Last Call Review of draft-ietf-ippm-alt-mark-13
review-ietf-ippm-alt-mark-13-secdir-lc-yu-2017-10-26-00
review-ietf-ippm-alt-mark-13-secdir-lc-yu-2017-10-26-00
I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. The summary of the review is Ready. The Security Considerations section seems reasonable. I mostly agree that "The privacy concerns of network measurement are limited because the method only relies on information contained in the IP header without any release of user data." I would add that although information in the IP header is metadata that can be used to compromise the privacy of users, the limited marking technique in this document seems unlikely to substantially increase the existing privacy risks from IP header metadata. I also think it's reasonable to consider this detail to be already addressed by the wording "privacy concerns... are limited". It might be theoretically possible to modulate the marking to serve as a covert channel, but I think it would have a very low data rate if it is to avoid adversely affecting the measurement systems that monitor the marking. It's probably not worth mentioning this possibility in the document. Best regards, -Taylor