[secdir] Secdir review of draft-ietf-idr-as0

Tobias Gondrom <tobias.gondrom@gondrom.org> Sun, 19 August 2012 09:23 UTC

Return-Path: <tobias.gondrom@gondrom.org>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3C34B21F8503 for <secdir@ietfa.amsl.com>; Sun, 19 Aug 2012 02:23:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -96.62
X-Spam-Level:
X-Spam-Status: No, score=-96.62 tagged_above=-999 required=5 tests=[AWL=-1.259, BAYES_00=-2.599, FH_HELO_EQ_D_D_D_D=1.597, FH_HOST_EQ_D_D_D_D=0.765, FM_DDDD_TIMES_2=1.999, HELO_DYNAMIC_IPADDR=2.426, HELO_EQ_DE=0.35, HTML_MESSAGE=0.001, RDNS_DYNAMIC=0.1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id s2NPH1BjpqUS for <secdir@ietfa.amsl.com>; Sun, 19 Aug 2012 02:23:29 -0700 (PDT)
Received: from lvps176-28-13-69.dedicated.hosteurope.de (lvps176-28-13-69.dedicated.hosteurope.de [176.28.13.69]) by ietfa.amsl.com (Postfix) with ESMTP id 6777121F84CE for <secdir@ietf.org>; Sun, 19 Aug 2012 02:23:29 -0700 (PDT)
Received: (qmail 17879 invoked from network); 19 Aug 2012 11:23:27 +0200
Received: from 94-194-102-93.zone8.bethere.co.uk (HELO ?192.168.1.65?) (94.194.102.93) by lvps176-28-13-69.dedicated.hosteurope.de with ESMTPSA (DHE-RSA-AES256-SHA encrypted, authenticated); 19 Aug 2012 11:23:27 +0200
Message-ID: <5030B08F.6080806@gondrom.org>
Date: Sun, 19 Aug 2012 10:23:27 +0100
From: Tobias Gondrom <tobias.gondrom@gondrom.org>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:14.0) Gecko/20120714 Thunderbird/14.0
MIME-Version: 1.0
To: iesg@ietf.org, secdir@ietf.org, draft-ietf-idr-as0.all@tools.ietf.org
Content-Type: multipart/alternative; boundary="------------040302070908030001080501"
Subject: [secdir] Secdir review of draft-ietf-idr-as0
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 19 Aug 2012 09:23:30 -0000

I have reviewed this document as part of the security directorate's 
ongoing effort to review all IETF documents being processed by the 
IESG.  These comments were written primarily for the benefit of the 
security area directors. Document editors and WG chairs should treat 
these comments just like any other last call comments.

This very short document describes an update to 4271, proscribing the 
use of AS 0 in BGP OPEN and AS_PATH / AS4_PATH BGP attribute.
I believe the document does not introduce new security problems and has 
an adequate security considerations section.

Nits: please note that the doc has normative references to current work 
in progress drafts:
draft-ietf-idr-error-handling-01 and draft-ietf-idr-rfc4893bis-06
It has to wait for these docs to finish in order to proceed.

Best regards, Tobias