Last Call Review of draft-ietf-dhc-dhcpv6-opt-netboot-
review-ietf-dhc-dhcpv6-opt-netboot-secdir-lc-laganier-2010-04-09-00

Request Review of draft-ietf-dhc-dhcpv6-opt-netboot
Requested rev. no specific revision (document currently at 10)
Type Last Call Review
Team Security Area Directorate (secdir)
Deadline 2010-04-20
Requested 2010-04-01
Draft last updated 2010-04-09
Completed reviews Secdir Last Call review of -?? by Julien Laganier
Assignment Reviewer Julien Laganier
State Completed
Review review-ietf-dhc-dhcpv6-opt-netboot-secdir-lc-laganier-2010-04-09
Review completed: 2010-04-09

Review
review-ietf-dhc-dhcpv6-opt-netboot-secdir-lc-laganier-2010-04-09

I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG.  These comments were written primarily for the benefit of the security area directors.  Document editors and WG chairs should treat these comments just like any other last call comments.

Document Abstract:

   The Dynamic Host Configuration Protocol for IPv6 (DHCPv6) provides a
   framework for passing configuration information to nodes on a
   network.  This document describes new options for DHCPv6 which are
   required for booting a node from the network.

Summary:

   This is a simple and straightforward DHCPv6 extensions. The Security considerations section is appropriate. Authors may consider highlighting the fact that downloading the wrong operating system could lead to compromise of data on local storage:

7.  Security considerations

   In untrusted networks, a rogue DHCPv6 server could send the new
   DHCPv6 options described in this document.  The booting clients could
   then be provided with a wrong URL so that the boot either fails, or
   even worse, the client boots the wrong operating system which has
   been provided by a malicious file server.  To prevent this kind of
   attack, clients can use authentication of DHCPv6 messages (see
   chapter 21. in [RFC3315]).

--julien