[secdir] SECDIR review of draft-ietf-detnet-data-plane-framework-04
Chris Lonvick <lonvick.ietf@gmail.com> Fri, 13 March 2020 13:26 UTC
Return-Path: <lonvick.ietf@gmail.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 218BC3A03F1; Fri, 13 Mar 2020 06:26:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LfgAyMKj2Mun; Fri, 13 Mar 2020 06:26:04 -0700 (PDT)
Received: from mail-ot1-x335.google.com (mail-ot1-x335.google.com [IPv6:2607:f8b0:4864:20::335]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 02E3F3A0363; Fri, 13 Mar 2020 06:26:03 -0700 (PDT)
Received: by mail-ot1-x335.google.com with SMTP id j16so10044557otl.1; Fri, 13 Mar 2020 06:26:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=to:from:subject:message-id:date:user-agent:mime-version :content-transfer-encoding:content-language; bh=sxvP/GH2j11AVsDNePpq5DZsMQYebde03Bl3Zq40lms=; b=QlQBaF9oMsFkevoFlNk+48m+BdOZPr0GmR7M7Z0hThKeUOSmxNUnVyoc0GeR161RCR x62f7pKGkFpvAKjCuJnRQkkRDybiziTeA122Zz96y0g3j/kguJP+ar5dXqWXYqCIIfpJ Ff3MzIeIIeTHdSIzLCHjuZavlpDR7rFZGyo05paXASTL5hFokHsFWRAMJTt928LDi4mM 2tRftjGlLM8xYQoeOuW7kvk8QTc3qfXqiO/A1bimIUnYHZiq56zeFb/BPzROcayhzOj0 ocaZ0kNlno1mpooLlkip/LMRWwCXS7HbYE6HVVQUmcWXt4Y/HL43lKeifWHUaq5IoHJc OLig==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:to:from:subject:message-id:date:user-agent :mime-version:content-transfer-encoding:content-language; bh=sxvP/GH2j11AVsDNePpq5DZsMQYebde03Bl3Zq40lms=; b=nnR/rzUg64jQmD9EFDzACTwKqcy/Dx4fsJ13lsyXuIAKrjSkAUNTU/LC2e9d6Wu62f rvJBuDfjlEV9/VjYnvzRb0z70nCuVCvcYydlmSawqjVJE6e5Nj4x+brxyvBUn9STkWrh ydkSb+Uvpwu3mQaUP9Lk5fGxgxjUygASObJ6l/cxo8YNmPCWYZVkz5B5bSge1dw0YLxv zji9sm80pOSnoDKuldqWwlkX3lzVpZPEkVIjj6kvXfZL3E64GjuzQQwEDq7SEqsRTKVC +s6JZ5/9I/MOJZlWTF977x/a4iOuM5hpoSorQDFag2WG2pFS3jopc3Y1bhxy7fVo947Q jfyQ==
X-Gm-Message-State: ANhLgQ12pftF+mzuUeG2qrRiVXagA8VrTjllaJr/e4f77D6+ZbuG0bL7 GV//+nkSk5PBXVkrJh2Xu4GTWS25
X-Google-Smtp-Source: ADFU+vtqkw3wXCp59V5uiflwIYT8/4CaLIdma0JkrFTSFEsQn4OZCNnikA1bYhhw2rOFJz9q/tLv4w==
X-Received: by 2002:a9d:3f4b:: with SMTP id m69mr10216674otc.146.1584105962960; Fri, 13 Mar 2020 06:26:02 -0700 (PDT)
Received: from Chriss-Air.lan (69-4-52-8.dsl.frcn.hctcnetworks.net. [69.4.52.8]) by smtp.googlemail.com with ESMTPSA id r8sm6490564otp.7.2020.03.13.06.26.02 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Fri, 13 Mar 2020 06:26:02 -0700 (PDT)
To: raft-ietf-detnet-data-plane-framework.all@ietf.org, "iesg@ietf.org" <iesg@ietf.org>, "secdir@ietf.org" <secdir@ietf.org>
From: Chris Lonvick <lonvick.ietf@gmail.com>
Message-ID: <800b9d7a-f510-85a9-b1a0-63ff114c8723@gmail.com>
Date: Fri, 13 Mar 2020 08:26:01 -0500
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:68.0) Gecko/20100101 Thunderbird/68.5.0
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/MYXBv1XAh52QqxA2bqqywKNqmVk>
Subject: [secdir] SECDIR review of draft-ietf-detnet-data-plane-framework-04
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 13 Mar 2020 13:26:05 -0000
Hello, I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. The summary of the review is Ready with Issues. The only reason I add the "with Issues" caveat is that the Security Considerations section broadly defers to I-D.ietf-detnet-security. The Security Considerations section of draft-ietf-detnet-data-plane-framework additionally provides some comments that are specific to the draft. I found those to be well thought out and appropriate. I skimmed I-D.ietf-detnet-security and found it to also be well thought out. The threat model was clear and understandable and the document appeared to appropriately address the threat analysis. I would give draft-ietf-detnet-data-plane-framework an unqualified Ready, as soon as I-D.ietf-detnet-security is reviewed and becomes an RFC. Regards, Chris
- [secdir] SECDIR review of draft-ietf-detnet-data-… Chris Lonvick
- Re: [secdir] SECDIR review of draft-ietf-detnet-d… Chris Lonvick