IETF Logo Mail Archive

Re: [secdir] SecDir review of draft-ietf-mpls-ldp-hello-crypto-auth-05

Barry Leiba <barryleiba@computer.org> Wed, 21 May 2014 13:42 UTC

Return-Path: <barryleiba@gmail.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 63F2B1A06A0; Wed, 21 May 2014 06:42:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.278
X-Spam-Level:
X-Spam-Status: No, score=-1.278 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CVTYn-9wWf_e; Wed, 21 May 2014 06:42:34 -0700 (PDT)
Received: from mail-qg0-x236.google.com (mail-qg0-x236.google.com [IPv6:2607:f8b0:400d:c04::236]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 889431A069D; Wed, 21 May 2014 06:42:34 -0700 (PDT)
Received: by mail-qg0-f54.google.com with SMTP id q108so3188104qgd.13 for <multiple recipients>; Wed, 21 May 2014 06:42:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:cc:content-type; bh=x02iJHw0F+EwNuGrjqtYMdGn3tWEYkMPEEaFNN7iRq0=; b=p7P96w+qm7BBoB5CPYXYV51PLwkwZBKFZCsZtduXByZU5ZaWbboA3dTA2BnvFH9u1r kvTYjUpkxGJzsOGZf6cgq6/rNAAXKZNNxm22ddC9FSEBF0yts2+hElnZAjQcD9YX0LUn PlrvWV2vX+yn7sKqQzPP954h8iqMKud/DNlr5ta8cDm5Gmn5+zmlGbmBsZ8KoiCOuPuE cfaEuTeSxQs8oGw4gJr90Mgur1RyUoifTGqmzXO839P9+SDklscmbDexAQhGOP/6mjMA PasUdCHuOkQFAbNPMixNT3Oi3q57S9UuCZD/2yQowP4HlFr/xqdJ7eMHuDVZat9FVBQj UJZw==
MIME-Version: 1.0
X-Received: by 10.224.80.195 with SMTP id u3mr68512131qak.37.1400679753220; Wed, 21 May 2014 06:42:33 -0700 (PDT)
Sender: barryleiba@gmail.com
Received: by 10.224.99.1 with HTTP; Wed, 21 May 2014 06:42:33 -0700 (PDT)
In-Reply-To: <537C86D6.1030703@pi.nu>
References: <53761B24.1060501@gmail.com> <20211F91F544D247976D84C5D778A4C32E60982F@SG70YWXCHMBA05.zap.alcatel-lucent.com> <537A694C.60101@gmail.com> <537BC7B6.5040406@cs.tcd.ie> <20211F91F544D247976D84C5D778A4C32E60B609@SG70YWXCHMBA05.zap.alcatel-lucent.com> <537C5BCE.4010801@cs.tcd.ie> <20211F91F544D247976D84C5D778A4C32E60B6A8@SG70YWXCHMBA05.zap.alcatel-lucent.com> <537C7EDB.9050000@cs.tcd.ie> <CAG1kdogiEJp=jy5D+tvXnAZ2XD0Xe1=kB-do_=h4PU1V9j7KKQ@mail.gmail.com> <537C86D6.1030703@pi.nu>
Date: Wed, 21 May 2014 09:42:33 -0400
X-Google-Sender-Auth: 8gILpbe_8QrFGuOT1ZPoXMNTfNM
Message-ID: <CALaySJJL34JC23LzYLywKMfui+JErfUzG_uKVg14GLoAy6aAzw@mail.gmail.com>
From: Barry Leiba <barryleiba@computer.org>
To: Loa Andersson <loa@pi.nu>
Content-Type: text/plain; charset="ISO-8859-1"
Archived-At: http://mailarchive.ietf.org/arch/msg/secdir/T9ax0VKX_9xTsulVnc1NzSkVnv4
Cc: "Bhatia, Manav (Manav)" <manav.bhatia@alcatel-lucent.com>, IETF Security Directorate <secdir@ietf.org>, "draft-ietf-mpls-ldp-hello-crypto-auth.all@tools.ietf.org" <draft-ietf-mpls-ldp-hello-crypto-auth.all@tools.ietf.org>, The IESG <iesg@ietf.org>, Manav Bhatia <manavbhatia@gmail.com>
Subject: Re: [secdir] SecDir review of draft-ietf-mpls-ldp-hello-crypto-auth-05
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 21 May 2014 13:42:36 -0000

> I'm only the document shepherd. My feeling is that we are raising
> the hurdle step by step for the KARP - initiated RFCs, the first
> was comparatively smooth, now we are trying to put an 18 months
> effort (individual draft to RFC) in front of approving something
> that is comparatively simple and seen as raising LDP to the same
> security as the other routing protocols.

Well, 18 months is an extremely pessimistic time frame, so let's step back:
This isn't the first time we've come here, so it's well known what
needs to be documented.  Stephen and Manav: how long do you really
think it would take to write this document up and have it ready for
last call?  How much real iteration on the document is likely to be
needed?

It seems to me that if Manav should write something up and pass it by
Stephen, you could have something that's pretty much ready by the time
Manav posts it as -00.  Post to a few appropriate lists for comments,
post a -01, maybe a -02, then last call it.  That can't be more than a
few weeks.  Then we have a four-week last call, another week in IESG
Evaluation.  We ought to be able to get this from inception to the RFC
Editor queue in 2 months, maybe 3 tops.

Is that really a serious problem?  And that will close this issue for
good, so we don't have to keep having the discussion.

I understand the response that we often have, that we don't want to
hold *this* document hostage for something broader that needs to be
done.  And that's valid as far as it goes... but when we see ourselves
saying it continually about the same topic, something needs to be done
or we'll never get to fixing the broader issue.

Barry


Barry

v2.23.0 | Report a Bug | By Email