[secdir] review of draft-ietf-pals-redundancy-spe-02

Joseph Salowey <joe@salowey.net> Fri, 16 October 2015 03:56 UTC

Return-Path: <joe@salowey.net>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 476991B2E53 for <secdir@ietfa.amsl.com>; Thu, 15 Oct 2015 20:56:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.978
X-Spam-Level:
X-Spam-Status: No, score=-1.978 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=unavailable
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8hiRNtL8NjiM for <secdir@ietfa.amsl.com>; Thu, 15 Oct 2015 20:56:57 -0700 (PDT)
Received: from mail-lb0-f174.google.com (mail-lb0-f174.google.com [209.85.217.174]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DA8191B2E51 for <secdir@ietf.org>; Thu, 15 Oct 2015 20:56:56 -0700 (PDT)
Received: by lbbwb3 with SMTP id wb3so28075325lbb.1 for <secdir@ietf.org>; Thu, 15 Oct 2015 20:56:55 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:date:message-id:subject:from:to :content-type; bh=1BUDLkY1Gb+tKaL3n4uAtm/7GiZ7H6Nvg2vXJw9QLmc=; b=gmlz6Q4yY7cm0UpJj36YKdTL1XiCjZ9/nxTkr/cHkdZ8ZxiF2XO9NAJ1qzlHDthGYJ BZvQznqoZeqHP3632hmrTy4FmxkHqjJjXj8NGSjNOh4x8WgJz8fd9H/OvTaOPji9dx1f VkHohO0zu9ARC/2MAyJnSe2xj8J+TNcZoFq3tuEM4NvsdZnjxOZCwybUDs4r5PXCM/hW J2c7/jUr5bP3XA2tnZOZRtf1MYEnG3bfulG60MarobIdHHgBw/dStLlDncoxKezkj/4+ /KlC+faH7Bqc3YOGgGbSY0efeu3U9VKm6JnoszXxgrjFkZxUEEY9UfGmDWdmpg0hAfCX 6aCA==
X-Gm-Message-State: ALoCoQlLAe0SclGVsolcGpMM5pYsZY18+nkuXWZWNIbAFQbQKuvnH3c235zwumfWqtER8ME5EU45
MIME-Version: 1.0
X-Received: by 10.112.134.102 with SMTP id pj6mr6969625lbb.14.1444967814854; Thu, 15 Oct 2015 20:56:54 -0700 (PDT)
Received: by 10.112.2.231 with HTTP; Thu, 15 Oct 2015 20:56:54 -0700 (PDT)
Date: Thu, 15 Oct 2015 20:56:54 -0700
Message-ID: <CAOgPGoCauOqQpddpp+8tvztw20j7nvpPCCFSY=S_tvT4opnfUw@mail.gmail.com>
From: Joseph Salowey <joe@salowey.net>
To: secdir <secdir@ietf.org>, The IESG <iesg@ietf.org>, draft-ietf-pals-redundancy-spe.all@tools.ietf.org
Content-Type: multipart/alternative; boundary=e89a8f502c02511045052230c96f
Archived-At: <http://mailarchive.ietf.org/arch/msg/secdir/jbzcdIs2SydwBbtJt3rUb_yi980>
Subject: [secdir] review of draft-ietf-pals-redundancy-spe-02
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 16 Oct 2015 03:56:58 -0000

I have reviewed this document as part of the security directorate's ongoing
effort to review all IETF documents being processed by the IESG. These
comments were written primarily for the benefit of the security area
directors. Document editors and WG chairs should treat these comments just
like any other last call comments.

>From a security perspective I think the document is ready.  I think the
document could be cleaned up a little to make reading a little bit easier.

The document discusses a new pseudo wire redundancy mode.  I did not find
the document particularly clear, it would probably help to expand all the
acronyms on first use.   The document only refers to several other
documents for its security considerations.  While this is often not the
favored approach in this case it seems to be OK as best as I can tell.  The
document doesn't appear to be defining anything fundamentally new that
would change the considerations in the referenced documents or require
special attention.

Cheers,

Joe