[secdir] secdir review of draft-ietf-i2rs-yang-dc-fabric-network-topology-06
Radia Perlman <radiaperlman@gmail.com> Sun, 18 February 2018 03:06 UTC
Return-Path: <radiaperlman@gmail.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2DD1712D7EC; Sat, 17 Feb 2018 19:06:26 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fdZyJgPbhxSr; Sat, 17 Feb 2018 19:06:24 -0800 (PST)
Received: from mail-io0-x22c.google.com (mail-io0-x22c.google.com [IPv6:2607:f8b0:4001:c06::22c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B8B1B12AF84; Sat, 17 Feb 2018 19:06:24 -0800 (PST)
Received: by mail-io0-x22c.google.com with SMTP id t22so8063871iob.3; Sat, 17 Feb 2018 19:06:24 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=5UMgPtlzDvCXLTAEm+vdv5Cv6msdo5e/pWS4fPK0/Yc=; b=FG8i+807SrI2aMGjg11Qar8eepGXSRwxNYI9I5TkYncCmI+NEj2i/1Q/jVl4jzVdI0 BV0AY5OlMQCBW5n2WCGnZcXo0VAivUUq3TmOBvCdJ7vwNWv2qgRpBX58+n9bIh/Wl20+ uGOMK10Hw0Tgk+h1sKxhxtss89G4m3ZUbLkD2/QD2KaJu+f+afMu1tV+gORPlcMuRcFb yszvjEfVjorW+h1y6SxoOquhgeGgYOIXW2l9uY50YhJhwE0ckvEkUGi2hPizAIK2H6qW 6lwfnE36/LG1VzZIOx0zIecJc+5ulSUlN342wSUwsxGdEQnzs4dovakesmgsE0SmhA3O lnuA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=5UMgPtlzDvCXLTAEm+vdv5Cv6msdo5e/pWS4fPK0/Yc=; b=Cxe/hHULHEGjZ5lllh/vA5rKPe7e563e+NNFSXJImkKGCIliBOOU3eT5A5yoDKsLA8 i43pm06/HuzWua2yIa1kEoQC3LuuLuDnWu8xwtgskPxje2d7DHIkHjYxKJFIEQwLisQl JUgHTr2AgVxU/OJqQv/GxpUV7vMQWRtNLccgqjTXpZrZetlTnR7YTm94gHkWnpQKchzi nkwUjHT/UYFWG7OGDgOdfeZKdtLYztjcZ4Wc4LAv8wPynQc0NMYtX8dTbI61YSciEO8D UUnnE26ZcRcEdHInTTbD4r+PqRvPUZtiaqwLVj/YWzAQ6SEJcAa/dlpkUsEmY5PKOVyO PtZA==
X-Gm-Message-State: APf1xPDAYMcDH6T+vyjHDyLxtjGx1JUNQQsOSfyn+z3laEDnpxd3GUZT LyOQbsSD0WBlkLt6piKeWmLq44UFltc2JxLp3aX2/A==
X-Google-Smtp-Source: AH8x226l5GBngor15EkWqnU5byhkky0oWspI4Rcc4NUDupCEvaIEZ5Tdiy5ATP4m0RYuEqJo3K0SIOHQX6g+txoHv18=
X-Received: by 10.107.40.72 with SMTP id o69mr15000892ioo.56.1518923183181; Sat, 17 Feb 2018 19:06:23 -0800 (PST)
MIME-Version: 1.0
Received: by 10.2.7.3 with HTTP; Sat, 17 Feb 2018 19:06:22 -0800 (PST)
From: Radia Perlman <radiaperlman@gmail.com>
Date: Sat, 17 Feb 2018 19:06:22 -0800
Message-ID: <CAFOuuo5_iMvTQmZ1OrNBX7uSkUBLMMtODroaBgjfuVutWFeEZw@mail.gmail.com>
To: "secdir@ietf.org" <secdir@ietf.org>, The IESG <iesg@ietf.org>, draft-ietf-i2rs-yang-dc-fabric-network-topology.all@tools.ietf.org
Content-Type: multipart/alternative; boundary="001a1141fb82c652e2056573dcb4"
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/rAnREU_dc6I9yq8WnrK_VP3q2yk>
Subject: [secdir] secdir review of draft-ietf-i2rs-yang-dc-fabric-network-topology-06
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 18 Feb 2018 03:06:26 -0000
Summary: No security issues found I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. This document introduces a YANG model to manage multiple types of networks, and even a network consisting of mixed technologies, with one model. As they point out in the security considerations section, if there was no authentication of network management traffic, people could do bad things, but the assumption is that this will run over TLS or SSH. Therefore, no security issues are raised by this document. Radia
- [secdir] secdir review of draft-ietf-i2rs-yang-dc… Radia Perlman