Re: [secdir] secdir review of draft-ietf-ospf-node-admin-tag-05

Benjamin Kaduk <kaduk@MIT.EDU> Thu, 15 October 2015 00:58 UTC

Return-Path: <kaduk@mit.edu>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4C4E91B2E47; Wed, 14 Oct 2015 17:58:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.211
X-Spam-Level:
X-Spam-Status: No, score=-4.211 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sirCXvhV1LXh; Wed, 14 Oct 2015 17:58:17 -0700 (PDT)
Received: from dmz-mailsec-scanner-6.mit.edu (dmz-mailsec-scanner-6.mit.edu [18.7.68.35]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 699371A9143; Wed, 14 Oct 2015 17:58:17 -0700 (PDT)
X-AuditID: 12074423-f793f6d000007fc1-6f-561efa27566c
Received: from mailhub-auth-4.mit.edu ( [18.7.62.39]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by dmz-mailsec-scanner-6.mit.edu (Symantec Messaging Gateway) with SMTP id 15.E7.32705.82AFE165; Wed, 14 Oct 2015 20:58:16 -0400 (EDT)
Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) by mailhub-auth-4.mit.edu (8.13.8/8.9.2) with ESMTP id t9F0wFNq013505; Wed, 14 Oct 2015 20:58:15 -0400
Received: from multics.mit.edu (system-low-sipb.mit.edu [18.187.2.37]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id t9F0wBt6026873 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Wed, 14 Oct 2015 20:58:14 -0400
Received: (from kaduk@localhost) by multics.mit.edu (8.12.9.20060308) id t9F0wBkP009334; Wed, 14 Oct 2015 20:58:11 -0400 (EDT)
Date: Wed, 14 Oct 2015 20:58:11 -0400 (EDT)
From: Benjamin Kaduk <kaduk@MIT.EDU>
To: "Acee Lindem (acee)" <acee@cisco.com>
In-Reply-To: <D243BD35.351B8%acee@cisco.com>
Message-ID: <alpine.GSO.1.10.1510142057370.26829@multics.mit.edu>
References: <alpine.GSO.1.10.1510091159450.26829@multics.mit.edu> <D23ED021.34690%acee@cisco.com> <BY1PR0501MB1381A8D06B804AE4508F371AD5320@BY1PR0501MB1381.namprd05.prod.outlook.com> <alpine.GSO.1.10.1510131547130.26829@multics.mit.edu> <D242FF5D.34EA7%acee@cisco.com> <alpine.GSO.1.10.1510131856050.26829@multics.mit.edu> <D2430569.34EFD%acee@cisco.com> <D243BD35.351B8%acee@cisco.com>
User-Agent: Alpine 1.10 (GSO 962 2008-03-14)
MIME-Version: 1.0
Content-Type: MULTIPART/MIXED; BOUNDARY="-559023410-313353755-1444870691=:26829"
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFprNKsWRmVeSWpSXmKPExsUixG6nrqvxSy7MYM0eNovJb+cxW/x+tYXd YsaficwWHxY+ZLG48WgvswOrx5TfG1k9liz5yeRxvekqewBzFJdNSmpOZllqkb5dAldG05dd rAUPOSt27r7K3sD4g72LkZNDQsBE4sjby6wQtpjEhXvr2boYuTiEBBYzSZyY9Z4JwtnIKPGz cw1U5hCTxIXpv6CcBkaJVcffgvWzCGhLnG+/ywZiswmoSMx8sxHI5uAQEdCU2PKeBaSeWeAe o8S++6vB6oUF7CWOvLjHAmJzCuhIrF2/iBnE5hVwlJh/5CELxIIWZon9vyaBFYkCFa3eP4UF okhQ4uTMJ2A2s0CAROeCl6wTGAVnIUnNQpKCsNUlGh+cZYOwtSXu32xjW8DIsopRNiW3Sjc3 MTOnODVZtzg5MS8vtUjXTC83s0QvNaV0EyM4DlyUdzD+Oah0iFGAg1GJh7fgnlyYEGtiWXFl 7iFGSQ4mJVHeC9+BQnxJ+SmVGYnFGfFFpTmpxYcYJTiYlUR4tTcA5XhTEiurUovyYVLSHCxK 4rybfvCFCAmkJ5akZqemFqQWwWRlODiUJHgf/QBqFCxKTU+tSMvMKUFIM3FwggznARp+FqSG t7ggMbc4Mx0if4pRUUqcNw0kIQCSyCjNg+sFp6ndTKqvGMWBXhHm5f0JVMUDTHFw3a+ABjMB Dd7zXxZkcEkiQkqqgbHBnmFx1UUZvS1Ofx9ePjKPTbpY9su7kAbBJh21vhib0Bvywru/Ltas 0vf6kxp2Tnn2meW69fInLmyz4zst2N+nHy5SxPNXcXphUXrxmszgR7PrJH7OE3ot0GdSdG3l VzcWvxZO/voj4g2vorsbduiJq14T2sahsb/w+9vjSf3zFkzeePhxhhJLcUaioRZzUXEiABDA 5gwuAwAA
Archived-At: <http://mailarchive.ietf.org/arch/msg/secdir/QHOH3hjH6jXMYq1DnyD-cVzg7j8>
Cc: "draft-ietf-ospf-node-admin-tag.all@ietf.org" <draft-ietf-ospf-node-admin-tag.all@ietf.org>, "secdir@ietf.org" <secdir@ietf.org>, Shraddha Hegde <shraddha@juniper.net>, "iesg@ietf.org" <iesg@ietf.org>
Subject: Re: [secdir] secdir review of draft-ietf-ospf-node-admin-tag-05
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 15 Oct 2015 00:58:19 -0000

On Wed, 14 Oct 2015, Acee Lindem (acee) wrote:

> Hi Ben,
>
> On 10/13/15, 7:02 PM, "Acee Lindem (acee)" <acee@cisco.com> wrote:
>
> >
> >
> >On 10/13/15, 6:57 PM, "Benjamin Kaduk" <kaduk@MIT.EDU> wrote:
> >
> >>Thanks for clarifying.  So, this is a non-issue, and the only question is
> >>whether the text could/should be changed to improve clarity.
> >
> >Let me think about this since it is a generic OSPF RI ambiguity and it
> >will affect multiple documents. In a WebEx right now though…
>
> The key point here is that an OSPF router only maintains the most-recent
> instance of an LSA in its Link-State Database. So, there shouldn’t be any
> ambiguity. Perhaps, the text could be changed to “all RI LSA instances in
> the Link-State Database (LSDB) advertised by the corresponding OSPF
> router.”

That seems like a useful improvement; thanks.

-Ben