Last Call Review of draft-ietf-rtgwg-spf-uloop-pb-statement-09
review-ietf-rtgwg-spf-uloop-pb-statement-09-secdir-lc-hallam-baker-2019-01-07-00

Request Review of draft-ietf-rtgwg-spf-uloop-pb-statement
Requested rev. no specific revision (document currently at 10)
Type Last Call Review
Team Security Area Directorate (secdir)
Deadline 2018-12-18
Requested 2018-12-04
Other Reviews Rtgdir Early review of -03 by Tomonori Takeda (diff)
Rtgdir Last Call review of -08 by Tomonori Takeda (diff)
Genart Last Call review of -08 by Dan Romascanu (diff)
Opsdir Last Call review of -10 by Tim Chown
Review State Completed
Reviewer Phillip Hallam-Baker
Review review-ietf-rtgwg-spf-uloop-pb-statement-09-secdir-lc-hallam-baker-2019-01-07
Posted at https://mailarchive.ietf.org/arch/msg/secdir/LCgDPZsRC3SNaljpAJZ5h4OHyBA
Reviewed rev. 09 (document currently at 10)
Review result Has Issues
Draft last updated 2019-01-07
Review completed: 2019-01-07

Review
review-ietf-rtgwg-spf-uloop-pb-statement-09-secdir-lc-hallam-baker-2019-01-07

The document describes the problem and solution pretty clearly. Unfortunately, there is no discussion of the security considerations which is not appropriate for a document addressing an availability which is a security issue.

While microloops can form by chance, some consideration should be given to the possibility that an attacker could induce a loop to perform a DoS attack.