[secdir] SECDIR review of draft-ietf-mpls-summary-frr-rsvpte

Chris Lonvick <lonvick.ietf@gmail.com> Tue, 17 December 2019 01:59 UTC

Return-Path: <lonvick.ietf@gmail.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 79C1C12009C; Mon, 16 Dec 2019 17:59:40 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Y-XGr2i90TYy; Mon, 16 Dec 2019 17:59:39 -0800 (PST)
Received: from mail-ot1-x32d.google.com (mail-ot1-x32d.google.com [IPv6:2607:f8b0:4864:20::32d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 45A0A12092C; Mon, 16 Dec 2019 17:59:36 -0800 (PST)
Received: by mail-ot1-x32d.google.com with SMTP id a15so11607901otf.1; Mon, 16 Dec 2019 17:59:36 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=to:from:subject:message-id:date:user-agent:mime-version :content-transfer-encoding:content-language; bh=lgwycyuxy76X032H+DymZLJXg3pIWmj6t0IUMrCDkJ0=; b=tNZXONr26dXLmPiSZBvNPEl56xrBN+mSTME5ieobITq+dn+du4Fkv7517pWZiSMbgs 6Tko9o4mHqlNKLnDvq1DF6L+h/g61RFUbtnUTk5IYFABMawJBlebSFEcIcKXMKyQv7Xt 1RZZvsI18jDd/fXQ0sKqRpFRQd/3knLpSHcWFulFytWYcqIwQv1Fg1YRC0OLLpA5aOZO 1jBsAzO+1XOZfmhCAeiucr+bRFZ4ZuLIzeGMKhXgkZM4qxyIXmNBC0lFlKUfGPne20DW 9jYvLyKisG+422H0Fp49JXt+psxqEOq73yn75yzA9RK17tWmLu8O0vUq1rpYQbaFSdh3 9GuA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:to:from:subject:message-id:date:user-agent :mime-version:content-transfer-encoding:content-language; bh=lgwycyuxy76X032H+DymZLJXg3pIWmj6t0IUMrCDkJ0=; b=aiZWg+CdroNfnpU6SwphDh2VciztfAzaMnG7avN8VIwAi9zDGXs48tRvUTYqMtLDs/ udRMRmqevouYOT061zZIHyroEpDaw5LKGckKZ6tumhbrYqqBxizgMxUvFFczDcmgUPNi Rr6TyTob3oe+p6c4AcTT8qxSy1sGu3+04M6z+cIqtFh9SZWZuyIi6/izZ3SL1ur/Vj5S JBqpJSX/9F8n9MqSSepxbt40Y1ACzt5U9szW925wm4lxmWNQLY2PmaHjvLsEd9HHGtu8 kUvE0BaC6r6GUn5765PesZTMDtFud8zrzG7xBdG0QBKf/vw7EtafyxM+Ksq+BpL9Bv34 iqMw==
X-Gm-Message-State: APjAAAUbgZw2fE0DDQsajOGvKdGJgtZ9oUXn4L9tmU+lruEKug70k7mT VJKcr09R2GZOU+QIXRohlUvwzfAG
X-Google-Smtp-Source: APXvYqyCGvqRUd8lHwk5x+EOSP/QUWMiAzyJoAX71qGhXowIRhSQkwnEV75UYjvFk0dPil4N+famOA==
X-Received: by 2002:a9d:7305:: with SMTP id e5mr33955541otk.64.1576547975414; Mon, 16 Dec 2019 17:59:35 -0800 (PST)
Received: from Chriss-Air.attlocal.net ([2600:1700:12b0:adf0:bd1e:d437:4a83:2bad]) by smtp.googlemail.com with ESMTPSA id q7sm7584202otn.9.2019.12.16.17.59.34 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 16 Dec 2019 17:59:35 -0800 (PST)
To: "iesg@ietf.org" <iesg@ietf.org>, "secdir@ietf.org" <secdir@ietf.org>, draft-ietf-mpls-summary-frr-rsvpte.all@ietf.org
From: Chris Lonvick <lonvick.ietf@gmail.com>
Message-ID: <dffe1a8f-f8fe-f4cf-3438-72bf36f3ea14@gmail.com>
Date: Mon, 16 Dec 2019 19:59:34 -0600
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:60.0) Gecko/20100101 Thunderbird/60.9.1
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 7bit
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/HnyuJNE34Xh4Rv2vf5btsV-o26E>
Subject: [secdir] SECDIR review of draft-ietf-mpls-summary-frr-rsvpte
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Dec 2019 01:59:40 -0000

Hi,

I have reviewed this document as part of the security directorate's 
ongoing effort to review all IETF documents being processed by the IESG. 
These comments were written primarily for the benefit of the security 
area directors. Document editors and WG chairs should treat these 
comments just like any other last call comments.

The summary of the review is READY.

The Security Considerations section is a bit thin, but it appropriately 
addresses the issue that an implementation will increase the attack 
surface of an RSVP object. Since this is an extension to the protocol, 
the security considerations sections of the controlling RFCs are identified.

I skimmed the draft a few times but did not see any nits or other 
issues. Overall, the draft appears to be well written and well thought out.

Regards,

Chris