[secdir] secdir review of draft-arkko-iesg-crossarea-03

Rob Austein <sra@hactrn.net> Wed, 29 May 2013 17:11 UTC

Return-Path: <sra@hactrn.net>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C0E1821F965C; Wed, 29 May 2013 10:11:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.6
X-Spam-Level:
X-Spam-Status: No, score=-102.6 tagged_above=-999 required=5 tests=[AWL=-0.000, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id V+jreRyHhxJi; Wed, 29 May 2013 10:11:29 -0700 (PDT)
Received: from cyteen.hactrn.net (cyteen.hactrn.net [66.92.66.68]) by ietfa.amsl.com (Postfix) with ESMTP id 8EE9321F85EB; Wed, 29 May 2013 10:11:14 -0700 (PDT)
Received: from thrintun.hactrn.net (thrintun.hactrn.net [10.0.1.10]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "thrintun.hactrn.net", Issuer "Grunchweather Associates" (verified OK)) by cyteen.hactrn.net (Postfix) with ESMTPS id 364619B428; Wed, 29 May 2013 17:11:12 +0000 (UTC)
Received: from thrintun.hactrn.net (localhost [IPv6:::1]) by thrintun.hactrn.net (Postfix) with ESMTP id 08F0217058; Wed, 29 May 2013 13:11:12 -0400 (EDT)
Date: Wed, 29 May 2013 13:11:12 -0400
From: Rob Austein <sra@hactrn.net>
To: iesg@ietf.org, draft-arkko-iesg-crossarea.all@tools.ietf.org
MIME-Version: 1.0 (generated by SEMI 1.14.6 - "Maruoka")
Content-Type: text/plain; charset=US-ASCII
Message-Id: <20130529171112.08F0217058@thrintun.hactrn.net>
Cc: secdir@ietf.org
Subject: [secdir] secdir review of draft-arkko-iesg-crossarea-03
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 29 May 2013 17:11:34 -0000

I have reviewed draft-ietf-softwire-public-4over6-09 as part of the
security directorate's ongoing effort to review all IETF documents
being processed by the IESG.  These comments were written primarily
for the benefit of the security area directors.  Document editors and
WG chairs should treat these comments just like any other last call
comments.

Draft is an opinion piece by a private member of the community who
happens to wear several other hats.  No protocol content.

Other than a pro forma note that the draft contains no security
considerations section, I have no security considerations per se with
this document.

The one observation I will make is that, having now been a participant
in two serious cross-area efforts (probably more than that, but the
two I'm thinking of are DNSSEC and SIDR), I have noticed that there
does not appear to be any way of hurrying up the process of growing
experts in a complex new topic.  That is: when we started DNSSEC, we
had security people and we had DNS people, the two groups were almost
completely talking past each other, and the ops people were only sort
of in the room.  It took years to get to the point where we had people
who really understood both topics, and longer to get ops to care.
Jury is still out on SIDR, but it sure feels like the same curve.  If
there's any way to speed the process, I don't know what it is;
attempts to force the pace seem more likely to result in messes that
require yet another return to the drawing board.