Agreed. There is a boiler plate for Security Considerations that all YANG models should start with.
Thanks,
Acee
On 12/10/20, 12:18 PM, "Lsr on behalf of tom petch" <lsr-bounces@xxxxxxxx on behalf of ietfc@xxxxxxxxxxxxx> wrote:
From: Lsr <lsr-bounces@xxxxxxxx> on behalf of Michael Richardson via Datatracker <noreply@xxxxxxxx>
Sent: 07 December 2020 02:49
Reviewer: Michael Richardson
Review result: Ready
This document is a short YANG module relating to RFC8500, and expertise in that
RFC are required to be sure if all the right control bits are required. It has
reasonable security consideration, although the words, "The lowest NETCONF
layer is the secure transport layer" seems a bit awkward. I would instead
write, "All [NETCONF] transactions run over a secure transport layer, which is
SSH"...
<tp>
I think that that would be a mistake. The text in question is specified by YANG Guidelines RFC8407 and appears in (almost) all I-D with a YANG Module. The text is the consensus of the NETMOD WG. The Secure Transport layer is a defined part of the Netconf architecture and can be implemented by at least four protocols.
Tom Petch
_______________________________________________
Lsr mailing list
Lsr@xxxxxxxx
https://www.ietf.org/mailman/listinfo/lsr
_______________________________________________
Lsr mailing list
Lsr@xxxxxxxx
https://www.ietf.org/mailman/listinfo/lsr
--
last-call mailing list
last-call@xxxxxxxx
https://www.ietf.org/mailman/listinfo/last-call
