[secdir] Review of draft-ietf-dhc-dhcpv6-ldra-03

Joe Salowey <jsalowey@cisco.com> Tue, 16 November 2010 22:40 UTC

Return-Path: <jsalowey@cisco.com>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id EE5413A680A; Tue, 16 Nov 2010 14:40:51 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -110.599
X-Spam-Level:
X-Spam-Status: No, score=-110.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ghiEfCZIGXUS; Tue, 16 Nov 2010 14:40:51 -0800 (PST)
Received: from rtp-iport-2.cisco.com (rtp-iport-2.cisco.com [64.102.122.149]) by core3.amsl.com (Postfix) with ESMTP id 0EE8B3A67E3; Tue, 16 Nov 2010 14:40:50 -0800 (PST)
Authentication-Results: rtp-iport-2.cisco.com; dkim=neutral (message not signed) header.i=none
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AvsEAEuX4kxAZnwN/2dsb2JhbACiZHGlTZsdhUsEhFqFfoMM
X-IronPort-AV: E=Sophos;i="4.59,207,1288569600"; d="scan'208";a="182958635"
Received: from rtp-core-2.cisco.com ([64.102.124.13]) by rtp-iport-2.cisco.com with ESMTP; 16 Nov 2010 22:41:34 +0000
Received: from [10.33.251.139] ([10.33.251.139]) by rtp-core-2.cisco.com (8.13.8/8.14.3) with ESMTP id oAGMfXFs018729; Tue, 16 Nov 2010 22:41:33 GMT
From: Joe Salowey <jsalowey@cisco.com>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: quoted-printable
Date: Tue, 16 Nov 2010 14:41:41 -0800
Message-Id: <7A66959C-0892-4151-A000-45AD67E1B788@cisco.com>
To: iesg@ietf.org, secdir@ietf.org, draft-ietf-dhc-dhcpv6-ldra.all@tools.ietf.org
Mime-Version: 1.0 (Apple Message framework v1081)
X-Mailer: Apple Mail (2.1081)
Subject: [secdir] Review of draft-ietf-dhc-dhcpv6-ldra-03
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 16 Nov 2010 22:40:52 -0000

I have reviewed this document as part of the security directorate's 
ongoing effort to review all IETF documents being processed by the 
IESG.  These comments were written primarily for the benefit of the 
security area directors.  Document editors and WG chairs should treat 
these comments just like any other last call comments.

This document defines a type of DHCPv6 relay agent that adds client interface information into DHCP messages.   I do not think that this document introduces any new security concerns over DHCPv6.  I think it would be good if the security considerations section had reference to the relevant information in the security considerations of RFC 3315.  

Cheers,

Joe