Skip to main content

Telechat Review of draft-ietf-tsvwg-rsvp-security-groupkeying-

Request Review of draft-ietf-tsvwg-rsvp-security-groupkeying
Requested revision No specific revision (document currently at 11)
Type Telechat Review
Team Security Area Directorate (secdir)
Deadline 2011-08-09
Requested 2011-07-26
Authors Michael H. Behringer , Brian Weis , François Le Faucheur
I-D last updated 2011-08-14
Completed reviews Secdir Early review of -?? by Stephen Kent
Secdir Telechat review of -?? by Stephen Kent
Assignment Reviewer Stephen Kent
State Completed Snapshot
Review review-ietf-tsvwg-rsvp-security-groupkeying-secdir-telechat-kent-2011-08-14
Completed 2011-08-14


This is a quick

I reviewed this document as part
of the security directorate's ongoing effort to review all IETF
documents being processed by the IESG.  These comments were
written primarily for the benefit of the security area directors. 
Document editors and WG chairs should treat these comments just like
any other last call comments.

This document
(draft-ietf-tsvwg-rsvp-security-groupkeying-10.txt) compares group
keying vs. per-neighbor or per-interface keying options for RSVP. It
also examines the applicability of various protocol security
mechanisms (e.g., IPsec and the RSVP INTEGRITY object) in different
"trust" contexts, and for different RSVP message types.

This is a

 very well-written

 document. The Security
Consideration section is but one sentence, because the whole document
is an analysis of security issues associated with key management and
protocol options for RSVP security. I wish more documents were of this