Re: [secdir] Secdir last call review of draft-ietf-ospf-yang-23

"Acee Lindem (acee)" <acee@cisco.com> Mon, 15 July 2019 11:12 UTC

Return-Path: <acee@cisco.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AEA3A120077; Mon, 15 Jul 2019 04:12:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.501
X-Spam-Level:
X-Spam-Status: No, score=-14.501 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=Y2S/3lJY; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=MwBLMT95
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2jz1DSF2SGSj; Mon, 15 Jul 2019 04:12:00 -0700 (PDT)
Received: from rcdn-iport-8.cisco.com (rcdn-iport-8.cisco.com [173.37.86.79]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 768E4120018; Mon, 15 Jul 2019 04:12:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=1302; q=dns/txt; s=iport; t=1563189120; x=1564398720; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=xkD+PX1gjmcHrV6VlGqz3deNUlQ1JZa5BbONG3idcUo=; b=Y2S/3lJYYbufzNQn/QeF4TirDmAQOMeT5TVNmlDBvTXW9jTt6ux8vZad HQyMZ+amlMolBAjveYjRsNa+GSAnvighpSkie0AV+vEyWY/ZchLxhm14h mr4esnAAfIp4FYflpoh/jPDnCWnXV6e/+YaBNnA0pEipcE7PepZWtWRjS 8=;
IronPort-PHdr: 9a23:TDRzpRbNOPUnUNISeXZzExn/LSx94ef9IxIV55w7irlHbqWk+dH4MVfC4el20QKbRp3VvvRDjeee87vtX2AN+96giDgDa9QNHwQAld1QmgUhBMCfDkiuJfXnYgQxHd9JUxlu+HToeUU=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0AJAAC/Xixd/5FdJa1lGgEBAQEBAgEBAQEHAgEBAQGBUwUBAQEBCwGBQ1ADalUgBAsoCoQSg0cDhFKJfII2l3SBLoEkA1QJAQEBDAEBIwoCAQGEQAIXgkwjNAkOAQMBAQQBAQIBBW2FPAyFSwIBAxIREQwBATcBDwIBCBoCJgICAjAVEAIEAQ0FIoMAAYFqAx0BDp9XAoE4iGBxgTKCeQEBBYUJGIITAwaBDCgBi14XgX+BECgME4JMPodOMoImjnibbwkCghmPSFSDcBuCXJUujTWXUAIEAgQFAg4BAQWBUDiBWHAVOyoBgkGCQYNxhRSFP3IBAYEnjWEBgSABAQ
X-IronPort-AV: E=Sophos;i="5.63,493,1557187200"; d="scan'208";a="594950677"
Received: from rcdn-core-9.cisco.com ([173.37.93.145]) by rcdn-iport-8.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 15 Jul 2019 11:11:59 +0000
Received: from XCH-ALN-019.cisco.com (xch-aln-019.cisco.com [173.36.7.29]) by rcdn-core-9.cisco.com (8.15.2/8.15.2) with ESMTPS id x6FBBx0G023585 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Mon, 15 Jul 2019 11:11:59 GMT
Received: from xhs-aln-001.cisco.com (173.37.135.118) by XCH-ALN-019.cisco.com (173.36.7.29) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Mon, 15 Jul 2019 06:11:58 -0500
Received: from xhs-rcd-003.cisco.com (173.37.227.248) by xhs-aln-001.cisco.com (173.37.135.118) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Mon, 15 Jul 2019 06:11:57 -0500
Received: from NAM02-SN1-obe.outbound.protection.outlook.com (72.163.14.9) by xhs-rcd-003.cisco.com (173.37.227.248) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Mon, 15 Jul 2019 06:11:57 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=JWYvJu3IP2MkWjBSUZU6DaPmk/wO5u/JJ88yLCAHX67YYBybljtyNLxSIJ4fylNTmKfj5TbNwKtvIEuRuuKjb4TK5TM5ZTxbie/DvjLNxrr055PlSC7qRfhiYY8uuN9edAZChG2OgcAPgDiXhNcu8tXbPM3hGQY6JTvmIr2M6GHCxcqPhz2YCp+DnzmLF5Tl8gmmrrUQh5X5Th+BQKQ5JQy41w3jwlnm9c4zyia3p6MTPBmfAy+uBr+IdOpvR3PQMcnWjFt+oykA+dPvK+BtDGwPIzPz4xNc/Az6z8aitNSeHmzl0LZNa7837B8nnxhjgLMerDTbXSqjqjLD4sC2wg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=xkD+PX1gjmcHrV6VlGqz3deNUlQ1JZa5BbONG3idcUo=; b=oYY6owkY+O7uYXln2zORG2lqMvkOmetQCCMnkVZNQS/Fd50DDtiLuZp+p6eMlHqm8LBgLZCaLadrd8yuUWay90mg333DvYS//5Ue03OYje1LqiVsDSfOFmw+75BNITbLwTYMbGe61TXsmiWuBENjIqkC0ylfX2leeCbs4J8NMK/1cUTWJiZeaIS+CFwwjJAJ/CiNC0y1/KdSqpI/dgw9/RPaFVZN4C0fa0vdV/F1jdPEjZbd9lyFuXFqFe8629/1qkNn5fPk86BuVdX4DwThDNbqBYCECxdSrL7/z7YO+VAI9aQkbt6QoOLe65x44//iIAGlkGCRd2J6GzennrR1sw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1;spf=pass smtp.mailfrom=cisco.com;dmarc=pass action=none header.from=cisco.com;dkim=pass header.d=cisco.com;arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=xkD+PX1gjmcHrV6VlGqz3deNUlQ1JZa5BbONG3idcUo=; b=MwBLMT95e0aRAieMZ2pDKpxPc64mJt1djBCJH3G0UXk82lQuPoGttTQPhoODqA0t9lLukxCfY1RX1FACcOzPZYA8dgU5DArwzqpY5fnUtyxfZQIiQT4VZ4trWuZ64/c48krSNM2iTTxz5YnbZm0JAa56UnZ0svEb2SY3aqJBQcE=
Received: from MWHPR11MB1902.namprd11.prod.outlook.com (10.175.53.139) by MWHPR11MB1344.namprd11.prod.outlook.com (10.169.233.138) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2073.10; Mon, 15 Jul 2019 11:11:57 +0000
