[secdir] Secdir last call review of draft-ietf-idr-bgp-open-policy-18

Alexey Melnikov via Datatracker <noreply@ietf.org> Thu, 16 December 2021 11:23 UTC

Return-Path: <noreply@ietf.org>
X-Original-To: secdir@ietf.org
Delivered-To: secdir@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 6328A3A0C9D; Thu, 16 Dec 2021 03:23:45 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Alexey Melnikov via Datatracker <noreply@ietf.org>
To: secdir@ietf.org
Cc: draft-ietf-idr-bgp-open-policy.all@ietf.org, idr@ietf.org, last-call@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 7.41.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <163965382531.11053.17265990456702454292@ietfa.amsl.com>
Reply-To: Alexey Melnikov <aamelnikov@fastmail.fm>
Date: Thu, 16 Dec 2021 03:23:45 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/tRksgOvYwAU6S4tT2CZYDr7BdQQ>
Subject: [secdir] Secdir last call review of draft-ietf-idr-bgp-open-policy-18
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Dec 2021 11:23:46 -0000

Reviewer: Alexey Melnikov
Review result: Ready

Reviewer: Alexey Melnikov
Review result: Ready

I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the
IESG. These comments were written primarily for the benefit of the
security area directors. Document editors and WG chairs should treat these
comments just like any other last call comments.

I reviewed an earlier version of this document and found its Security Considerations
to be adequate. Reading the new version I see that they are much improved and
discuss various unintentional and malicious modifications in more details.
I think the document is better for the new Security Considerations.