Re: [secdir] Secdir review of draft-ietf-manet-dlep-multi-hop-extension-06.txt
Lou Berger <lberger@labn.net> Thu, 04 April 2019 02:08 UTC
Return-Path: <lberger@labn.net>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 883FD120392 for <secdir@ietfa.amsl.com>; Wed, 3 Apr 2019 19:08:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (768-bit key) header.d=labn.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SylQhmj1UdK8 for <secdir@ietfa.amsl.com>; Wed, 3 Apr 2019 19:08:42 -0700 (PDT)
Received: from gproxy4-pub.mail.unifiedlayer.com (gproxy4-pub.mail.unifiedlayer.com [69.89.23.142]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EC1AB12039D for <secdir@ietf.org>; Wed, 3 Apr 2019 19:08:37 -0700 (PDT)
Received: from cmgw10.unifiedlayer.com (unknown [10.9.0.10]) by gproxy4.mail.unifiedlayer.com (Postfix) with ESMTP id 8F600175D09 for <secdir@ietf.org>; Wed, 3 Apr 2019 20:08:35 -0600 (MDT)
Received: from box313.bluehost.com ([69.89.31.113]) by cmsmtp with ESMTP id BrnvhyfjNuj2oBrnvhvdRv; Wed, 03 Apr 2019 20:08:35 -0600
X-Authority-Reason: nr=8
X-Authority-Analysis: $(_cmae_reason
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=labn.net; s=default; h=Content-Type:MIME-Version:Subject:References:In-Reply-To: Message-ID:Date:To:From:Sender:Reply-To:Cc:Content-Transfer-Encoding: Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender: Resent-To:Resent-Cc:Resent-Message-ID:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=ssLnqCeYwisy7k1KjE+Ey8OLCJTmMRXdESbK3h9Bgm8=; b=Twxnmz6CR6X1jj8ctCTLDtgloT 7E7VSZ1gpvGkjlnt6hwKtFsWFAm/q+zYTYUcdxIJpR2xGeByoAEZAY1sdfpAlRyZ2GjAilHQIDV4N HIjL3bOAC9TdGBQBRBywjDS4f;
Received: from [172.56.35.109] (port=63648 helo=[IPV6:2607:fb90:78d:1a53:0:25:1809:9b01]) by box313.bluehost.com with esmtpsa (TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128) (Exim 4.91) (envelope-from <lberger@labn.net>) id 1hBrnv-001vqs-8f; Wed, 03 Apr 2019 20:08:35 -0600
From: Lou Berger <lberger@labn.net>
To: Derrell Piper <ddp@electric-loft.org>, secdir@ietf.org, ietf@ietf.org, draft-ietf-manet-dlep-multi-hop-extension.all@ietf.org
Date: Wed, 03 Apr 2019 22:08:34 -0400
Message-ID: <169e618f870.27ce.9b4188e636579690ba6c69f2c8a0f1fd@labn.net>
In-Reply-To: <4C94645D-B024-4FDD-B4F5-1B769232E9ED@electric-loft.org>
References: <4C94645D-B024-4FDD-B4F5-1B769232E9ED@electric-loft.org>
User-Agent: AquaMail/1.18.2-1413 (build: 101800200)
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----------169e61add1420fd27ceb59c9d7"
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - box313.bluehost.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - labn.net
X-BWhitelist: no
X-Source-IP: 172.56.35.109
X-Source-L: No
X-Exim-ID: 1hBrnv-001vqs-8f
X-Source:
X-Source-Args:
X-Source-Dir:
X-Source-Sender: ([IPV6:2607:fb90:78d:1a53:0:25:1809:9b01]) [172.56.35.109]:63648
X-Source-Auth: lberger@labn.net
X-Email-Count: 14
X-Source-Cap: bGFibm1vYmk7bGFibm1vYmk7Ym94MzEzLmJsdWVob3N0LmNvbQ==
X-Local-Domain: yes
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/xEo570J_ZwbRyJuTc7mCissIVgk>
Subject: Re: [secdir] Secdir review of draft-ietf-manet-dlep-multi-hop-extension-06.txt
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Apr 2019 02:08:43 -0000
Hi, Thanks for the review! Lou ---------- On April 2, 2019 1:17:42 PM Derrell Piper <ddp@electric-loft.org> wrote: > I have reviewed this document as part of the security > directorate's ongoing effort to review all IETF documents being > processed by the IESG. These comments were written primarily for > the benefit of the security area directors. Document editors and > WG chairs should treat these comments just like any other last > call comments. > > The summary is READY > > This document defines a new DLEP Extension Type and three new > DLEP Data Items to allow modems which implement multi-hop > forwarding to change multi-hop forwarding behavior through a new > hop-control mechanism defined by these extensions. > > The Security Considerations section was updated to explicitly > note this addition of a hop-control mechanism which can be used > to terminate and reset connections, affecting reacheability. As > this new extension is defined under the existing RFC 8175 > framework, the Security Considerations stated there also apply.
- [secdir] Secdir review of draft-ietf-manet-dlep-m… Derrell Piper
- Re: [secdir] Secdir review of draft-ietf-manet-dl… Lou Berger