mandatory for all RFCs.