IETF Logo Mail Archive

Re: [secdir] SECDIR review of draft-ietf-mpls-summary-frr-rsvpte

Tarek Saad <tsaad@juniper.net> Sun, 29 December 2019 19:48 UTC

Return-Path: <tsaad@juniper.net>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C09C4120098; Sun, 29 Dec 2019 11:48:58 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.701
X-Spam-Level:
X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net header.b=kteve7iy; dkim=pass (1024-bit key) header.d=juniper.net header.b=D4Ky7fMp
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BYEkG8EJXVm3; Sun, 29 Dec 2019 11:48:57 -0800 (PST)
Received: from mx0a-00273201.pphosted.com (mx0a-00273201.pphosted.com [208.84.65.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AEA3E120091; Sun, 29 Dec 2019 11:48:57 -0800 (PST)
Received: from pps.filterd (m0108156.ppops.net [127.0.0.1]) by mx0a-00273201.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id xBTJmuSc027873; Sun, 29 Dec 2019 11:48:56 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : subject : date : message-id : references : in-reply-to : content-type : content-id : content-transfer-encoding : mime-version; s=PPS1017; bh=i6Wz1EyaM52hokNTmvw4jZZzoWJ3VQ1NdQP5Iyxu8d4=; b=kteve7iySQHsmlHy9AcnoQNfAlZZiRzgdNT1vh+h4LK3Eks614KHId7gJvzHRdqTXBKd EajoP6H6i7ea5F/oRcS3YyjTPH2hQDwVJ7e89OYAb8FS79hk6UG3tDEG/Mg1ShTaiWEt ZbM4ZZ1B13XnmJ558axNSAMyi6fviTx3NROM0VR5OjcCbghtIinFLiNPmUCGtXXqAuC9 jnQvTBbkPDBG9w1WODulkoFlri1M+hZ9XWIVkJTnEtDHnqUp804IyYcSLCKqj8KcqUAf hTQDrZgBqvVzTYs8KxpxCyzKlnnAFP6Pvf0eoah8WfyQONWnrfElQ3nAcmRF/ulrQWdZ nA==
Received: from nam04-co1-obe.outbound.protection.outlook.com (mail-co1nam04lp2056.outbound.protection.outlook.com [104.47.45.56]) by mx0a-00273201.pphosted.com with ESMTP id 2x66xv1a3d-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Sun, 29 Dec 2019 11:48:56 -0800
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=MH3TJu3tSUB7HdU9hKxcyQt5OJ+e4qE9t4YsG/r7iveQ+mFdPitj+FLcgQOemf6j/XtCFN+xK8CmrV2gxKuI68jdcPYWwdW1k6/imrC2BLw1AY/kea1gMC0t28hdAQo99L/LC+n+X2VJwqXZZTUn/eVXOD6aBNSFiVu/iAS++fDp0iglO3YVk16v23Afm8cC6NBsp59gmzu7M5KrKnoZVURgn9UTbBFVHKWpGOtKX88gMG8zyBxKuADFhUtXPXKNUSWFC8DR5iODXsV/nzYpQ/ut6fuKJsl1MbKsavY+qAHFlIta+tmtpgU5CRlJHJXuTQW5w/jwFDZ/E3P6HGHrmQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=i6Wz1EyaM52hokNTmvw4jZZzoWJ3VQ1NdQP5Iyxu8d4=; b=YgQFP3Ep0r9+xwQlJlge9Hzu3sYsRLbwEOJbulRBcI03e52kY8l8XPO4TRo3TpVimGgKPwhvtsH8Nhf5ugGvVo1ZrBia9DH/FgK3oO92VgM4Pj3ekGOb3zNx4wk8skAaYKcqKx9o0TpdfwX2inVQEuHnkIY8wWwDH8qz5jwP8Yx5nRPjxZ//rDg+Zjc3kuTUovF+K3qrmWtYfEsSurco0OOJ8CJ3gWrH8xGDRLn7xBXtilaaBTq3jNopHr6ZY31ByZEEzkMmsxSLf8V6qpz+vK6usCBzEEazuCkho7/3bTwVg8+vka1dc6wPNG2PLDnNR2ZoMiAnOAdADzjuFn6aHg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=juniper.net; dmarc=pass action=none header.from=juniper.net; dkim=pass header.d=juniper.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=i6Wz1EyaM52hokNTmvw4jZZzoWJ3VQ1NdQP5Iyxu8d4=; b=D4Ky7fMpczqCOjnUt67uiw3UEt12ScRiZSPAJ1kf4ldzZRGD12QBvj3MkaX3KyHoNd6UDoUJavtU+7+U90Pa3QbU1QEab3T2TnRjIvy2fVIFJ+yxdkXKkS2xM7AnvO1IPPtMnJhPAM8fXNIxraUFYdsgHQdURpkSUALUNe+m0y0=
Received: from BYAPR05MB4341.namprd05.prod.outlook.com (20.176.252.21) by BYASPR01MB0035.namprd05.prod.outlook.com (20.178.1.204) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2602.6; Sun, 29 Dec 2019 19:48:53 +0000
Received: from BYAPR05MB4341.namprd05.prod.outlook.com ([fe80::d14c:cc1b:8d10:19d3]) by BYAPR05MB4341.namprd05.prod.outlook.com ([fe80::d14c:cc1b:8d10:19d3%7]) with mapi id 15.20.2602.009; Sun, 29 Dec 2019 19:48:53 +0000
From: Tarek Saad <tsaad@juniper.net>
To: Chris Lonvick <lonvick.ietf@gmail.com>, "iesg@ietf.org" <iesg@ietf.org>, "secdir@ietf.org" <secdir@ietf.org>, "draft-ietf-mpls-summary-frr-rsvpte.all@ietf.org" <draft-ietf-mpls-summary-frr-rsvpte.all@ietf.org>
Thread-Topic: SECDIR review of draft-ietf-mpls-summary-frr-rsvpte
Thread-Index: AQHVtH2natu5WnXpBkevt9n9DIHJQqfRRTAA
Date: Sun, 29 Dec 2019 19:48:52 +0000
