Last Call Review of draft-ietf-conex-concepts-uses-

Request Review of draft-ietf-conex-concepts-uses
Requested rev. no specific revision (document currently at 05)
Type Last Call Review
Team Security Area Directorate (secdir)
Deadline 2012-04-10
Requested 2012-04-03
Other Reviews Genart Last Call review of - by Alexey Melnikov (diff)
Genart Telechat review of - by Alexey Melnikov (diff)
Review State Completed
Reviewer Shawn Emery
Review review-ietf-conex-concepts-uses-secdir-lc-emery-2012-04-12
Posted at
Draft last updated 2012-04-12
Review completed: 2012-04-12


I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the IESG.
These comments were written primarily for the benefit of the security
area directors. Document editors and WG chairs should treat these
comments just like any other last call comments.

This informational draft describes use cases for the Congestion Exposure (ConEx) protocol
to facilitate efficient traffic management.  It also describes the reasoning of using ConEx
markings at the IP layer.

The security consideration section does exist and defers to the ietf-conex-abstract-mech

draft.  The security consideration section of ietf-conex-abstract-mech draft defers to
section 4.4, which is on auditing.  This really should be in its own security consideration
section and should extract specific security threats and how they are mitigated.

General comments:

Not being a ConEx expert, I didn't know what "ConEx markings" really meant when initially
reading the abstract.

Editorial comments: