Re: [secdir] Secdir review of draft-ietf-mpls-tp-nm-req-05.txt
Loa Andersson <loa@pi.nu> Wed, 07 October 2009 14:16 UTC
Return-Path: <loa@pi.nu>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 0C8E928C0E6; Wed, 7 Oct 2009 07:16:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.453
X-Spam-Level:
X-Spam-Status: No, score=-2.453 tagged_above=-999 required=5 tests=[AWL=0.146, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oRkOqQG2uCPd; Wed, 7 Oct 2009 07:16:17 -0700 (PDT)
Received: from mail.pi.nu (mail.pi.nu [194.71.127.148]) by core3.amsl.com (Postfix) with ESMTP id 957EE28C0F1; Wed, 7 Oct 2009 07:16:16 -0700 (PDT)
Received: from [156.106.216.142] (unknown [156.106.216.142]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) (Authenticated sender: loa@pi.nu) by mail.pi.nu (Postfix) with ESMTPSA id BCAA2D404F; Wed, 7 Oct 2009 16:17:52 +0200 (CEST)
Message-ID: <4ACCA30D.9030206@pi.nu>
Date: Wed, 07 Oct 2009 16:17:49 +0200
From: Loa Andersson <loa@pi.nu>
User-Agent: Thunderbird 2.0.0.23 (Windows/20090812)
MIME-Version: 1.0
To: Eric Gray <eric.gray@ericsson.com>
References: <4ACA5FC1.1050704@gondrom.org> <C0AC8FAB6849AB4FADACCC70A949E2F193A244B1@EUSAACMS0701.eamcs.ericsson.se>
In-Reply-To: <C0AC8FAB6849AB4FADACCC70A949E2F193A244B1@EUSAACMS0701.eamcs.ericsson.se>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Mailman-Approved-At: Thu, 08 Oct 2009 08:19:42 -0700
Cc: "swallow@cisco.com" <swallow@cisco.com>, "secdir@ietf.org" <secdir@ietf.org>, "tim.polk@nist.gov" <tim.polk@nist.gov>, "Pasi.Eronen@nokia.com" <Pasi.Eronen@nokia.com>, Scott Mansfield <scott.mansfield@ericsson.com>, "iesg@ietf.org" <iesg@ietf.org>, "hklam@Alcatel-Lucent.com" <hklam@Alcatel-Lucent.com>, "adrian.farrel@huawei.com" <adrian.farrel@huawei.com>
Subject: Re: [secdir] Secdir review of draft-ietf-mpls-tp-nm-req-05.txt
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Oct 2009 14:16:18 -0000
Tobias, on the being Standards Track or not you are 50% right. ITU/T has changed their rules, but the document we need in the IETF (the IAB boilerplate doc) is not yet published, so I don't want the proposed status changed for requirements. Let us hope that we can do it for the Frameworks. /Loa Eric Gray wrote: > Tobias, > > Thanks for your review and comments. > > The decision to publish this document as a standards > track RFC was based on the previous restriction that ITU-T > cannot refer to an Informational RFC. This restriction > has only just been relaxed to allow references to an RFC > that results from the IETF consensus process, so it may no > longer be necessary to publish this draft as a standards > track RFC. > > That decision is out of my hands. > > Some definitions included are verbatim extractions > from ITU-T publications, taken to avoid the need for a > normative reference to those publications. As such, they > are not actually subject to change and - if you disagree > with them - I would suggest taking it up with applicable > Questions in Study Group 15 at ITU-T. > > We tried to clarify the use of RFC 2119 language in > this document and were somewhat limited in our ability to > do so by the requirements enforced by "idnits" that the > text must appear verbatim in the draft. The intent in - > for example - making a statement that the NE MUST perform > persistency checks is to ensure protocol and management > specifications ensure that doing so is possible based on > configuration. The case where persitistency checking is > effectively disabled by configuration could be considered > the degenerate case where required persistency is zero. > > The intention with alarm suppression is that some > alarms are not desired in some configurations or under > some conditions. Escalation procedures MAY, in certain > situations, result in escalating an alarm condition to one > that is not suppressed. Hence - to directly answer your > question - suppression is permanent for those specific > alarms for which it is configured, and as long as it is > not configured otherwise. > > The instance of "the" that you pointed out should > be changed to "that" as you suggest. > > Again, thanks for the review! > > -- > Eric > > -----Original Message----- > From: Tobias Gondrom [mailto:tobias.gondrom@gondrom.org] > Sent: Monday, October 05, 2009 5:06 PM > To: iesg@ietf.org; secdir@ietf.org > Cc: tim.polk@nist.gov; Pasi.Eronen@nokia.com; Eric Gray; Scott Mansfield; hklam@Alcatel-Lucent.com; swallow@cisco.com; loa@pi.nu; adrian.farrel@huawei.com > Subject: Secdir review of draft-ietf-mpls-tp-nm-req-05.txt > > I have reviewed this document as part of the security directorate's > ongoing effort to review all IETF documents being processed by the IESG. > These comments were written primarily for the benefit of the security > area directors. Document editors and WG chairs should treat these > comments just like any other last call comments. > > > 0. From the security perspective, the requirements in this document > appear to be sufficient, though not very detailed. As it's a requirments > doc, this is ok. Obviously, I assume following specifications will be > more detailed in how the described security requirments are satisfied. > > 1. DISCUSS: > Question: as the document describes requirements and is in wide areas > unprecise in how they shall be implemented I wonder why it aims to be > "Standards Track" and not "Informational"? > > 2. COMMENT: > Question: section Terminology: "Fault: A fault is the inability of a > function to perform a required action. This does not include an > inability due to preventive maintenance, lack of external resources, or > planned actions (from [21], 3.26)." > Why does a lack of external resources not constitute a fault? (the other > two reasons I can understand but this one not? > > > 3. COMMENT: > section 5.2: > "The MPLS-TP NE MUST perform persistency checks on fault causes before > it declares a fault cause a failure." > I am not sure whether a "SHOULD" would be more appropriate here: > First, depending on the type of fault a NE my consider a failure after > the first fault cause and > Second, two paragraphs below, you speak of configurable time "A > data-plane forwarding path failure MUST be declared if the fault cause > persists continuously for a configurable time (Time-D). The failure MUST > be cleared if the fault cause is absent continuously for a configurable > time (Time-C)." if it is configurable, it may also be configured to > infinite small, which kind of contradicts with the "MUST" for > persistency check? > > 4. COMMENT: > Section 5.3.2: Question: > should this "An MPLS-TP NE MUST support suppression of alarms based on > configuration." be changed to "An MPLS-TP NE MUST support suppression of > alarms based on configuration and for a limited time." > Or do you may not want to allow infinite and unlimited suppression of > alarms? > > > 6. > s/An MPLS-TP NE MUST support secure management protocols and SHOULD do > so in a manner the reduce potential impact of a DoS attack./An MPLS-TP > NE MUST support secure management protocols and SHOULD do so in a manner > that reduces potential impact of a DoS attack. > > Kind regards, Tobias > > > Tobias Gondrom > email: tobias.gondrom@gondrom.org > > -- Loa Andersson email: loa.andersson@ericsson.com Sr Strategy and Standards Manager loa@pi.nu Ericsson Inc phone: +46 10 717 52 13 +46 767 72 92 13
- [secdir] Secdir review of draft-ietf-mpls-tp-nm-r… Tobias Gondrom
- Re: [secdir] Secdir review of draft-ietf-mpls-tp-… Eric Gray
- Re: [secdir] Secdir review of draft-ietf-mpls-tp-… Loa Andersson