[Last-Call] Re: Secdir last call review of draft-ietf-mpls-mna-usecases-12

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hi Yaron,
thank you for your comments and suggestion adding the reference. Would the following address your concern:
NEW TEXT:
6.  Security Considerations

   This document introduces no new security considerations beyond those
   outlined in Section 7 of [I-D.ietf-mpls-mna-fwk].

Regards,
Greg


On Fri, Sep 13, 2024 at 6:39 AM Yaron Sheffer via Datatracker <noreply@xxxxxxxx> wrote:
Reviewer: Yaron Sheffer
Review result: Has Issues

This document reviews multiple use cases for a new extension to MPLS, Network
Action Indicators.

The entirety of the Security Considerations section reads:

This document introduces no new security considerations.

I am not convinced, and I think an explanation is needed on why MNA are more or
less susceptible to attacks than the way these use cases are signaled today.
That *could* lead to discussion of new security controls.

Specifically I would recommend to address the more difficult migration and
coexistence scenarios listed in Sections 3 and 4.

In fact, even a reference to
https://www.ietf.org/archive/id/draft-ietf-mpls-mna-fwk-10.html#name-security-considerations
may do the job, assuming the authors believe the Security Considerations over
in that document cover the use cases listed here.


-- 
last-call mailing list -- last-call@xxxxxxxx
To unsubscribe send an email to last-call-leave@xxxxxxxx

[Index of Archives]     [IETF Annoucements]     [IETF]     [IP Storage]     [Yosemite News]     [Linux SCTP]     [Linux Newbies]     [Mhonarc]     [Fedora Users]

  Powered by Linux