Last Call Review of draft-cardenas-dff-09
review-cardenas-dff-09-secdir-lc-hoffman-2013-02-21-00
| Request | Review of | draft-cardenas-dff |
|---|---|---|
| Requested revision | No specific revision (document currently at 14) | |
| Type | Last Call Review | |
| Team | Security Area Directorate (secdir) | |
| Deadline | 2013-02-24 | |
| Requested | 2013-02-14 | |
| Authors | Ulrich Herberg , Alvaro Cardenas , Tadashige Iwao , Michael L. Dow , Sandra Cespedes | |
| I-D last updated | 2013-02-21 | |
| Completed reviews |
Genart Last Call review of -09
by Dan Romascanu
(diff)
Genart Telechat review of -10 by Dan Romascanu (diff) Genart Telechat review of -14 by Dan Romascanu Secdir Last Call review of -09 by Paul E. Hoffman (diff) |
|
| Assignment | Reviewer | Paul E. Hoffman |
| State | Completed | |
| Request | Last Call review on draft-cardenas-dff by Security Area Directorate Assigned | |
| Reviewed revision | 09 (document currently at 14) | |
| Result | Ready | |
| Completed | 2013-02-21 |
review-cardenas-dff-09-secdir-lc-hoffman-2013-02-21-00
Greetings again. draft-cardenas-dff, "Depth-First Forwarding in Unreliable Networks (DFF)", describes an experimental protocol that lets the network try to heal routing problems with messages in the data plane (instead of in the control plane). The protocol will change the routing of future packets in a way very similar to routing changes do today. The security considerations section seems complete well thought-out. Basically, it says "content of redirected packets is out of scope, as is upper-layer security", which seems fine. It discusses the main concerns, which is this protocol making some denial-of-service attacks a bit easier, and does so fairly completely. --Paul Hoffman