netconf-wg / restconf

9 stars 4 forks source link

Secdir review of draft-ietf-netconf-restconf-09 #43

Closed abierman closed 8 years ago

abierman commented 8 years ago

https://www.ietf.org/mail-archive/web/netconf/current/msg10846.html

abierman commented 8 years ago

https://www.ietf.org/mail-archive/web/netconf/current/msg10848.html

previous URL is wrong

abierman commented 8 years ago

sec 2 -- not moving to Sec Con. because it is part of the protocol following NETCONF pattern of specifying transport in a separate section

abierman commented 8 years ago

sec 4.3 add mention of 405 Method Not Allowed

abierman commented 8 years ago

make sure it is clear what methods are required in each section

abierman commented 8 years ago

no changes; need clarification for DDOS

abierman commented 8 years ago

Replay: already guarded against because encrypted; no need for sequence numbers

abierman commented 8 years ago

sec 12: data models; make it clear RESTCONF does not dictate which YANG modules are present on the system

abierman commented 8 years ago

issues address in restconf-12