[secdir] secdir review of draft-ietf-intarea-ipv6-required-01
Ondřej Surý <ondrej.sury@nic.cz> Mon, 29 August 2011 07:29 UTC
Return-Path: <ondrej.sury@nic.cz>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E910F21F8829; Mon, 29 Aug 2011 00:29:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.25
X-Spam-Level:
X-Spam-Status: No, score=-1.25 tagged_above=-999 required=5 tests=[AWL=0.449, BAYES_00=-2.599, J_CHICKENPOX_23=0.6, MIME_8BIT_HEADER=0.3]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0fAmWcfMwyhj; Mon, 29 Aug 2011 00:29:19 -0700 (PDT)
Received: from mail.nic.cz (mail.nic.cz [IPv6:2001:1488:800:400::400]) by ietfa.amsl.com (Postfix) with ESMTP id 2061821F8834; Mon, 29 Aug 2011 00:29:18 -0700 (PDT)
Received: from kimac.office.nic.cz (fw.nic.cz [217.31.207.1]) by mail.nic.cz (Postfix) with ESMTPSA id 46A9A2A2CD6; Mon, 29 Aug 2011 09:30:38 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=nic.cz; s=default; t=1314603038; bh=8EvNORJy0PNIB3x3ss+tOJBGeEPt4OlbNBG0CjdBI0c=; h=From:Content-Type:Content-Transfer-Encoding:Subject:Date: Message-Id:To:Mime-Version; b=l57vV2qa1LSOgYGusDu/jykk5Lg2bUlegZlkOjRsMJfAwRxr/9RB1S42HbVFeqf+v opNWEHFiquNVj0n2+Ztd1k3sNGBf5Rj5yALH1o4/zb2sRoBnQkNYaMKOgWInRBN42H R++AyuPauV5PnzHt1BfdJKvTv/WdxR396cNgyj6I=
From: Ondřej Surý <ondrej.sury@nic.cz>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Date: Mon, 29 Aug 2011 09:30:37 +0200
Message-Id: <4A95EF20-2477-4569-94CC-871F70BA0527@nic.cz>
To: secdir@ietf.org, iesg@ietf.org, draft-ietf-intarea-ipv6-required.all@tools.ietf.org
Mime-Version: 1.0 (Apple Message framework v1244.3)
X-Mailer: Apple Mail (2.1244.3)
X-Virus-Scanned: clamav-milter 0.96.5 at mail
X-Virus-Status: Clean
Subject: [secdir] secdir review of draft-ietf-intarea-ipv6-required-01
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 29 Aug 2011 07:29:20 -0000
I have reviewed draft-ietf-intarea-ipv6-required-01 as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. I agree with the security considerations of this document, which says "there are no direct security considerations, but existing documented security considerations for implementing IPv6 will apply". I also wholeheartedly agree with the contents of the document (IP is IPv4+IPv6 and not only IPv4), but from my IANAL-view I have a little concern about enforceability of the document and the impact on implementors and vendors. Nevertheless the document is correct from the technical viewpoint and we needed this document decade ago. O. -- Ondřej Surý vedoucí výzkumu/Head of R&D department ------------------------------------------- CZ.NIC, z.s.p.o. -- Laboratoře CZ.NIC Americka 23, 120 00 Praha 2, Czech Republic mailto:ondrej.sury@nic.cz http://nic.cz/ tel:+420.222745110 fax:+420.222745112 -------------------------------------------