[secdir] secdir review of draft-ietf-ippm-active-passive-05

Carl Wallace <carl@redhoundsoftware.com> Sun, 17 January 2016 18:45 UTC

Return-Path: <carl@redhoundsoftware.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2AC981B3070 for <secdir@ietfa.amsl.com>; Sun, 17 Jan 2016 10:45:08 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id O-rSDwye0w9Z for <secdir@ietfa.amsl.com>; Sun, 17 Jan 2016 10:45:06 -0800 (PST)
Received: from mail-qg0-x22f.google.com (mail-qg0-x22f.google.com [IPv6:2607:f8b0:400d:c04::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B02D41B306E for <secdir@ietf.org>; Sun, 17 Jan 2016 10:45:06 -0800 (PST)
Received: by mail-qg0-x22f.google.com with SMTP id b35so413424818qge.0 for <secdir@ietf.org>; Sun, 17 Jan 2016 10:45:06 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhoundsoftware-com.20150623.gappssmtp.com; s=20150623; h=user-agent:date:subject:from:to:cc:message-id:thread-topic :mime-version:content-type:content-transfer-encoding; bh=WwohYjZbrt8ME7FAbWepa/OMsC1hVJAh2PHGc/NZi0k=; b=0oWdCY79fPXYLoZt4Tm6f900wrlOhMS8lEawiena3C/btGe1CGX4MBbLBQ863OLqud lcBvJYEMID9jIB1uOIpaiay2mWi91n8LK+fSFdbpKSjmfdb8sesUkYu8xyskyTRMFf9s Mr6sb7ieFyfiSMIOb5vINudA308XcQieXQJtoBuSsAOOB9IK+CikRp4QsB79bjJI707J Z13NyaobFCkWAAUTC3z0yZQ3Wctdn74g7lwblvA0BxOdFDJrbR7/wNGpCXE/CvjQBk3a 8fCIrJ/3pzoEVkn0jLrlm4FEODP3ONlmn8tYWCjdtpX65qy5+KPrR0V1xLeLCQXfanK3 qeCg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:user-agent:date:subject:from:to:cc:message-id :thread-topic:mime-version:content-type:content-transfer-encoding; bh=WwohYjZbrt8ME7FAbWepa/OMsC1hVJAh2PHGc/NZi0k=; b=L5JWqlOA/tLFCtj5ABH7aJmW3Mgxki/GJiPGV569RzPlZQdRz1C49rb2QZslplob0K 4yr8n0KsKq5u3Leu+DmDnDGZj1savDv03Q4BNW8hdWimQgijR9ntpy5uUc5smBAT/lEp zyjFDNy6k2Z5aC9RjEtVNpm6UglDFIa+uTKck3o0JL2sVoXvYWgs84PEGFp107pDebiN uNuxpUYcDKOvoJwtFQKTJf1rCL5YA02p1p3TNjjzI26qVXyjGi2I3OopfI0LBXpDW0Ft CGhsqBHYb8rck/rZJiC355HwmwGMqJkj/X7Zyfe1jIxwGtYh2JCvC+rRIfpb8yNvpKCA YWAg==
X-Gm-Message-State: ALoCoQnbZoGpfyHtziQ8+GVpxpvSnAwyzttP5/ZIsq0I9Ka2W+Q56S2NEzga4ztsAhltBZIyfMEts/Luc0B+QTgL8vYMChRWfQ==
X-Received: by 10.140.25.149 with SMTP id 21mr27164948qgt.89.1453056305856; Sun, 17 Jan 2016 10:45:05 -0800 (PST)
Received: from [192.168.2.27] (pool-173-66-90-83.washdc.fios.verizon.net. [173.66.90.83]) by smtp.gmail.com with ESMTPSA id e11sm8670073qkb.39.2016.01.17.10.44.55 (version=TLSv1/SSLv3 cipher=OTHER); Sun, 17 Jan 2016 10:45:05 -0800 (PST)
User-Agent: Microsoft-MacOutlook/14.5.8.151023
Date: Sun, 17 Jan 2016 13:44:49 -0500
From: Carl Wallace <carl@redhoundsoftware.com>
To: <draft-ietf-ippm-active-passive.all@tools.ietf.org>
Message-ID: <D2C14B51.498EA%carl@redhoundsoftware.com>
Thread-Topic: secdir review of draft-ietf-ippm-active-passive-05
Mime-version: 1.0
Content-type: text/plain; charset="UTF-8"
Content-transfer-encoding: 7bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/secdir/SMyVqEu8GUsV-XRVFSfUrS-y9E0>
Cc: "iesg@ietf.org" <iesg@ietf.org>, "secdir@ietf.org" <secdir@ietf.org>
Subject: [secdir] secdir review of draft-ietf-ippm-active-passive-05
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 17 Jan 2016 18:45:08 -0000

I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the IESG.
These comments were written primarily for the benefit of the security area
directors.  Document editors and WG chairs should treat these comments
just like any other last call comments.

This draft aims to provide clear definitions for Active and Passive
performance assessment as well as defining Hybrid methods and establishing
means of evaluating new methods as they emerge. The document relies
heavily on textual references to other specifications, which can at times
be a bit tedious for the reader but I have no particular suggestions
regarding this point and it's probably fine for a document that is aiming
to corral various earlier concepts. The referenced security and privacy
considerations were very good (if nearly as long as this spec itself). One
minor point, section 4.2 might be better placed before the current section
4.1 to better set-up the ASCII art in section 4.1.