IETF Logo Mail Archive

Re: [sidr] Gen-ART review of draft-ietf-sidr-bgpsec-threats-06

"Black, David" <david.black@emc.com> Wed, 02 October 2013 01:13 UTC

Return-Path: <david.black@emc.com>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1867221F9B07; Tue, 1 Oct 2013 18:13:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.598
X-Spam-Level:
X-Spam-Status: No, score=-102.598 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SeH585Y0QfGp; Tue, 1 Oct 2013 18:13:19 -0700 (PDT)
Received: from mailuogwhop.emc.com (mailuogwhop.emc.com [168.159.213.141]) by ietfa.amsl.com (Postfix) with ESMTP id D069221F9AB4; Tue, 1 Oct 2013 18:13:15 -0700 (PDT)
Received: from maildlpprd01.lss.emc.com (maildlpprd01.lss.emc.com [10.253.24.33]) by mailuogwprd04.lss.emc.com (Sentrion-MTA-4.3.0/Sentrion-MTA-4.3.0) with ESMTP id r921Cnm4002397 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 1 Oct 2013 21:12:49 -0400
X-DKIM: OpenDKIM Filter v2.4.3 mailuogwprd04.lss.emc.com r921Cnm4002397
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=emc.com; s=jan2013; t=1380676370; bh=MJTc5QTgsDY+9DelFwb3PbvLbl8=; h=From:To:CC:Date:Subject:Message-ID:References:In-Reply-To: Content-Type:MIME-Version; b=SwCR6LIqFH+M2u72a0G5FEw+gvUOhfhQ+ff2hgdjMkqVgXYuhyd5/+EWtYaaHt0sa poMe9+M/7oGD8L+ZQZP+f41b6Bv30aFU+BB46dHp1tP93EYXlsgLYEyS2RQAXA+3/r FPuvODBe3uc10pIp864SkCx3PHRs5qrQBDPSrvsc=
X-DKIM: OpenDKIM Filter v2.4.3 mailuogwprd04.lss.emc.com r921Cnm4002397
Received: from mailusrhubprd51.lss.emc.com (mailusrhubprd51.lss.emc.com [10.106.48.24]) by maildlpprd01.lss.emc.com (RSA Interceptor); Tue, 1 Oct 2013 21:12:37 -0400
Received: from mxhub05.corp.emc.com (mxhub05.corp.emc.com [128.222.70.202]) by mailusrhubprd51.lss.emc.com (Sentrion-MTA-4.3.0/Sentrion-MTA-4.3.0) with ESMTP id r921CarW021869 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Tue, 1 Oct 2013 21:12:37 -0400
Received: from mx15a.corp.emc.com ([169.254.1.46]) by mxhub05.corp.emc.com ([128.222.70.202]) with mapi; Tue, 1 Oct 2013 21:12:36 -0400
From: "Black, David" <david.black@emc.com>
To: Stephen Kent <kent@bbn.com>
Date: Tue, 01 Oct 2013 21:12:35 -0400
Thread-Topic: Gen-ART review of draft-ietf-sidr-bgpsec-threats-06
Thread-Index: Ac6+6kZ659cHh6CITOajOWkx94Wf6gAIXwxA
Message-ID: <8D3D17ACE214DC429325B2B98F3AE712025DCE1852@MX15A.corp.emc.com>
References: <8D3D17ACE214DC429325B2B98F3AE712025DBB6FDA@MX15A.corp.emc.com> <5249BE21.4060702@bbn.com> <8D3D17ACE214DC429325B2B98F3AE712025DBB7B41@MX15A.corp.emc.com> <524B3998.20009@bbn.com>
In-Reply-To: <524B3998.20009@bbn.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: multipart/alternative; boundary="_000_8D3D17ACE214DC429325B2B98F3AE712025DCE1852MX15Acorpemcc_"
MIME-Version: 1.0
X-Sentrion-Hostname: mailusrhubprd51.lss.emc.com
X-EMM-GWVC: 1
X-EMM-McAfeeVC: 1
X-RSA-Classifications: public
Cc: "ietf@ietf.org" <ietf@ietf.org>, "Black, David" <david.black@emc.com>, "sidr@ietf.org" <sidr@ietf.org>, "General Area Review Team (gen-art@ietf.org)" <gen-art@ietf.org>
Subject: Re: [sidr] Gen-ART review of draft-ietf-sidr-bgpsec-threats-06
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sidr>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 02 Oct 2013 01:13:34 -0000

Steve,

I think the modified introduction text suffices to connect the PATHSEC and BGPsec terms, but I don't think that referring to the SIDR WG charter for the PATHSEC goals is reasonable - an RFC is an archive document, whereas a WG charter is not.

The explanation of "calls for" in the cache discussion is fine.

As I previously noted on the TCPMD5 reference:

Ok - I was suggesting adding an informative reference to RFC 2385, but this
is a nit, and so if the responsible AD is happy with omitting that reference
entirely, I don't have a problem.

Thanks,
--David

From: Stephen Kent [mailto:kent@bbn.com]
Sent: Tuesday, October 01, 2013 5:08 PM
To: Black, David
Cc: achi@cs.unc.edu; General Area Review Team (gen-art@ietf.org); stbryant@cisco.com; ietf@ietf.org; sidr@ietf.org
Subject: Re: Gen-ART review of draft-ietf-sidr-bgpsec-threats-06

David,

Since this doc logically precedes the BGPsec design, I still think it's appropriate to
use PATHSEC here. But, we can add a sentence to connect the terms. I propose this modified text for the introduction:

This document describes the security context in which PATHSEC is intended to operate.  (The term "PATHSEC" is employed in this document to refer to any design used to achieve the path security goal described in the SIDR WG charter. The charter focuses on mechanisms that will enable an AS to determine if the AS_path represented in a route represents the path via which the NLRI traveled. Other SIDR documents use
the term "BGPsec" to refer to a specific design.) ...

The phrase "calls for" seems appropriate in the cache discussion. There is no MUST in the RFCs about using a local cache. The docs encourage RPs to maintain a local cache,
and 6481 states that not using one is "NOT RECOMMENDED."  All of the RP software of which
I am aware does so, but it is not an absolute requirement.

I think we've agreed that quoted is a static assertion and thus need not be
annotated to reflect more recent RFCs.

Steve

v2.23.0 | Report a Bug | By Email