Re: [secdir] [Detnet] Secdir last call review of draft-ietf-detnet-mpls-over-tsn-05

Balázs Varga A <balazs.a.varga@ericsson.com> Mon, 08 February 2021 20:44 UTC

Return-Path: <balazs.a.varga@ericsson.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 734D03A167F; Mon, 8 Feb 2021 12:44:47 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.351
X-Spam-Level:
X-Spam-Status: No, score=-2.351 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.25, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HvkHs0rUBLEn; Mon, 8 Feb 2021 12:44:46 -0800 (PST)
Received: from EUR05-AM6-obe.outbound.protection.outlook.com (mail-am6eur05on2068.outbound.protection.outlook.com [40.107.22.68]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F29373A1641; Mon, 8 Feb 2021 12:44:39 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=haPCmzg+RQ2/Fcr6DOlEyFh9sVOMC0+HGzVfes/A4FhsJmJbIA+//QwQTkF0sY0KbZx92gPGqKsIi8E8TkSOYIO68+Iy2NgauE/2dvRkrujJwyf6SMT27o7TtnNaBx9jUnfXGG7HPa2ZF2rVwJOGQS5FG3qDMg8D9yEEImByjHJTDmi4Lso/6OmY0om3PoprntJeP303k7l5aF+V7AxTkoQL60wtAI+Gx6j5J+CPn7JKQ5h2QajaUfWaVzun1rec7SDZLY7AjXVlywfQWg6qqSUO8zAtEr6UXtQRn0ZZ3Xfh8RuaSmkIe1TAcL/BLi8FC/2T558vIMYcZ+MLx0aOjw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=xj6FIiSE2UGOAeeUStWtrVipfL771/RcnMDND8b1TdA=; b=kuK2kgkO9rVHBgKN5WNqgUJOxsUhWl1+zifHm9CSVjsqOF1yZLWmXl8wt8qi0KKgubng4FrzB8aHKtMGDVMfL8XpOcdjgOScgNbD8hW+Efsl1cB0jcqP5PWOUzqV3Hc5nm793ecTWKWWQPLuO6SyJam1JRrn7DVahu05xT8lGjrMYc3yOqKs/ynis5a/MRlzv36vdj/r6KlEnzVuj85bLT+KbHpQURc2/Eg+z61CwUBeLRYlJ/EmhVeemawHsmtMsNwems11ZFHFv9RuFBTaPJWzLsCEbRUMuwYimFAMhiI2g9xBnuASjQrJEm4tXYAf+jaVCSilCX/1uLbZtMQcnw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=xj6FIiSE2UGOAeeUStWtrVipfL771/RcnMDND8b1TdA=; b=cI87AVSyNqqUbcOnhg/kIo8qXFMIR0R+ip8q/eBydMypsYrV6opLaH1Z77HJr7X2+vCKqxmIz0kPgiYT1RLljXXj9KRG0e5XdDZ7sfD7PPqbyn9wdoeyU9MLY6D8SO87bZ8TpOu+OXmg6NQVdw1T48Ik9gewu6J72KB2iZhhT7M=
Received: from (2603:10a6:208:22::25) by AM9PR07MB7697.eurprd07.prod.outlook.com (2603:10a6:20b:2c2::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3846.20; Mon, 8 Feb 2021 20:44:37 +0000
Received: from AM0PR0702MB3603.eurprd07.prod.outlook.com ([fe80::24d3:85ea:df17:ed0b]) by AM0PR0702MB3603.eurprd07.prod.outlook.com ([fe80::24d3:85ea:df17:ed0b%3]) with mapi id 15.20.3846.024; Mon, 8 Feb 2021 20:44:37 +0000
From: =?iso-8859-1?Q?Bal=E1zs_Varga_A?= <balazs.a.varga@ericsson.com>
To: Yoav Nir <ynir.ietf@gmail.com>, "secdir@ietf.org" <secdir@ietf.org>
CC: "last-call@ietf.org" <last-call@ietf.org>, "detnet@ietf.org" <detnet@ietf.org>, "draft-ietf-detnet-mpls-over-tsn.all@ietf.org" <draft-ietf-detnet-mpls-over-tsn.all@ietf.org>
Thread-Topic: [Detnet] Secdir last call review of draft-ietf-detnet-mpls-over-tsn-05
Thread-Index: AQHW9osFLO70aGOimU2OmLpVakdv1KpOsRew
