Last Call Review of draft-cardenas-dff-09
review-cardenas-dff-09-secdir-lc-hoffman-2013-02-21-00

Request Review of draft-cardenas-dff
Requested rev. no specific revision (document currently at 14)
Type Last Call Review
Team Security Area Directorate (secdir)
Deadline 2013-02-24
Requested 2013-02-14
Authors Ulrich Herberg, Alvaro Cardenas, Tadashige Iwao, Michael Dow, Sandra Cespedes
Draft last updated 2013-02-21
Completed reviews Genart Last Call review of -09 by Dan Romascanu (diff)
Genart Telechat review of -10 by Dan Romascanu (diff)
Genart Telechat review of -14 by Dan Romascanu
Secdir Last Call review of -09 by Paul Hoffman (diff)
Assignment Reviewer Paul Hoffman
State Completed
Review review-cardenas-dff-09-secdir-lc-hoffman-2013-02-21
Reviewed rev. 09 (document currently at 14)
Review result Ready
Review completed: 2013-02-21

Review
review-cardenas-dff-09-secdir-lc-hoffman-2013-02-21

Greetings again. draft-cardenas-dff, "Depth-First Forwarding in Unreliable Networks (DFF)", describes an experimental protocol that lets the network try to heal routing problems with messages in the data plane (instead of in the control plane). The protocol will change the routing of future packets in a way very similar to routing changes do today.

The security considerations section seems complete well thought-out. Basically, it says "content of redirected packets is out of scope, as is upper-layer security", which seems fine. It discusses the main concerns, which is this protocol making some denial-of-service attacks a bit easier, and does so fairly completely.

--Paul Hoffman