[Status] Comments on -15
"John G. Scudder" <jgs@juniper.net> Tue, 15 October 2013 15:39 UTC
Return-Path: <jgs@juniper.net>
X-Original-To: status@ietfa.amsl.com
Delivered-To: status@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 74D0021E8161 for <status@ietfa.amsl.com>; Tue, 15 Oct 2013 08:39:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.399
X-Spam-Level:
X-Spam-Status: No, score=-3.399 tagged_above=-999 required=5 tests=[AWL=0.200, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id D5N34GHB9hmf for <status@ietfa.amsl.com>; Tue, 15 Oct 2013 08:39:13 -0700 (PDT)
Received: from va3outboundpool.messaging.microsoft.com (va3ehsobe005.messaging.microsoft.com [216.32.180.31]) by ietfa.amsl.com (Postfix) with ESMTP id 007D021E8174 for <status@ietf.org>; Tue, 15 Oct 2013 08:39:12 -0700 (PDT)
Received: from mail209-va3-R.bigfish.com (10.7.14.238) by VA3EHSOBE004.bigfish.com (10.7.40.24) with Microsoft SMTP Server id 14.1.225.22; Tue, 15 Oct 2013 15:39:12 +0000
Received: from mail209-va3 (localhost [127.0.0.1]) by mail209-va3-R.bigfish.com (Postfix) with ESMTP id 356F4A00087; Tue, 15 Oct 2013 15:39:12 +0000 (UTC)
X-Forefront-Antispam-Report: CIP:157.56.240.101; KIP:(null); UIP:(null); IPV:NLI; H:BL2PRD0510HT002.namprd05.prod.outlook.com; RD:none; EFVD:NLI
X-SpamScore: 7
X-BigFish: VPS7(zz148cIzz1f42h208ch1ee6h1de0h1fdah2073h1202h1e76h1d1ah1d2ah1fc6h1082kzzz2fh2a8h839h944hd25he5bhf0ah1220h1288h12a5h12a9h12bdh137ah139eh13b6h1441h14ddh1504h1537h162dh1631h1662h1758h1898h18e1h1946h19b5h19ceh1ad9h1b0ah1d0ch1d2eh1d3fh1dc1h1dfeh1dffh1e1dh1e23h1fe8h1ff5h2052h20b3m1155h)
Received-SPF: pass (mail209-va3: domain of juniper.net designates 157.56.240.101 as permitted sender) client-ip=157.56.240.101; envelope-from=jgs@juniper.net; helo=BL2PRD0510HT002.namprd05.prod.outlook.com ; .outlook.com ;
X-Forefront-Antispam-Report-Untrusted: SFV:NSPM; SFS:(52604005)(189002)(199002)(54316002)(33656001)(56776001)(62966002)(85306002)(81686001)(76482001)(65816001)(82746002)(66066001)(80022001)(74366001)(79102001)(23726002)(77982001)(47776003)(63696002)(59766001)(81816001)(46406003)(57306001)(74876001)(50466002)(74706001)(83072001)(53416003)(69226001)(47736001)(49866001)(50986001)(47976001)(42186004)(53806001)(46102001)(51856001)(4396001)(74662001)(47446002)(83322001)(74502001)(50226001)(80976001)(31966008)(81542001)(76796001)(76786001)(36756003)(81342001)(76176001)(77096001)(77156001)(56816003)(83716002)(42262001); DIR:OUT; SFP:; SCL:1; SRVR:DM2PR05MB527; H:jgs-sslvpn-nc.jnpr.net; CLIP:66.129.232.2; FPR:; RD:InfoNoRecords; MX:1; A:1; LANG:en;
Received: from mail209-va3 (localhost.localdomain [127.0.0.1]) by mail209-va3 (MessageSwitch) id 1381851550915141_18401; Tue, 15 Oct 2013 15:39:10 +0000 (UTC)
Received: from VA3EHSMHS019.bigfish.com (unknown [10.7.14.254]) by mail209-va3.bigfish.com (Postfix) with ESMTP id D14FB9C0041; Tue, 15 Oct 2013 15:39:10 +0000 (UTC)
Received: from BL2PRD0510HT002.namprd05.prod.outlook.com (157.56.240.101) by VA3EHSMHS019.bigfish.com (10.7.99.29) with Microsoft SMTP Server (TLS) id 14.16.227.3; Tue, 15 Oct 2013 15:39:10 +0000
Received: from DM2PR05MB527.namprd05.prod.outlook.com (10.141.99.151) by BL2PRD0510HT002.namprd05.prod.outlook.com (10.255.100.37) with Microsoft SMTP Server (TLS) id 14.16.371.2; Tue, 15 Oct 2013 15:39:10 +0000
Received: from jgs-sslvpn-nc.jnpr.net (66.129.232.2) by DM2PR05MB527.namprd05.prod.outlook.com (10.141.99.151) with Microsoft SMTP Server (TLS) id 15.0.775.9; Tue, 15 Oct 2013 15:39:08 +0000
From: "John G. Scudder" <jgs@juniper.net>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Date: Tue, 15 Oct 2013 11:38:50 -0400
