Re: [secdir] Review of draft-ietf-mpls-tp-gach-dcn-06
Adrian Farrel <Adrian.Farrel@huawei.com> Mon, 19 October 2009 11:41 UTC
Return-Path: <Adrian.Farrel@huawei.com>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 4D9CB3A681F; Mon, 19 Oct 2009 04:41:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.032
X-Spam-Level:
X-Spam-Status: No, score=-1.032 tagged_above=-999 required=5 tests=[AWL=-0.292, BAYES_20=-0.74]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NWEo1WTGfPdG; Mon, 19 Oct 2009 04:41:44 -0700 (PDT)
Received: from usaga01-in.huawei.com (usaga01-in.huawei.com [206.16.17.211]) by core3.amsl.com (Postfix) with ESMTP id C6D243A67D4; Mon, 19 Oct 2009 04:41:44 -0700 (PDT)
Received: from huawei.com (usaga01-in [172.18.4.6]) by usaga01-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTP id <0KRR00JA1F5RC7@usaga01-in.huawei.com>; Mon, 19 Oct 2009 04:41:51 -0700 (PDT)
Received: from your029b8cecfe (dsl-sp-81-140-15-32.in-addr.broadbandscope.com [81.140.15.32]) by usaga01-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTPA id <0KRR0053FF5ONB@usaga01-in.huawei.com>; Mon, 19 Oct 2009 04:41:51 -0700 (PDT)
Date: Mon, 19 Oct 2009 12:37:04 +0100
From: Adrian Farrel <Adrian.Farrel@huawei.com>
To: Shawn M Emery <Shawn.Emery@Sun.COM>, secdir@ietf.org
Message-id: <319F18AE86FD41619D03842D26812186@your029b8cecfe>
MIME-version: 1.0
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2900.5579
X-Mailer: Microsoft Outlook Express 6.00.2900.5843
Content-type: text/plain; format="flowed"; charset="iso-8859-1"; reply-type="response"
Content-transfer-encoding: 7bit
X-Priority: 3
X-MSMail-priority: Normal
References: <4ADC1C31.6060207@sun.com>
Cc: mpls-chairs@tools.ietf.org, draft-ietf-mpls-tp-gach-dcn@tools.ietf.org, iesg@ietf.org
Subject: Re: [secdir] Review of draft-ietf-mpls-tp-gach-dcn-06
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
Reply-To: Adrian Farrel <Adrian.Farrel@huawei.com>
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Oct 2009 11:41:46 -0000
Thanks for the review, Shawn. > The security considerations section does exist and describes that DCN > messages are required to have adequate security mechanisms. The section > doesn't describe what those mechanisms are, but should at least provide a > reference from other MPLS RFC/I-Ds that do. I'm a little unclear what you are asking for here. The draft defines a channel (i.e. a logical data link) down which any packet-based protocol could be run. Are you suggesting that this draft should contain a reference to the security mechanisms for each protocol that might be run down the channel? That seems like an impossible task. We could, I suppose, add text to note that "the MPLS data plane does not include any security mechanisms of its own, therefore it is important that protocols using the DCN apply their own security." Cheers, Adrian
- [secdir] Review of draft-ietf-mpls-tp-gach-dcn-06 Shawn M Emery
- Re: [secdir] Review of draft-ietf-mpls-tp-gach-dc… Adrian Farrel
- Re: [secdir] Review of draft-ietf-mpls-tp-gach-dc… Shawn M Emery