Date: Mon, 8 Feb 2021 20:44:37 +0000
Message-ID: <AM0PR0702MB36031DA3D640C2831D77E1EBAC8F9@AM0PR0702MB3603.eurprd07.prod.outlook.com>
References: <161195798389.15160.12141368782949515798@ietfa.amsl.com>
In-Reply-To: <161195798389.15160.12141368782949515798@ietfa.amsl.com>
Accept-Language: hu-HU, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=ericsson.com;
x-originating-ip: [94.21.210.80]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: a4140801-8d2d-460b-eec3-08d8cc7259e3
x-ms-traffictypediagnostic: AM9PR07MB7697:
x-microsoft-antispam-prvs: <AM9PR07MB76975813CC08B9B6BE6DC410AC8F9@AM9PR07MB7697.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:7219;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: h6vWS9wUzTDOmN7HPh+LOgnkhyTOOeiXVmdWxh6sCmSXHK36VIPpI9AF5LhUO7wo8TgFcweiqlzuciQfTzcGjoTGaNKvYb5QjdMe1lpFDEgGpxMMa1uHs73BVYilo6DjR31gx77X0PaSucN5duLo6xwpSGRtdiIkI4CyKdCVbIJEv7RAgTsRN6cpB5ns/nvURLp/VJDkF7KuO0ItG3SZIIvIIMMv/eZf5ColZ4TAX9docd283lmWYOxtx9CCaS+HN3GujRzTze4HrUBR83j2VPYwSKcNFwA2bhlx8ZO68WYj8TCjlAwKAySyrt68spMRgObwfiTs4fhZy7DkCQz2ueshu4x5kDLz9EJEF6yYEOUy1So7S1ZFPUPNg3pC8Ao3LJvn+1m8DFV6oydPEP2OAKTb6QPDNKq4wdwPflO1O3mUC4rDpswF0LPnlFo4l2Qg4Mm2knmVoXpeWWE6ig+HVEbcAGo9v7Ayz/Emely/cFI2+t6voleqv2j0vJgvTrgzfG1rYNkdzA8BTsl8cM+gopBqvzkxjafbJb8JAA0nfr/iU7RnMcPrcYWp5F+H8EMtO0ezC1KiBCOwOo+m37BLyx0OxNjsGGjLb4+U0Bk4Bsc=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM0PR0702MB3603.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(136003)(346002)(39860400002)(376002)(396003)(366004)(4326008)(71200400001)(53546011)(33656002)(186003)(52536014)(66446008)(64756008)(6506007)(86362001)(8936002)(966005)(26005)(8676002)(5660300002)(2906002)(7696005)(83380400001)(54906003)(66556008)(110136005)(478600001)(316002)(76116006)(66946007)(66476007)(9686003)(55016002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: =?iso-8859-1?Q?/YMrI+HfpKtAJpSs0VvGmrOioBa6gaSgPRICu0X6W8cvJa0TBFew9SJxmB?= =?iso-8859-1?Q?Rh8/te1Ln07b4ZvapOHv25O4AvAs0gqSOj0P6c9WmCvoHOYbq6A6h2YqSK?= =?iso-8859-1?Q?dkiDMhM7u8TrtKV3wABWtKvwzAwShXgQaA09b3QSE3pRY0C+qakvq0GrDR?= =?iso-8859-1?Q?0iye8B4yKqlJkAaUYXHgN0H35KYTuQta5Tr3qCexGTPifpfLuqcIgzhfgh?= =?iso-8859-1?Q?N0jc9X0di1NugVu333IQoK1F7FbHxmH76rfjKs4a7qLZnMuwOqj9FtlEJL?= =?iso-8859-1?Q?WNzZ21/OWEmo8FcnghY2ebam4aPdbK/SbwGAevHNFGsM8bOIy3Hq+IQ2Ud?= =?iso-8859-1?Q?ACBV9umhhqofskTujaxwn1Qw1QkpKd4wsdrxSZjsa8MzyjwYDLYo7kvOsa?= =?iso-8859-1?Q?zZ9RyeouWIbVs2TuFmSXjCZKmcYZF01URsiDo9pmfG5QXashzlBXw6P+wE?= =?iso-8859-1?Q?9c11rIR4dFjan3RfuEjp2BYaGW+sj/py5gU/NPCtDXfe5p9Nm+MyLN3YqQ?= =?iso-8859-1?Q?bNiUuRf81Ybo2asL7CsYyVb5xmicmyh2Zgfuw/+xlSOk1WfqVoA51IKaHX?= =?iso-8859-1?Q?18+bNCiEic3iHRboL53FZF8MMrLGQzCiOwRLy6npmQJcsdS05OTFeE50mg?= =?iso-8859-1?Q?Gvk0/Qy6atsjbr1soYW/vNuiABGa0wwfHA4kHeF9RgbSXhRzJXm8Sh8P1/?