[secdir] Secdir review of draft-ietf-pals-mpls-tp-dual-homing-protection-05
"Waltermire, David A. (Fed)" <david.waltermire@nist.gov> Mon, 13 February 2017 04:04 UTC
Return-Path: <david.waltermire@nist.gov>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6D684129549; Sun, 12 Feb 2017 20:04:42 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nistgov.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 79eyfDJd7F23; Sun, 12 Feb 2017 20:04:40 -0800 (PST)
Received: from gcc01-CY1-obe.outbound.protection.outlook.com (mail-cy1gcc01on0118.outbound.protection.outlook.com [23.103.200.118]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 86292129AB3; Sun, 12 Feb 2017 20:04:40 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nistgov.onmicrosoft.com; s=selector1-nist-gov; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=rIAh9tbtjadVSISYw+GWExPcj4cUQgdx3rbkiL+hSqE=; b=TcL5joKn4EiHfSagXVFuL7lWtu3H7vrpLJ0NWkkk2fYtfxVjinL1hdQv71p4QN+YyFXV4Dy7vhqz0dpRcqCgMnDJstsWvD9dsz9QYT93X+IQrfocvFYrHtjeynMTGejPLXFPos3UCU36youLC01DyndXLgli0PLU/Fz5wEVC1R8=
Received: from MWHPR09MB1440.namprd09.prod.outlook.com (10.173.50.14) by MWHPR09MB1438.namprd09.prod.outlook.com (10.173.50.12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.888.16; Mon, 13 Feb 2017 04:04:38 +0000
Received: from MWHPR09MB1440.namprd09.prod.outlook.com ([10.173.50.14]) by MWHPR09MB1440.namprd09.prod.outlook.com ([10.173.50.14]) with mapi id 15.01.0888.030; Mon, 13 Feb 2017 04:04:38 +0000
From: "Waltermire, David A. (Fed)" <david.waltermire@nist.gov>
To: "'iesg@ietf.org'" <iesg@ietf.org>, "secdir@ietf.org" <secdir@ietf.org>, "draft-ietf-pals-mpls-tp-dual-homing-protection.all@ietf.org" <draft-ietf-pals-mpls-tp-dual-homing-protection.all@ietf.org>
Thread-Topic: Secdir review of draft-ietf-pals-mpls-tp-dual-homing-protection-05
Thread-Index: AdKFriNH20eBjgtHQLOntTZkRpbTkw==
Date: Mon, 13 Feb 2017 04:04:38 +0000
Message-ID: <MWHPR09MB1440FF0AA45375BFC22715CAF0590@MWHPR09MB1440.namprd09.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=david.waltermire@nist.gov;
x-originating-ip: [129.6.220.71]
x-ms-office365-filtering-correlation-id: e3ce518e-4362-409d-af6d-08d453c56e12
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(48565401081); SRVR:MWHPR09MB1438;
x-microsoft-exchange-diagnostics: 1; MWHPR09MB1438; 7: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
x-microsoft-antispam-prvs: <MWHPR09MB14389A1DDF5B038746DF1437F0590@MWHPR09MB1438.namprd09.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(192374486261705);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040375)(601004)(2401047)(5005006)(8121501046)(10201501046)(3002001)(6055026)(6041248)(20161123564025)(20161123555025)(20161123558025)(20161123560025)(20161123562025)(6072148); SRVR:MWHPR09MB1438; BCL:0; PCL:0; RULEID:; SRVR:MWHPR09MB1438;
x-forefront-prvs: 02176E2458
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(6009001)(7916002)(39840400002)(39850400002)(39410400002)(39450400003)(189002)(199003)(106356001)(105586002)(53936002)(9686003)(6116002)(102836003)(33656002)(450100001)(66066001)(55016002)(8676002)(122556002)(189998001)(2906002)(2501003)(99286003)(7696004)(25786008)(3660700001)(5890100001)(3280700002)(81156014)(86362001)(81166006)(3846002)(5660300001)(92566002)(6506006)(54356999)(77096006)(50986999)(305945005)(7736002)(2900100001)(38730400002)(2201001)(6436002)(8936002)(101416001)(97736004)(74316002)(68736007)(230783001)(491001); DIR:OUT; SFP:1102; SCL:1; SRVR:MWHPR09MB1438; H:MWHPR09MB1440.namprd09.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
received-spf: None (protection.outlook.com: nist.gov does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: nist.gov
X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Feb 2017 04:04:38.5542 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 2ab5d82f-d8fa-4797-a93e-054655c61dec
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MWHPR09MB1438
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/St49Q7Wuo3f4SsWEJunEQeR_RvQ>
Subject: [secdir] Secdir review of draft-ietf-pals-mpls-tp-dual-homing-protection-05
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Feb 2017 04:04:42 -0000
I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. Summary: Ready This informational draft identifies a mechanism for fault tolerance in preferred configurations for dual-homed Pseudowires that are used to carry traffic between the Provider Edge nodes when the Attachment Circuit, a Provider Edge node, or the packet-switched network fails. The draft identifies a number of failure scenarios, and identifies how dual homing can improve the reliability and integrity of a network implementing this approach. This draft does not introduce any new security concerns over the existing specifications it references. This draft appears to be ready for publication. Regards, Dave Waltermire
- [secdir] Secdir review of draft-ietf-pals-mpls-tp… Waltermire, David A. (Fed)