Last Call Review of draft-ietf-pce-hierarchy-fwk-
review-ietf-pce-hierarchy-fwk-secdir-lc-eastlake-2012-08-24-00

Request Review of draft-ietf-pce-hierarchy-fwk
Requested rev. no specific revision (document currently at 05)
Type Last Call Review
Team Security Area Directorate (secdir)
Deadline 2012-08-24
Requested 2012-08-10
Authors Daniel King, Adrian Farrel
Draft last updated 2012-08-24
Completed reviews Genart Last Call review of -04 by Martin Thomson (diff)
Secdir Last Call review of -?? by Donald Eastlake
Assignment Reviewer Donald Eastlake 
State Completed
Review review-ietf-pce-hierarchy-fwk-secdir-lc-eastlake-2012-08-24
Review result Ready
Review completed: 2012-08-24

Review
review-ietf-pce-hierarchy-fwk-secdir-lc-eastlake-2012-08-24

I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the
IESG.  Document editors and WG chairs should treat these comments just
like any other last call comments.

This Informational draft discusses the use of the Path Computation
Element (PCE) architecture to determining routes through multiple
domains with different administration. This uses hierarchical PCE
processes that are heavily dependent on the PCE Protocol.

The Security Consideration section of this draft is heavily dependent
on the Security Considerations in the PCE Protocol RFC 5440, which are
quite good, and also references Security Considerations in several
other RFCs including RFC 5327 for inter-AS path computation and Path
Keys in RFC 5520 as well as directly discussing aspects unique to or
particularly prominent in the area considered.

I believe that security aspects of the technology being discussed in
this informational draft are well covered, directly or by reference,
and have no changes to recommend.

Thanks,
Donald
=============================
 Donald E. Eastlake 3rd   +1-508-333-2270 (cell)
 155 Beaver Street, Milford, MA 01757 USA
 d3e3e3 at gmail.com