Hi Nan,
Thanks for your hard working on this draft. After a quick review,
I think it is valuable. As more and more networks start to deploy SRv6, the
security issuse should be seriously considered. This draft lists several
solutions to common security threats, which is usful for the SRv6 deployment
and operation. So I think this draft deserves further promotion.
Best Regards,
Wei
------------------ Original ------------------
From:
"gengnan"
<gengnan=40huawei....@dmarc.ietf.org>;
Date: Fri, Mar 10, 2023 04:34 PM
To: "spring@ietf.org"<spring@ietf.org>;
Subject: [spring] FW: New Version Notification for
draft-li-spring-srv6-security-consideration-10.txt
Hi all,
We have updated a new version of draft-li-spring-srv6-security-consideration-10
(https://datatracker.ietf.org/doc/draft-li-spring-srv6-security-consideration/).
This draft describes various threats and security concerns related to SRv6
networks and existing approaches to solve these threats. This document can be
used as a reference for other SRv6 documents. It can also provide some guidance
to SRv6 network operations.
The document has been worked on continuously for several years. If the WG &
chairs think the draft is relatively stable now and can move forward, I'd like
to ask for a call for WG adoption for the draft.
Any comments are welcomed.
The main updates of v10:
1. Add some descriptions on source address validation in sec. 4.3 (ID spoofing);
2. Add some descriptions on DoS which attacks the target SIDs and some
descriptions on DoS mitigation tools;
3. Remove sec. 5. The effects of the threats will be incorporated into sec. 4;
4. Update the sections of security considerations and IANA considerations.
Best,
Nan
> -----Original Message-----
> From: internet-dra...@ietf.org <internet-dra...@ietf.org>
> Sent: Wednesday, March 8, 2023 4:00 PM
> To: Cheng Li <c...@huawei.com>; Chongfeng Xie
<xie...@chinatelecom.cn>;
> Hui Tian <tian...@caict.ac.cn>; Maojianwei (Mao)
> <maojian...@huawei.com>; Maojianwei (Mao) <maojian...@huawei.com>;
> gengnan <geng...@huawei.com>; Tian Tong <ton...@chinaunicom.cn>;
> Lizhenbin <lizhen...@huawei.com>; tongtian124 <ton...@chinaunicom.cn>
> Subject: New Version Notification for
> draft-li-spring-srv6-security-consideration-10.txt
>
>
> A new version of I-D, draft-li-spring-srv6-security-consideration-10.txt
> has been successfully submitted by Nan Geng and posted to the IETF
> repository.
>
> Name:
draft-li-spring-srv6-security-consideration
> Revision: 10
>
Title:
Security Considerations for SRv6 Networks
> Document date: 2023-03-06
> Group:
Individual Submission
> Pages:
13
> URL:
>
https://www.ietf.org/archive/id/draft-li-spring-srv6-security-consideration-10.
> txt
> Status:
>
https://datatracker.ietf.org/doc/draft-li-spring-srv6-security-consideration/
> Htmlized:
>
https://datatracker.ietf.org/doc/html/draft-li-spring-srv6-security-consideratio
> n
> Diff:
>
https://author-tools.ietf.org/iddiff?url2=draft-li-spring-srv6-security-considera
> tion-10
>
> Abstract:
> SRv6 inherits potential security vulnerabilities from Source
Routing
> in general, and also from IPv6. This document describes
various
> threats and security concerns related to SRv6 networks and
existing
> approaches to solve these threats.
>
>
>
>
> The IETF Secretariat
>
>
_______________________________________________
spring mailing list
spring@ietf.org
https://www.ietf.org/mailman/listinfo/spring