Message-ID: <40C4EBF7-1229-4A06-B9A3-38EB4AFB0B22@juniper.net>
References: <dffe1a8f-f8fe-f4cf-3438-72bf36f3ea14@gmail.com>
In-Reply-To: <dffe1a8f-f8fe-f4cf-3438-72bf36f3ea14@gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_9784d817-3396-4a4f-b60c-3ef6b345fe55_Enabled=true; MSIP_Label_9784d817-3396-4a4f-b60c-3ef6b345fe55_Name=Juniper Business Use Only; MSIP_Label_9784d817-3396-4a4f-b60c-3ef6b345fe55_Enabled=true; MSIP_Label_9784d817-3396-4a4f-b60c-3ef6b345fe55_SiteId=bea78b3c-4cdb-4130-854a-1d193232e5f4; MSIP_Label_9784d817-3396-4a4f-b60c-3ef6b345fe55_ContentBits=0; MSIP_Label_9784d817-3396-4a4f-b60c-3ef6b345fe55_Method=Standard; MSIP_Label_9784d817-3396-4a4f-b60c-3ef6b345fe55_ActionId=e224ce62-6a9a-426b-bbb4-0000b28093d8; MSIP_Label_9784d817-3396-4a4f-b60c-3ef6b345fe55_SetDate=2019-12-29T19:47:41Z;
user-agent: Microsoft-MacOutlook/10.20.0.191208
x-originating-ip: [66.129.241.14]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 6349b704-016b-471a-bc6a-08d78c982221
x-ms-traffictypediagnostic: BYASPR01MB0035:
x-microsoft-antispam-prvs: <BYASPR01MB00355CD228B07FFC0B1C3BEEB7240@BYASPR01MB0035.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-forefront-prvs: 0266491E90
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(396003)(39860400002)(376002)(346002)(136003)(366004)(37854004)(189003)(199004)(91956017)(76116006)(2906002)(316002)(6512007)(110136005)(5660300002)(8936002)(6486002)(186003)(478600001)(81156014)(81166006)(8676002)(36756003)(66446008)(33656002)(4744005)(64756008)(71200400001)(6506007)(86362001)(26005)(2616005)(66556008)(66946007)(66476007); DIR:OUT; SFP:1102; SCL:1; SRVR:BYASPR01MB0035; H:BYAPR05MB4341.namprd05.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <59051CE797781140A91D93A30871430E@namprd05.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: 6349b704-016b-471a-bc6a-08d78c982221
X-MS-Exchange-CrossTenant-originalarrivaltime: 29 Dec 2019 19:48:52.9599 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 6pMSHRnfKwvWNbrg4nM2quBt5ioCRz9jwhYXlslF0xiVCKcTMY2b8Xw0NvqakTVVqrsU0H8KiZ8DipdgYTabZg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYASPR01MB0035
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.95,18.0.572 definitions=2019-12-29_03:2019-12-27,2019-12-29 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 spamscore=0 bulkscore=0 adultscore=0 mlxlogscore=999 priorityscore=1501 lowpriorityscore=0 clxscore=1011 phishscore=0 mlxscore=0 malwarescore=0 suspectscore=0 impostorscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-1910280000 definitions=main-1912290187
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/VUkoQpi_QkLNkhqlu3zJIOydyYQ>
Subject: Re: [secdir] SECDIR review of draft-ietf-mpls-summary-frr-rsvpte
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 29 Dec 2019 19:48:59 -0000

Hi Chris,

Happy new year! Thanks a lot for your time reviewing the document.

Regards,
Tarek

On 12/16/19, 8:59 PM, "Chris Lonvick" <lonvick.ietf@gmail.com> wrote:

    Hi,
    
    I have reviewed this document as part of the security directorate's 
    ongoing effort to review all IETF documents being processed by the IESG. 
    These comments were written primarily for the benefit of the security 
    area directors. Document editors and WG chairs should treat these 
    comments just like any other last call comments.
    
    The summary of the review is READY.
    
    The Security Considerations section is a bit thin, but it appropriately 
    addresses the issue that an implementation will increase the attack 
    surface of an RSVP object. Since this is an extension to the protocol, 
    the security considerations sections of the controlling RFCs are identified.
    
    I skimmed the draft a few times but did not see any nits or other 
    issues. Overall, the draft appears to be well written and well thought out.
    
    Regards,
    
    Chris

v2.23.0 | Report a Bug | By Email