[secdir] Would you help the I2RS chairs with a QA review of security requirments and Security environment documents

"Susan Hares" <shares@ndzh.com> Thu, 23 July 2015 00:14 UTC

Return-Path: <shares@ndzh.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 536B31B2FD8 for <secdir@ietfa.amsl.com>; Wed, 22 Jul 2015 17:14:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -99.054
X-Spam-Level:
X-Spam-Status: No, score=-99.054 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DOS_OUTLOOK_TO_MX=2.845, HTML_MESSAGE=0.001, USER_IN_WHITELIST=-100] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JrgFGx98aQ4a for <secdir@ietfa.amsl.com>; Wed, 22 Jul 2015 17:14:07 -0700 (PDT)
Received: from hickoryhill-consulting.com (hhc-web3.hickoryhill-consulting.com [64.9.205.143]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 723341B2FD0 for <secdir@ietf.org>; Wed, 22 Jul 2015 17:14:07 -0700 (PDT)
X-Default-Received-SPF: pass (skip=forwardok (res=PASS)) x-ip-name=31.133.140.179;
From: "Susan Hares" <shares@ndzh.com>
To: <secdir@ietf.org>
Date: Wed, 22 Jul 2015 20:13:52 -0400
Message-ID: <000001d0c4dc$77336310$659a2930$@ndzh.com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_NextPart_000_0001_01D0C4BA.F02349B0"
X-Mailer: Microsoft Outlook 14.0
Thread-Index: AdDE23b7Xa25AqLISlutvO7hs14pcg==
Content-Language: en-us
X-Authenticated-User: skh@ndzh.com
Archived-At: <http://mailarchive.ietf.org/arch/msg/secdir/wRcy2c8oJYi_ADiPX056AGgVfHI>
Cc: 'Jeffrey Haas' <jhaas@pfrc.org>, 'Alvaro Retana' <aretana@cisco.com>, 'Kathleen Moriarty' <kathleen.moriarty.ietf@gmail.com>, 'Alia Atlas' <akatlas@juniper.net>
Subject: [secdir] Would you help the I2RS chairs with a QA review of security requirments and Security environment documents
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 23 Jul 2015 00:14:09 -0000

Security directorate: 

 

You reviewed our I2RS architecture document and provided really helpful
comments.  I2RS is preparing to work on the I2RS protocol - which is
Netconf/restconf + additions.   We have prepare two requirements documents: 

 

 <http://datatracker.ietf.org/doc/draft-hares-i2rs-auth-trans/>
draft-hares-i2rs-auth-trans-04  - security requirements for protocol 

 <http://datatracker.ietf.org/doc/draft-mglt-i2rs-security-requirements/>
draft-mglt-i2rs-security-requirements-00 - security requirements for
environment. 

 

The Netconf review expressed some concerns regarding whether these were
complete enough for the security directorate.   So, in parallel with doing a
WG adoption call I would like to request a QA review of these documents.
Also, if the person who does the review can read the secdir review of the
architecture document to determine if we have resolved in these documents
the questions from the architecture review. 

 

Due to the Netconf review, we would ask the person to review in 3 weeks from
now.  Could you let me know if this is possible?  As chairs, we really value
the advice of the security directorate.   

 

Sue Hares and Jeff Haas