Message-ID: <4EF0CE45-8E8C-4F87-B585-C4CB175F6BF1@juniper.net>
To: Stewart Bryant <stbryant@cisco.com>
MIME-Version: 1.0 (Mac OS X Mail 6.6 \(1510\))
X-Mailer: Apple Mail (2.1510)
X-Originating-IP: [66.129.232.2]
X-ClientProxiedBy: BN1PR01CA003.prod.exchangelabs.com (10.242.217.161) To DM2PR05MB527.namprd05.prod.outlook.com (10.141.99.151)
X-Forefront-PRVS: 00003DBFE7
X-OriginatorOrg: juniper.net
X-FOPE-CONNECTOR: Id%0$Dn%*$RO%0$TLS%0$FQDN%$TlsDn%
Cc: "status@ietf.org" <status@ietf.org>
Subject: [Status] Comments on -15
X-BeenThere: status@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "Stacked Tunnels for Source Routing \(STATUS\)." <status.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/status>, <mailto:status-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/status>
List-Post: <mailto:status@ietf.org>
List-Help: <mailto:status-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/status>, <mailto:status-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Oct 2013 15:39:19 -0000
This looks pretty well-baked, thanks. Some nits below. --John 1. Thanks for fixing "negation", but even "negotiation" could be clearer: "are never possible, i.e., attackers will be unable to send source routed packets that get successfully processed, without being part of the negotiation for setting up the source routes or being able to eavesdrop" Perhaps what you mean is "... without being able to participate in the relevant control plane(s)"? 2. This text seems to have produced significant confusion among the IESG: "Initial work will focus on SPRING within in a single AS, however design decisions must not preclude operation of SPRING across AS boundaries." Possibly it would be worth spelling out explicitly that the previously-stated trust model continues to apply for multi-AS, e.g. by appending "In such multi-AS deployments, the previously-stated trust model would still apply. This is relevant in the context of multiple ASes operated by a single entity." 3. This could be rewritten more concisely: "The SPRING WG should provide OAM and the management needed to manage SPRING enabled networks." It becomes especially evident if you consider what the "M" in "OAM" stands for. (Does anyone know where the nearest ATM Machine is? :-) Perhaps just "The SPRING WG should address OAM for SPRING enabled networks" Although one might argue even this is redundant and you could perfectly well get by with "The SPRING WG should address OAM." 4. This makes an unwarranted presupposition: "The SPRING protocol itself may also be used as a tool for OAM in SPRING enabled networks." I'm actually not sure what "the SPRING protocol" is, especially given the WG isn't being chartered to produce a "SPRING protocol" per se. Maybe, "SPRING procedures may themselves also be used..." 5. s/architecture/architectures/ in: "o Specification of a high-level abstract architecture for SPRING and requirements for modifications to existing architecture to support SPRING use cases." 6. The word "source" is sprinkled liberally around the charter without taking care to define what it means in this context -- whether it's the packet's originator (the usual meaning) or something else. One approach would be to rewrite all uses of "source" to be more explicit, but for expedience we might just insert a statement like "in the context of this charter, 'source' means 'the point at which the explicit route was imposed'." 7. s/mechanism/mechanisms/ in: "o Definition of requirements and/or management plane mechanism needed to manage and operate a SPRING enabled network."
- [Status] Comments on -15 John G. Scudder