[secdir] secdir review of draft-ietf-idr-deprecate-as-sets-05.txt

Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de> Fri, 19 August 2011 14:14 UTC

Return-Path: <j.schoenwaelder@jacobs-university.de>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0FCD321F8AF2; Fri, 19 Aug 2011 07:14:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -103.09
X-Spam-Level:
X-Spam-Status: No, score=-103.09 tagged_above=-999 required=5 tests=[AWL=0.159, BAYES_00=-2.599, HELO_EQ_DE=0.35, RCVD_IN_DNSWL_LOW=-1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 42QFsnx9gwNF; Fri, 19 Aug 2011 07:14:53 -0700 (PDT)
Received: from hermes.jacobs-university.de (hermes.jacobs-university.de [212.201.44.23]) by ietfa.amsl.com (Postfix) with ESMTP id 3785D21F8AF0; Fri, 19 Aug 2011 07:14:53 -0700 (PDT)
Received: from localhost (demetrius4.jacobs-university.de [212.201.44.49]) by hermes.jacobs-university.de (Postfix) with ESMTP id BED6020C1B; Fri, 19 Aug 2011 16:15:49 +0200 (CEST)
X-Virus-Scanned: amavisd-new at jacobs-university.de
Received: from hermes.jacobs-university.de ([212.201.44.23]) by localhost (demetrius4.jacobs-university.de [212.201.44.32]) (amavisd-new, port 10024) with ESMTP id GoXDInTARofL; Fri, 19 Aug 2011 16:15:48 +0200 (CEST)
Received: from elstar.local (elstar.jacobs.jacobs-university.de [10.50.231.133]) by hermes.jacobs-university.de (Postfix) with ESMTP id 22FA620C15; Fri, 19 Aug 2011 16:15:48 +0200 (CEST)
Received: by elstar.local (Postfix, from userid 501) id 3F1AD1A35229; Fri, 19 Aug 2011 16:15:40 +0200 (CEST)
Date: Fri, 19 Aug 2011 16:15:40 +0200
From: Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de>
To: iesg@ietf.org, secdir@ietf.org, draft-ietf-idr-deprecate-as-sets.all@tools.ietf.org
Message-ID: <20110819141540.GE28373@elstar.local>
Mail-Followup-To: iesg@ietf.org, secdir@ietf.org, draft-ietf-idr-deprecate-as-sets.all@tools.ietf.org
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.5.21 (2010-09-15)
Subject: [secdir] secdir review of draft-ietf-idr-deprecate-as-sets-05.txt
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de>
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 19 Aug 2011 14:14:54 -0000

I have reviewed this document as part of the security
directorate'songoing effort to review all IETF documents being
processed by the IESG.  These comments were written primarily for the
benefit of thesecurity area directors.  Document editors and WG chairs
should treat these comments just like any other last call comments.

This I-D deprecates the BGBP AS_SETs and AS_CONFED_SETs path
attributes and I see no security issues with this document and the
Security Considerations section seems appropriate.

My only editorial nit is to spell out the acronym RPKI in the Security
Considerations section and to perhaps change the short running title
to "Deprecation of AS_SET and AS_CONFED_SET".

/js

-- 
Juergen Schoenwaelder           Jacobs University Bremen gGmbH
Phone: +49 421 200 3587         Campus Ring 1, 28759 Bremen, Germany
Fax:   +49 421 200 3103         <http://www.jacobs-university.de/>