Telechat Review of draft-ietf-tsvwg-rsvp-security-groupkeying-
review-ietf-tsvwg-rsvp-security-groupkeying-secdir-telechat-kent-2011-08-14-00

Request Review of draft-ietf-tsvwg-rsvp-security-groupkeying
Requested rev. no specific revision (document currently at 11)
Type Telechat Review
Team Security Area Directorate (secdir)
Deadline 2011-08-09
Requested 2011-07-26
Authors Michael Behringer, Brian Weis, François Le Faucheur
Draft last updated 2011-08-14
Completed reviews Secdir Early review of -?? by Stephen Kent
Secdir Telechat review of -?? by Stephen Kent
Assignment Reviewer Stephen Kent
State Completed
Review review-ietf-tsvwg-rsvp-security-groupkeying-secdir-telechat-kent-2011-08-14
Review completed: 2011-08-14

Review
review-ietf-tsvwg-rsvp-security-groupkeying-secdir-telechat-kent-2011-08-14

Title: 

draft-ietf-tsvwg-rsvp-security-groupkeying-10.txt




This is a quick
re-check.







I reviewed this document as part
of the security directorate's ongoing effort to review all IETF
documents being processed by the IESG.  These comments were
written primarily for the benefit of the security area directors. 
Document editors and WG chairs should treat these comments just like
any other last call comments.







This document
(draft-ietf-tsvwg-rsvp-security-groupkeying-10.txt) compares group
keying vs. per-neighbor or per-interface keying options for RSVP. It
also examines the applicability of various protocol security
mechanisms (e.g., IPsec and the RSVP INTEGRITY object) in different
"trust" contexts, and for different RSVP message types.





This is a

 very well-written

 document. The Security
Consideration section is but one sentence, because the whole document
is an analysis of security issues associated with key management and
protocol options for RSVP security. I wish more documents were of this
quality!