Javascript disabled? Like other modern websites, the IETF Datatracker relies on Javascript. Please enable Javascript for full functionality.

Telechat Review of draft-ietf-bfd-vxlan-09
review-ietf-bfd-vxlan-09-secdir-telechat-emery-2019-12-12-00

Versions:

Request	Review of	draft-ietf-bfd-vxlan
	Requested revision	No specific revision (document currently at 16)
	Type	Telechat Review
	Team	Security Area Directorate (secdir)
	Deadline	2019-12-17
	Requested	2019-12-03
	Authors	Santosh Pallagatti , Greg Mirsky , Sudarsan Paragiri , Vengada Prasad Govindan , Mallik Mudigonda
	I-D last updated	2019-12-12
	Completed reviews	Rtgdir Last Call review of -07 by Joel M. Halpern (diff) Opsdir Last Call review of -07 by Jürgen Schönwälder (diff) Genart Last Call review of -07 by Erik Kline (diff) Tsvart Last Call review of -07 by Olivier Bonaventure (diff) Secdir Last Call review of -07 by Shawn M Emery (diff) Opsdir Telechat review of -09 by Jürgen Schönwälder (diff) Secdir Telechat review of -09 by Shawn M Emery (diff) Genart Telechat review of -09 by Erik Kline (diff)
Assignment	Reviewer	Shawn M Emery
	State	Completed
	Request	Telechat review on draft-ietf-bfd-vxlan by Security Area Directorate Assigned
	Posted at	https://mailarchive.ietf.org/arch/msg/secdir/P7kKBc8i9dUz91RX_Ela0EYe6XY
	Reviewed revision	09 (document currently at 16)
	Result	Has nits
	Completed	2019-12-09

review-ietf-bfd-vxlan-09-secdir-telechat-emery-2019-12-12-00

Reviewer: Shawn M. Emery
Review result: Ready with nits

I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the IESG.
These comments were written primarily for the benefit of the security
area directors. Document editors and WG chairs should treat these
comments just like any other last call comments.

This is a review of the changes since my original review of the 07 draft.
Most of my comments have been addressed, thank you.  The remaining
questions were:

1. Relating to privacy:
I believe that this section [security considerations] should also document
the security impact of deploying BFD on VXLANs for monitoring tunnel
traffic.
Which additional information, if any, can now be obtained with BFD usage?

2. Editorial:
Echo BFD is out of scope for the document, but does not describe the
reason for this or why state this at all?

They were discussed in the thread of the review but I don't know why the
draft was not updated with this information.

Shawn.
--

Telechat Review of draft-ietf-bfd-vxlan-09 review-ietf-bfd-vxlan-09-secdir-telechat-emery-2019-12-12-00

Telechat Review of draft-ietf-bfd-vxlan-09
review-ietf-bfd-vxlan-09-secdir-telechat-emery-2019-12-12-00