= =?iso-8859-1?Q?lGedlwysBRBkDmCeaaoMQ7WAtP2x+q3mVL3pGWRXD6QPwFnl2FZ0pGkMJv?= =?iso-8859-1?Q?+KtI0IX6e3WouABiVWJQHYVQ2NKl7d6KU4P1Zv+iRXU3ekMVXJWC6bhrmf?= =?iso-8859-1?Q?kicxmV+4Yh8miOhLDOJbMM84pFpV191FAXpUKFuyqck3/++dl/4UW+BFpQ?= =?iso-8859-1?Q?EIV5p3t7nJs1Kicm6s097shXMb8Q9rjslEcv0Z8RA1zrhQxUUYaiahZST9?= =?iso-8859-1?Q?T/Ru7XvGDJ5k5mHQwpxHatCwJnrti0WxQCRvuoF5eE9KBSK8eIY0pfE2te?= =?iso-8859-1?Q?wAYhMZXUkUp2b/69v5/C3SRxH2+r7MRC9Lmq+rx74t091QtG5/NF8MSggU?= =?iso-8859-1?Q?2PwPZbyWDMvpONVsUhVscFMbTGp5GrgwKOVMTRhxZ7gn+Glz1wv1umz5o3?= =?iso-8859-1?Q?OhzlX/OOGJyrY1iO9/t9n08c8OVjia5n7ZfAGb170+dGVzgFU57h1Z3moQ?= =?iso-8859-1?Q?hMFFbXtVQUa5hqUfTuvdaPYKlo6UowXT92uj3KI5TNVAVRiyPvZCVnnQxm?= =?iso-8859-1?Q?4dhkDA2WmLR36piQMtlXjrhmf8IgV8uVSPYDjPyM/5gZdKoc+bXQHbdCox?= =?iso-8859-1?Q?5RnX+VeTFuSUDckhY+RHLE4Fg5EbOeEe6SrGJL4zgN8Oa+Yhd7YRBcIo7z?= =?iso-8859-1?Q?FzBoJkEFQI?=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM0PR0702MB3603.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: a4140801-8d2d-460b-eec3-08d8cc7259e3
X-MS-Exchange-CrossTenant-originalarrivaltime: 08 Feb 2021 20:44:37.8913 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: EADMlJ1qnsGnyurPSWQ6Wk19w2j3ctkTXY67yXKqOPK5nCK7pAxlcXWyUfUeqdw2vzVmB8KXEHtO6G5m8n73TRfqkD3s6w8EnWFEKm8ZZIw=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM9PR07MB7697
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/j2ltWS7-lPRgakXCZekXf6WKTrM>
Subject: Re: [secdir] [Detnet] Secdir last call review of draft-ietf-detnet-mpls-over-tsn-05
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 08 Feb 2021 20:44:53 -0000

Hi Yoav,
Many thanks for your review.
Thanks
Bala'zs

-----Original Message-----
From: detnet <detnet-bounces@ietf.org> On Behalf Of Yoav Nir via Datatracker
Sent: Friday, January 29, 2021 11:06 PM
To: secdir@ietf.org
Cc: last-call@ietf.org; detnet@ietf.org; draft-ietf-detnet-mpls-over-tsn.all@ietf.org
Subject: [Detnet] Secdir last call review of draft-ietf-detnet-mpls-over-tsn-05

Reviewer: Yoav Nir
Review result: Ready

I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG.  These comments were written primarily for the benefit of the security area directors.
 Document editors and WG chairs should treat these comments just like any other last call comments.

The document links to two external documents, one dedicated to security considerations for DetNet, the other for DetNet over MPLS, both documents are works in progress. This is a good use of security considerations by reference.
For the specific issues regarding MPLS over TSN, the short section provides adequate details.


_______________________________________________
detnet mailing list
detnet@ietf.org
https://www.ietf.org/mailman/listinfo/detnet