Early Review of draft-ietf-idr-bgpls-srv6-ext-09
review-ietf-idr-bgpls-srv6-ext-09-secdir-early-farrell-2022-05-19-00

First, apologies for the appallingly late review - I hope this remains useful.

Second, I wish there were another status for secdir reviews meaning "I haven't
a notion," as that applies in this case;-)

The draft itself is probably fine as it's just defining ways in which existing
SRv6 stuff can be carried in BGP and the draft already points out how that
could increase the impact of any underlying security issues with SRv6 compared
carrying that same data in IS-IS or OSPF. So in that sense this seems ready.

However, I have to say that SRv6 seems rather scary to me from the security POV
so I really wonder if networks that do deploy that might not run into all sorts
of hard to predict security issues. Whether or not that's the case is the thing
about which I don't really have a notion and which is also (and properly) not
answered by this draft but nor was I enlightened by the other bits of SRv6 spec
that I scanned.