IETF Last Call Review of draft-ietf-cats-framework-19
review-ietf-cats-framework-19-secdir-lc-dunbar-2026-02-07-00

Request Review of draft-ietf-cats-framework
Requested revision No specific revision (document currently at 24)
Type IETF Last Call Review
Team Security Area Directorate (secdir)
Deadline 2026-02-09
Requested 2026-01-26
Requested by Jim Guichard
Authors Cheng Li , Zongpeng Du , Mohamed Boucadair , Luis M. Contreras , John Drake
I-D last updated 2026-06-02 (Latest revision 2026-04-02)
Completed reviews Rtgdir Early review of -13 by Ines Robles (diff)
Opsdir Early review of -19 by Giuseppe Fioccola (diff)
Rtgdir IETF Last Call review of -19 by Linda Dunbar (diff)
Opsdir IETF Last Call review of -19 by Gyan Mishra (diff)
Secdir IETF Last Call review of -19 by Linda Dunbar (diff)
Genart IETF Last Call review of -19 by Thomas Fossati (diff)
Tsvart IETF Last Call review of -21 by Tommy Pauly (diff)
Tsvart Telechat review of -22 by Tommy Pauly (diff)
Assignment Reviewer Linda Dunbar
State Completed
Request IETF Last Call review on draft-ietf-cats-framework by Security Area Directorate Assigned
Posted at https://mailarchive.ietf.org/arch/msg/secdir/qWn61jiBGXRs6C2tkzNgyg_x4x8
Reviewed revision 19 (document currently at 24)
Result Ready
Completed 2026-02-07
review-ietf-cats-framework-19-secdir-lc-dunbar-2026-02-07-00
This document provides a clear and well-scoped architectural framework for
Computing Aware Traffic Steering (CATS). The separation of functional
components and workflows makes it easy to understand.

From a security perspective, the document correctly identifies key risks,
including frequent metric updates, control-plane abuse, information disclosure,
and the need for authentication and integrity protection between CATS
components. The acknowledgment of potential attack vectors (e.g., metric
manipulation, service instance churn) and the recommendation for safeguards
such as aggregation, dampening, and threshold based updates are appropriate at
the framework level.

Best Regards,

Linda Dunbar