[secdir] secdir review of draft-ietf-ccamp-gmpls-ethernet-arch-07
David McGrew <mcgrew@cisco.com> Thu, 17 December 2009 23:54 UTC
Return-Path: <mcgrew@cisco.com>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 323713A68F5; Thu, 17 Dec 2009 15:54:29 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.599
X-Spam-Level:
X-Spam-Status: No, score=-7.599 tagged_above=-999 required=5 tests=[AWL=-1.000, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ybK-BM4zvLLn; Thu, 17 Dec 2009 15:54:28 -0800 (PST)
Received: from sj-iport-5.cisco.com (sj-iport-5.cisco.com [171.68.10.87]) by core3.amsl.com (Postfix) with ESMTP id A06BE3A6875; Thu, 17 Dec 2009 15:54:27 -0800 (PST)
Authentication-Results: sj-iport-5.cisco.com; dkim=neutral (message not signed) header.i=none
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: ApoEAN9TKkurR7Ht/2dsb2JhbAC/H5cphC0E
X-IronPort-AV: E=Sophos;i="4.47,415,1257120000"; d="scan'208";a="121596221"
Received: from sj-core-1.cisco.com ([171.71.177.237]) by sj-iport-5.cisco.com with ESMTP; 17 Dec 2009 23:54:13 +0000
Received: from xbh-sjc-231.amer.cisco.com (xbh-sjc-231.cisco.com [128.107.191.100]) by sj-core-1.cisco.com (8.13.8/8.14.3) with ESMTP id nBHNsDIm001132; Thu, 17 Dec 2009 23:54:13 GMT
Received: from xfe-sjc-212.amer.cisco.com ([171.70.151.187]) by xbh-sjc-231.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.3959); Thu, 17 Dec 2009 15:54:13 -0800
Received: from stealth-10-32-254-212.cisco.com ([10.32.254.212]) by xfe-sjc-212.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.3959); Thu, 17 Dec 2009 15:54:12 -0800
Message-Id: <86FD1A1E-AE10-4FAB-83D6-BC5042211490@cisco.com>
From: David McGrew <mcgrew@cisco.com>
To: secdir@ietf.org, loa.andersson@ericsson.com, lberger@labn.net, donald.fedyk@alcatel-lucent.com
Content-Type: text/plain; charset="US-ASCII"; format="flowed"; delsp="yes"
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v936)
Date: Thu, 17 Dec 2009 15:54:11 -0800
X-Mailer: Apple Mail (2.936)
X-OriginalArrivalTime: 17 Dec 2009 23:54:13.0040 (UTC) FILETIME=[3BD79B00:01CA7F74]
Cc: IESG <iesg@ietf.org>
Subject: [secdir] secdir review of draft-ietf-ccamp-gmpls-ethernet-arch-07
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Dec 2009 23:54:29 -0000
I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. Section 9, Security Considerations. "The architecture for GMPLS controlled "transport" Ethernet assumes that the network consists of trusted devices" I believe what is meant is "The architecture for GMPLS controlled "transport" Ethernet assumes that the GMPLS core network consists of trusted devices". This is fairly vague, and it would be useful to use the terms from draft-ietf-mpls-mpls-and-gmpls-security-framework-07, and say something like "A GMPLS controlled "transport" Ethernet system should assume that users and devices attached to UNIs may behave maliciously, negligently, or incorrectly. Providers are trusted to not be malicious." The document refers the reader to draft-ietf-mpls-mpls-and-gmpls- security-framework-07 for most security considerations, which is a fair thing to do. draft-ietf-mpls-mpls-and-gmpls-security-framework-07 recommends encryption, so I suggest adding a reference to IEEE 802.1AE Media Access Control (MAC) Security, like this: "Cryptography can be used to protect against many attacks described in [draft-ietf-mpls-mpls-and- gmpls-security-framework-07]. One option for protecting "transport" Ethernet is the use of 802.1AE Media Access Control Security, which provides encryption and authentication." Nit: Section 1. "SONET/SDH TDM" needs a comma regards, David
- [secdir] secdir review of draft-ietf-ccamp-gmpls-… David McGrew
- Re: [secdir] secdir review of draft-ietf-ccamp-gm… Lou Berger