[secdir] Security directorate review of draft-ietf-opsawg-ipfix-mpls-sr-label-type-07

Hilarie Orman <hilarie@purplestreak.com> Fri, 16 July 2021 19:20 UTC

Return-Path: <hilarie@purplestreak.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D65933A417B; Fri, 16 Jul 2021 12:20:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eXs0vcMVDSXg; Fri, 16 Jul 2021 12:20:07 -0700 (PDT)
Received: from out02.mta.xmission.com (out02.mta.xmission.com [166.70.13.232]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4B68B3A4177; Fri, 16 Jul 2021 12:20:03 -0700 (PDT)
Received: from in02.mta.xmission.com ([166.70.13.52]) by out02.mta.xmission.com with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.93) (envelope-from <hilarie@purplestreak.com>) id 1m4TNS-00CNas-Ng; Fri, 16 Jul 2021 13:20:02 -0600
Received: from [166.70.232.207] (port=7345 helo=rumpleteazer.rhmr.com) by in02.mta.xmission.com with esmtpsa (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.93) (envelope-from <hilarie@purplestreak.com>) id 1m4TNR-00Dv26-QV; Fri, 16 Jul 2021 13:20:02 -0600
Received: from rumpleteazer.rhmr.com (localhost [127.0.0.1]) by rumpleteazer.rhmr.com (8.14.4/8.14.4/Debian-4.1ubuntu1) with ESMTP id 16GJJ8cj031708; Fri, 16 Jul 2021 13:19:08 -0600
Received: (from hilarie@localhost) by rumpleteazer.rhmr.com (8.14.4/8.14.4/Submit) id 16GJJ8V4031707; Fri, 16 Jul 2021 13:19:08 -0600
Date: Fri, 16 Jul 2021 13:19:08 -0600
Message-Id: <202107161919.16GJJ8V4031707@rumpleteazer.rhmr.com>
From: "Hilarie Orman" <hilarie@purplestreak.com>
Reply-To: "Hilarie Orman" <hilarie@purplestreak.com>
To: iesg@ietf.org, secdir@ietf.org
Cc: draft-ietf-opsawg-ipfix-mpls-sr-label-type.all@ietf.org
X-XM-SPF: eid=1m4TNR-00Dv26-QV; ; ; mid=<202107161919.16GJJ8V4031707@rumpleteazer.rhmr.com>; ; ; hst=in02.mta.xmission.com; ; ; ip=166.70.232.207; ; ; frm=hilarie@purplestreak.com; ; ; spf=pass
X-XM-AID: U2FsdGVkX18YE+pN8iZlOHAN3sDaxJxl
X-SA-Exim-Connect-IP: 166.70.232.207
X-SA-Exim-Mail-From: hilarie@purplestreak.com
X-Spam-DCC: XMission; sa07 1397; Body=1 Fuz1=1 Fuz2=1
X-Spam-Combo: *******;iesg@ietf.org, secdir@ietf.org
X-Spam-Relay-Country:
X-Spam-Timing: total 459 ms - load_scoreonly_sql: 0.04 (0.0%), signal_user_changed: 11 (2.4%), b_tie_ro: 10 (2.1%), parse: 0.76 (0.2%), extract_message_metadata: 3.4 (0.7%), get_uri_detail_list: 0.61 (0.1%), tests_pri_-1000: 3.2 (0.7%), tests_pri_-950: 1.58 (0.3%), tests_pri_-900: 1.21 (0.3%), tests_pri_-90: 85 (18.5%), check_bayes: 83 (18.1%), b_tokenize: 7 (1.4%), b_tok_get_all: 5 (1.1%), b_comp_prob: 2.8 (0.6%), b_tok_touch_all: 65 (14.2%), b_finish: 0.99 (0.2%), tests_pri_0: 338 (73.6%), check_dkim_signature: 0.43 (0.1%), check_dkim_adsp: 46 (10.0%), poll_dns_idle: 39 (8.4%), tests_pri_10: 3.2 (0.7%), tests_pri_500: 10 (2.1%), rewrite_mail: 0.00 (0.0%)
X-SA-Exim-Version: 4.2.1 (built Sat, 08 Feb 2020 21:53:50 +0000)
X-SA-Exim-Scanned: Yes (on in02.mta.xmission.com)
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/_YNKYm31WaULm6b14SxkCqPQYW0>
Subject: [secdir] Security directorate review of draft-ietf-opsawg-ipfix-mpls-sr-label-type-07
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 16 Jul 2021 19:20:10 -0000

     	            Security review of 
   Export of MPLS Segment Routing Label Type Information in IP Flow
		      Information Export (IPFIX)
 	   draft-ietf-opsawg-ipfix-mpls-sr-label-type-07

Do not be alarmed.  I generated this review of this document as part
of the security directorate's ongoing effort to review all IETF
documents being processed by the IESG.  These comments were written
with the intent of improving security requirements and considerations
in IETF drafts.  Comments not addressed in last call may be included
in AD reviews during the IESG review.  Document editors and WG chairs
should treat these comments just like any other last call comments.

The document introduces named code points support 4 new routing
extensions for Segment Routing domains.  It does not impact the
security of the extended protocols.

Hilarie