[spring] Roman Danyliw's Discuss on draft-ietf-spring-sr-yang-29: (with DISCUSS and COMMENT)
Roman Danyliw via Datatracker <noreply@ietf.org> Thu, 21 January 2021 03:13 UTC
Return-Path: <noreply@ietf.org>
X-Original-To: spring@ietf.org
Delivered-To: spring@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 287C13A1680; Wed, 20 Jan 2021 19:13:01 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: Roman Danyliw via Datatracker <noreply@ietf.org>
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-spring-sr-yang@ietf.org, spring-chairs@ietf.org, spring@ietf.org, Joel Halpern <jmh@joelhalpern.com>, jmh@joelhalpern.com
X-Test-IDTracker: no
X-IETF-IDTracker: 7.24.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: Roman Danyliw <rdd@cert.org>
Message-ID: <161119878113.26341.2105148207721265327@ietfa.amsl.com>
Date: Wed, 20 Jan 2021 19:13:01 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/spring/TY8u612iqh1oqJjIS9UdyKU6Ewg>
Subject: [spring] Roman Danyliw's Discuss on draft-ietf-spring-sr-yang-29: (with DISCUSS and COMMENT)
X-BeenThere: spring@ietf.org
X-Mailman-Version: 2.1.29
List-Id: "Source Packet Routing in NetworkinG \(SPRING\)" <spring.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spring>, <mailto:spring-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spring/>
List-Post: <mailto:spring@ietf.org>
List-Help: <mailto:spring-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spring>, <mailto:spring-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Jan 2021 03:13:01 -0000
Roman Danyliw has entered the following ballot position for draft-ietf-spring-sr-yang-29: Discuss When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html for more information about IESG DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-spring-sr-yang/ ---------------------------------------------------------------------- DISCUSS: ---------------------------------------------------------------------- Section 9. The primary impact of the manipulating writable nodes appears to be characterized as DoS. Don’t the possible consequences also include the ability to leak traffic outside the trusted domain or to route traffic through arbitrary paths of the attackers choosing potentially enable on-path inspection or manipulation of traffic; or avoidance of security controls? ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- ** Section 9. Thanks for using the templated YANG Security Considerations. A nit on the references s/[RFC6536]/[RFC8341]/ ** Section 9. The following caution around readable nodes didn’t parse for me. Was the intent as follows: OLD The exposure of both local bindings and SID database will exposure segment routing paths that may be attacked. NEW The exposure of either the local bindings or SID database would provide an attacker the segment routing paths and related topology information. ** Section 9. Typo. s/a a/a/ ** Section 9. Typo. s/rediection/redirection/
- [spring] Roman Danyliw's Discuss on draft-ietf-sp… Roman Danyliw via Datatracker
- Re: [spring] Roman Danyliw's Discuss on draft-iet… Acee Lindem (acee)
- Re: [spring] Roman Danyliw's Discuss on draft-iet… Roman Danyliw