Hi all, We have updated a new version of draft-li-spring-srv6-security-consideration-10 (https://datatracker.ietf.org/doc/draft-li-spring-srv6-security-consideration/). This draft describes various threats and security concerns related to SRv6 networks and existing approaches to solve these threats. This document can be used as a reference for other SRv6 documents. It can also provide some guidance to SRv6 network operations.
The document has been worked on continuously for several years. If the WG & chairs think the draft is relatively stable now and can move forward, I'd like to ask for a call for WG adoption for the draft. Any comments are welcomed. The main updates of v10: 1. Add some descriptions on source address validation in sec. 4.3 (ID spoofing); 2. Add some descriptions on DoS which attacks the target SIDs and some descriptions on DoS mitigation tools; 3. Remove sec. 5. The effects of the threats will be incorporated into sec. 4; 4. Update the sections of security considerations and IANA considerations. Best, Nan > -----Original Message----- > From: internet-dra...@ietf.org <internet-dra...@ietf.org> > Sent: Wednesday, March 8, 2023 4:00 PM > To: Cheng Li <c...@huawei.com>; Chongfeng Xie <xie...@chinatelecom.cn>; > Hui Tian <tian...@caict.ac.cn>; Maojianwei (Mao) > <maojian...@huawei.com>; Maojianwei (Mao) <maojian...@huawei.com>; > gengnan <geng...@huawei.com>; Tian Tong <ton...@chinaunicom.cn>; > Lizhenbin <lizhen...@huawei.com>; tongtian124 <ton...@chinaunicom.cn> > Subject: New Version Notification for > draft-li-spring-srv6-security-consideration-10.txt > > > A new version of I-D, draft-li-spring-srv6-security-consideration-10.txt > has been successfully submitted by Nan Geng and posted to the IETF > repository. > > Name: draft-li-spring-srv6-security-consideration > Revision: 10 > Title: Security Considerations for SRv6 Networks > Document date: 2023-03-06 > Group: Individual Submission > Pages: 13 > URL: > https://www.ietf.org/archive/id/draft-li-spring-srv6-security-consideration-10. > txt > Status: > https://datatracker.ietf.org/doc/draft-li-spring-srv6-security-consideration/ > Htmlized: > https://datatracker.ietf.org/doc/html/draft-li-spring-srv6-security-consideratio > n > Diff: > https://author-tools.ietf.org/iddiff?url2=draft-li-spring-srv6-security-considera > tion-10 > > Abstract: > SRv6 inherits potential security vulnerabilities from Source Routing > in general, and also from IPv6. This document describes various > threats and security concerns related to SRv6 networks and existing > approaches to solve these threats. > > > > > The IETF Secretariat > >
_______________________________________________ spring mailing list spring@ietf.org https://www.ietf.org/mailman/listinfo/spring