Early Review of draft-ietf-bfd-large-packets-11
review-ietf-bfd-large-packets-11-secdir-early-salowey-2024-06-07-00
Request | Review of | draft-ietf-bfd-large-packets-07 |
---|---|---|
Requested revision | 07 (document currently at 12) | |
Type | Early Review | |
Team | Security Area Directorate (secdir) | |
Deadline | 2024-06-07 | |
Requested | 2024-05-10 | |
Requested by | Reshad Rahman | |
Authors | Jeffrey Haas , Albert Fu | |
I-D last updated | 2024-06-07 | |
Completed reviews |
Yangdoctors Last Call review of -07
by Jürgen Schönwälder
(diff)
Secdir Early review of -11 by Joseph A. Salowey (diff) |
|
Comments |
Hi, Going through WGLC right now. I'd like to get an early review from secdir. Regards, Reshad. |
|
Assignment | Reviewer | Joseph A. Salowey |
State | Completed | |
Request | Early review on draft-ietf-bfd-large-packets by Security Area Directorate Assigned | |
Posted at | https://mailarchive.ietf.org/arch/msg/secdir/BawXxx8OVCOuTDt517A6Tm8s48A | |
Reviewed revision | 11 (document currently at 12) | |
Result | Has issues | |
Completed | 2024-06-07 |
review-ietf-bfd-large-packets-11-secdir-early-salowey-2024-06-07-00
I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. The summary of the review is the document has minor issue. The document is well written and fairly simple. Referencing the previous security considerations does provide some good advice, but it seems that this document perhaps adds some considerations about the size of BPDU packets. It seems that it would be possible for excessively large packets could cause problems for the sender or receiver. Perhaps add something to the security considerations about: Implementations should consider this and set appropriate upper bounds on amount of padding added to these messages and on the length of received messages.