IETF Last Call Review of draft-ietf-opsawg-ipfix-on-path-telemetry-19
review-ietf-opsawg-ipfix-on-path-telemetry-19-secdir-lc-dunbar-2025-07-18-00
review-ietf-opsawg-ipfix-on-path-telemetry-19-secdir-lc-dunbar-2025-07-18-00
I have reviewed this document as part of the SEC area directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the Security area directors. Document editors and WG chairs should treat these comments just like any other last-call comments. Summary: This document is well-written and nearly ready for publication. One issue: The Security Considerations section does not explicitly mention the risk of accepting spoofed IPFIX messages from unauthenticated exporters. Since IPFIX collectors may receive telemetry data from multiple sources, there is a risk that a malicious or misconfigured node could inject false or misleading data. It would be useful to add something like: Collectors MUST ensure that telemetry originates from trusted sources. Accepting IPFIX messages from unauthenticated sources could lead to data spoofing, policy misapplication, or denial of service. Best Regards, Linda Dunbar