[secdir] Secdir review of draft-ietf-ccamp-microwave-framework-05
Radia Perlman <radiaperlman@gmail.com> Mon, 07 May 2018 06:48 UTC
Return-Path: <radiaperlman@gmail.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 19A061270B4; Sun, 6 May 2018 23:48:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cjWiZxTc2gZy; Sun, 6 May 2018 23:48:16 -0700 (PDT)
Received: from mail-it0-x22b.google.com (mail-it0-x22b.google.com [IPv6:2607:f8b0:4001:c0b::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8E30F126D0C; Sun, 6 May 2018 23:48:16 -0700 (PDT)
Received: by mail-it0-x22b.google.com with SMTP id c5-v6so10219849itj.1; Sun, 06 May 2018 23:48:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=QEJiHxzQ4vsnIgkYFKk94b0Z1AfoxAbm70aiQ06Jxuw=; b=DCtBmV2iRbLPaEMSKpFETgppn6FSG8aReMsD2+GED/HtdJAhnYkbaNK6/3MFbKdMIB PgMhucQyR+2kUqkCotqiDbZ5RVwd8ipF+P1WJNabjTV+75x1FybVhQ7ViaeK/Afd/1Q8 C1IBzOVk07WS5FBWVqqt5o2K257Am40UemT2jFwHka6IGhBxNLvL9AM/ioX8nT4mV9xC vAkNt6eRALbTBcJWcFMDhXqh6zKY4gSegz01HttIs1M7+DR7y46ToD+8KhoWwgUO6cdj 1FvJfBi/XqWcHtK6KEXhafv2vnlULeshynCXcDzC2j5PXez8C+f0SwyojDgGUez1WhUr 8vBA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=QEJiHxzQ4vsnIgkYFKk94b0Z1AfoxAbm70aiQ06Jxuw=; b=gBrmbRSvBJRHMypnBAse8TCRBqXD06u0DOkVzLm9gH3K1KPL1rwcZbxV24BbfaVW/4 z+EdZkgP6BJQnVN7Z1i2767pJDJnRcLuRIyOT5a7/c96o9lMq7opVVoVuNA5b4gpcs45 jHgiL36NQxE4LLasZ3rwqSI3SYL9KTHMCkVkxkLIJykfFXKzqXsn+od/M82Vc1dziOtD lkRiI8zJQHb6eCltuaNgR2lZUObCcbEhRkQS89JtmofG3VZvek0GcQ/RtqF2Qan4paqZ 20lSCG9EQclKt04fr/4e3KbE4UOROr5PLfZn2kZL7lHExthNoR6gypLu9fuJPEiT4fbB 5taQ==
X-Gm-Message-State: ALQs6tDlhO1kqWZ3gDvqCzMK56XkCV06mbeVip1JK/Lj/MFRJuu2ldTs lqxIaHKTYlZ+y0YMoHJ97SNl/FJAlhCEfnG4QWYFgA==
X-Google-Smtp-Source: AB8JxZo2Sz7k/On+R7WDjxT8Xn3FqgNxUCxvGOkduQdbcEBUPDIO4X5BXDMNVzQpQ8e5mxSQ2blA9sTx1Me4TtunRwk=
X-Received: by 2002:a24:ed0f:: with SMTP id r15-v6mr22001907ith.86.1525675695788; Sun, 06 May 2018 23:48:15 -0700 (PDT)
MIME-Version: 1.0
Received: by 2002:a02:2a02:0:0:0:0:0 with HTTP; Sun, 6 May 2018 23:48:15 -0700 (PDT)
From: Radia Perlman <radiaperlman@gmail.com>
Date: Sun, 06 May 2018 23:48:15 -0700
Message-ID: <CAFOuuo6d2wpjWXM928kxRi+NusWH+uJb0+72kgZYmgDAyd7dWg@mail.gmail.com>
To: draft-ietf-ccamp-microwave-framework-05.all@tools.ietf.org, The IESG <iesg@ietf.org>, secdir@ietf.org
Content-Type: multipart/alternative; boundary="000000000000e3d7e5056b980d67"
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/cdlwJJU6XdZl6fSg155cruPNeyc>
Subject: [secdir] Secdir review of draft-ietf-ccamp-microwave-framework-05
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 07 May 2018 06:48:18 -0000
Summary: No security issues found, but I do have questions, and there are
editing glitches
I have reviewed this document as part of the security directorate's ongoing
effort to review all IETF documents being processed by the IESG. These
comments were written primarily for the benefit of the security area
directors. Document editors and WG chairs should treat these comments just
like any other last call comments.
This document describes the management interface for microwave radio links.
It advocates (correctly, I believe) that such an interface should be
extensible to provide for vendor-specific features.
I don't understand the difference between a "a traditional network
management system" and SDN. Perhaps it is not the job of this document to
clearly make the distinction, and I suspect there is no real
distinction...setting parameters (traditional network management) is a way
of "programming" an interface ("SDN").
This document could use an editing pass for glitches, but these glitches do
not impact its readability.
The glitches consist mostly of leaving out little words like "of" in the
following sentence.
"The adoption of an SDN framework for management and
control the microwave interface is one of the key applications for
this work."
The security considerations say that they assume a secure transport layer
(authenticated, probably encryption isn't necessary) for communication.
Other than that, perhaps, there might be security considerations for
inadvertently setting parameters incorrectly, or maliciously by a trusted
administrator. But this document does not specify the specific parameters
to be managed, just a general framework.
Radia
- [secdir] Secdir review of draft-ietf-ccamp-microw… Radia Perlman