Re: [secdir] Secdir review of draft-ietf-i2rs-yang-network-topo-18
"Susan Hares" <shares@ndzh.com> Thu, 07 December 2017 13:39 UTC
Return-Path: <shares@ndzh.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 91D4812944A; Thu, 7 Dec 2017 05:39:29 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.947
X-Spam-Level:
X-Spam-Status: No, score=0.947 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DOS_OUTLOOK_TO_MX=2.845, HTML_MESSAGE=0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DSufiA2l-Tnv; Thu, 7 Dec 2017 05:39:27 -0800 (PST)
Received: from hickoryhill-consulting.com (50-245-122-97-static.hfc.comcastbusiness.net [50.245.122.97]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8D1981271FD; Thu, 7 Dec 2017 05:39:27 -0800 (PST)
X-Default-Received-SPF: pass (skip=loggedin (res=PASS)) x-ip-name=166.177.58.28;
From: Susan Hares <shares@ndzh.com>
To: 'Radia Perlman' <radiaperlman@gmail.com>, secdir@ietf.org, 'The IESG' <iesg@ietf.org>, draft-ietf-i2rs-yang-network-topo.all@tools.ietf.org
References: <CAFOuuo6QmGG6K8kx7JjQQ6ex75KgJybw7Dy=ribAYk2ECYRA1w@mail.gmail.com>
In-Reply-To: <CAFOuuo6QmGG6K8kx7JjQQ6ex75KgJybw7Dy=ribAYk2ECYRA1w@mail.gmail.com>
Date: Thu, 07 Dec 2017 08:39:24 -0500
Message-ID: <003d01d36f60$cc0cf0a0$6426d1e0$@ndzh.com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_NextPart_000_003E_01D36F36.E3389650"
X-Mailer: Microsoft Outlook 14.0
Thread-Index: AQIhMX20hsadKmM/n445OaWYEkQ3YqKcXn5A
Content-Language: en-us
X-Authenticated-User: skh@ndzh.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/QaA_XlRcXuR5Rzqyza98nC0QlPU>
Subject: Re: [secdir] Secdir review of draft-ietf-i2rs-yang-network-topo-18
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Dec 2017 13:39:29 -0000
Radia: Thank you for the careful review of this document. Susan Hares Shepherd From: Radia Perlman [mailto:radiaperlman@gmail.com] Sent: Wednesday, November 29, 2017 2:04 AM To: secdir@ietf.org; The IESG; draft-ietf-i2rs-yang-network-topo.all@tools.ietf.org Subject: Secdir review of draft-ietf-i2rs-yang-network-topo-18 Summary: No security issues found I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. I am not an expert at the "YANG model". This document introduces a YANG model to represent networks and topologies. As they point out in the security considerations section, if there was no authentication of network management traffic, people could do bad things, but the assumption is that this will run over TLS or SSH. Therefore, no security issues are raised by this document. Radia
- [secdir] Secdir review of draft-ietf-i2rs-yang-ne… Radia Perlman
- Re: [secdir] Secdir review of draft-ietf-i2rs-yan… Susan Hares