Skip to main content

Last Call Review of draft-ietf-netmod-interfaces-cfg-10

Request Review of draft-ietf-netmod-interfaces-cfg
Requested revision No specific revision (document currently at 16)
Type Last Call Review
Team Security Area Directorate (secdir)
Deadline 2013-05-03
Requested 2013-04-25
Authors Martin Björklund
Draft last updated 2013-05-16
Completed reviews Genart Last Call review of -10 by Roni Even (diff)
Genart Last Call review of -14 by Roni Even (diff)
Genart Last Call review of -15 by Roni Even (diff)
Secdir Last Call review of -10 by Shawn M Emery (diff)
Opsdir Early review of -13 by Susan Hares (diff)
Assignment Reviewer Shawn M Emery
State Completed
Review review-ietf-netmod-interfaces-cfg-10-secdir-lc-emery-2013-05-16
Reviewed revision 10 (document currently at 16)
Result Ready
Completed 2013-05-16
I have reviewed this document as part of the security directorate's 

ongoing effort to review all IETF documents being processed by the IESG. 

These comments were written primarily for the benefit of the security 

area directors. Document editors and WG chairs should treat these 

comments just like any other last call comments.

This internet-draft specifies a data model used for the management of 

network interfaces.

The security considerations section does exist and discusses that the 

data is made available through the NETCONF protocol.  NETCONF uses SSH 

to access and transfer said data.  It goes on to discuss the 

implications of unattended access to list and leaf data, but does not 

provide guidance on how to mitigate against unauthorized access.  If 

this is discussed in the NETCONF draft then this draft should at least 

provide this reference.

General comments:


Editorial comments: