[secdir] SecDir review of draft-ietf-idr-flowspec-redirect-rt-bis-03
Alexey Melnikov <alexey.melnikov@isode.com> Wed, 08 April 2015 14:35 UTC
Return-Path: <alexey.melnikov@isode.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 350DA1B3155 for <secdir@ietfa.amsl.com>; Wed, 8 Apr 2015 07:35:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.011
X-Spam-Level:
X-Spam-Status: No, score=-2.011 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GfqLOoH2XU2L for <secdir@ietfa.amsl.com>; Wed, 8 Apr 2015 07:35:28 -0700 (PDT)
Received: from statler.isode.com (ext-bt.isode.com [217.34.220.158]) by ietfa.amsl.com (Postfix) with ESMTP id 113161B3154 for <secdir@ietf.org>; Wed, 8 Apr 2015 07:35:10 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; t=1428503708; d=isode.com; s=selector; i=@isode.com; bh=ahnQDUMBVgS/lPu/b2JNoigQzobAnhokDY5AIpNlZ+A=; h=From:Sender:Reply-To:Subject:Date:Message-ID:To:Cc:MIME-Version: In-Reply-To:References:Content-Type:Content-Transfer-Encoding: Content-ID:Content-Description; b=IqNmO7J8ThO8PxoUCMJGj8Yt13ASzNhUhcmBtw8uLme1H+1DKfJUf5i4VvQ01CJF4Xsszz C16ycWS8+/30/yQ5goFWIfYkueIxuE2E7leS+GuEZ0NRveuvBsUjnloPgmxMYffZuNI2Sm PKbabv7PdFq1fD74uQdTQUEaOCjuBBs=;
Received: from [172.20.1.215] (dhcp-215.isode.net [172.20.1.215]) by statler.isode.com (submission channel) via TCP with ESMTPSA id <VSU8nABAISAu@statler.isode.com>; Wed, 8 Apr 2015 15:35:08 +0100
Message-ID: <55253C8D.5070305@isode.com>
Date: Wed, 08 Apr 2015 15:34:53 +0100
From: Alexey Melnikov <alexey.melnikov@isode.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:31.0) Gecko/20100101 Thunderbird/31.6.0
To: secdir@ietf.org, draft-ietf-idr-flowspec-redirect-rt-bis.all@tools.ietf.org
MIME-Version: 1.0
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/secdir/eMaIJJjeciJS9vR0pKh0dcqFOcw>
Subject: [secdir] SecDir review of draft-ietf-idr-flowspec-redirect-rt-bis-03
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Apr 2015 14:35:33 -0000
I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. This document clarifies the formatting of the the BGP Flowspec Redirect Extended Community, originally documented in RFC 5575 (Dissemination of Flow Specification Rules). This document is a straightforward clarification to RFC 5575. Documenting existing practice will improve security of implementations. Pointing to the Security Considerations of RFC 5575 is appropriate for this document. I believe that this ID is ready for publication.
- [secdir] SecDir review of draft-ietf-idr-flowspec… Alexey Melnikov