Received: from MWHPR11MB1902.namprd11.prod.outlook.com ([fe80::2456:d2d2:585d:83a2]) by MWHPR11MB1902.namprd11.prod.outlook.com ([fe80::2456:d2d2:585d:83a2%6]) with mapi id 15.20.2073.012; Mon, 15 Jul 2019 11:11:56 +0000
From: "Acee Lindem (acee)" <acee@cisco.com>
To: Stefan Santesson <stefan@aaa-sec.com>, "secdir@ietf.org" <secdir@ietf.org>
CC: "draft-ietf-ospf-yang.all@ietf.org" <draft-ietf-ospf-yang.all@ietf.org>, "ietf@ietf.org" <ietf@ietf.org>, "lsr@ietf.org" <lsr@ietf.org>
Thread-Topic: Secdir last call review of draft-ietf-ospf-yang-23
Thread-Index: AQHVOvLUn/JAk+YAKEWqqX6r9HFrX6bLQz8A
Date: Mon, 15 Jul 2019 11:11:56 +0000
Message-ID: <71A4B5D4-2268-492C-9D9C-9023F2AC7ED8@cisco.com>
References: <156318424257.27269.7466334573453292957@ietfa.amsl.com>
In-Reply-To: <156318424257.27269.7466334573453292957@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=acee@cisco.com;
x-originating-ip: [173.38.117.87]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: bb3e8d10-4c7a-40c8-f8c7-08d709153ffc
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:MWHPR11MB1344;
x-ms-traffictypediagnostic: MWHPR11MB1344:
x-ms-exchange-purlcount: 1
x-microsoft-antispam-prvs: <MWHPR11MB13443FF380770D8913C2F39DC2CF0@MWHPR11MB1344.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-forefront-prvs: 00997889E7
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(346002)(136003)(39860400002)(396003)(366004)(376002)(199004)(189003)(66066001)(99286004)(316002)(110136005)(54906003)(33656002)(26005)(91956017)(66946007)(4744005)(186003)(76116006)(229853002)(76176011)(64756008)(66476007)(66556008)(6506007)(102836004)(6512007)(256004)(5660300002)(14444005)(81156014)(81166006)(66446008)(486006)(2906002)(68736007)(305945005)(3846002)(6116002)(2501003)(8676002)(476003)(478600001)(8936002)(7736002)(2616005)(11346002)(446003)(6246003)(966005)(6436002)(6486002)(53936002)(4326008)(14454004)(36756003)(25786009)(86362001)(71190400001)(6306002)(71200400001); DIR:OUT; SFP:1101; SCL:1; SRVR:MWHPR11MB1344; H:MWHPR11MB1902.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: MMmYdgg1ZQEqgDXQWWTlOJrdGivFBuol374Hu8L00rskrvr8Kk+JKfV/nqAE/Q0c3MjcEiQOfBYlnNyg4Uj5knlog0YQM0ZGwBgn2sQpfGLm6DAqXxG4N6LuZ83PKRn0e6Bka2h6ItOnC0gV7fb+A/JRPdjio1iUkFVuEXpwVqx10gT5lhsOSctZK6JMURsZwgNIXw0dH0KApehqbPZdpp7xNpe2uOGCmtkyxWoDNir5fYygRbaQ1i92nyTA6Zr938sx5YOV8dW+OhzG0OeYloguyxVe2xJs+UzYXpliRqSi8mRi0Hu1/MPdeffmZxJYgpyd04dRmXcAkI31s7a8k7x6kFRUO5N/pbvx/6RaUf4pbEjbCcjPlU7MjlvVjzck+b4I19B7iuK4jHGzj4VFLnfIYaLDoTjHuB0a7byn31Q=
Content-Type: text/plain; charset="utf-8"
Content-ID: <10CDD6E327D95345A8C159DEE347676B@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: bb3e8d10-4c7a-40c8-f8c7-08d709153ffc
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Jul 2019 11:11:56.6249 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: acee@cisco.com
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MWHPR11MB1344
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.29, xch-aln-019.cisco.com
X-Outbound-Node: rcdn-core-9.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/UAqxEsG06eQ0m12tMa8jJFpfA8Y>
Subject: Re: [secdir] Secdir last call review of draft-ietf-ospf-yang-23
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 15 Jul 2019 11:12:03 -0000

Hi Stefan, 

On 7/15/19, 5:51 AM, "Stefan Santesson via Datatracker" <noreply@ietf.org> wrote:

    Reviewer: Stefan Santesson
    Review result: Has Nits
    
    This document seems to have a reasonable security considerations section.
    
    As a nit, I notice that the abbreviation OSPF is not written out or explained
    at all in this document. One should hope that most people that find their way
    to this document are familiar with OSPF, but I still believe that is is
    appropriate for all IETF RFC to write out and briefly explain/reference
    abbreviations.

 Note that OSPF is in the list of abbreviations that don't require expansion - https://www.rfc-editor.org/materials/abbrev.expansion.txt

In fact, OSPF had its own WG for more than 20 years __ We only combined OSPF and IS-IS into LSR less than 2 years back. 

Thanks,
Acee
    
    In summary this document seems well written