[secdir] Secdir review of draft-linowski-netmod-yang-abstract-04

Brian Weis <bew@cisco.com> Mon, 06 December 2010 19:36 UTC

Return-Path: <bew@cisco.com>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 8F1E63A68CE; Mon, 6 Dec 2010 11:36:02 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -110.599
X-Spam-Level:
X-Spam-Status: No, score=-110.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id seRrztnAndSE; Mon, 6 Dec 2010 11:36:01 -0800 (PST)
Received: from sj-iport-3.cisco.com (sj-iport-3.cisco.com [171.71.176.72]) by core3.amsl.com (Postfix) with ESMTP id 51A743A68CB; Mon, 6 Dec 2010 11:36:01 -0800 (PST)
Authentication-Results: sj-iport-3.cisco.com; dkim=neutral (message not signed) header.i=none
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AvsEAHjJ/EyrR7H+/2dsb2JhbACjPHGjRpsrhUkEhF+GDw
X-IronPort-AV: E=Sophos;i="4.59,306,1288569600"; d="scan'208";a="250632241"
Received: from sj-core-2.cisco.com ([171.71.177.254]) by sj-iport-3.cisco.com with ESMTP; 06 Dec 2010 19:37:25 +0000
Received: from dhcp-128-107-151-32.cisco.com (dhcp-128-107-151-32.cisco.com [128.107.151.32]) by sj-core-2.cisco.com (8.13.8/8.14.3) with ESMTP id oB6JbPaN022867; Mon, 6 Dec 2010 19:37:25 GMT
From: Brian Weis <bew@cisco.com>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Date: Mon, 06 Dec 2010 11:37:26 -0800
Message-Id: <DD3E18F6-C094-47CB-BA2A-FFE5247436CD@cisco.com>
To: secdir@ietf.org, iesg@ietf.org
Mime-Version: 1.0 (Apple Message framework v1082)
X-Mailer: Apple Mail (2.1082)
Cc: netmod-chairs@tools.ietf.org, draft-linowski-netmod-yang-abstract@tools.ietf.org
Subject: [secdir] Secdir review of draft-linowski-netmod-yang-abstract-04
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 06 Dec 2010 19:36:02 -0000

I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the  IESG.  These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other review comments.

This document extends the YANG data modeling language. It supports modeling of a tree of data elements that represent the configuration and runtime status of network elements. For example, it allows modeling of a router or switch comprised of blades containing plug-in modules.

The security considerations section seems sufficient as written. I do not see the need for any changes.

Brian