<html><body><div style="color:#000; background-color:#fff; font-family:HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif;font-size:8pt"><div id="yiv9754436520"><div><div style="color: rgb(0, 0, 0); font-family: HelveticaNeue, 'Helvetica Neue', Helvetica, Arial, 'Lucida Grande', sans-serif; font-size: 8pt; background-color: rgb(255, 255, 255);"><div id="yiv9754436520" class="yiv9754436520" style=""><div id="yiv9754436520yui_3_16_0_1_1403022702943_346213" class="yiv9754436520" style=""><div style="color: rgb(0, 0, 0); font-family: HelveticaNeue, 'Helvetica Neue', Helvetica, Arial, 'Lucida Grande', sans-serif; font-size: 10pt; background-color: rgb(255, 255, 255);" class="yiv9754436520" id="yiv9754436520yui_3_16_0_1_1403022702943_346212"><span style="font-family: monospace; font-size: 10pt;" id="yiv9754436520yui_3_16_0_9_1403022702943_16" class="yiv9754436520">[I have reviewed this document as part of the Operational directorate's
ongoing </span><span style="font-family: monospace; font-size: 10pt;" id="yiv9754436520yui_3_16_0_9_1403022702943_20" class="yiv9754436520">effort to review all IETF documents being processed by the IESG. </span><span style="font-family: monospace; font-size: 10pt;" id="yiv9754436520yui_3_16_0_1_1403022702943_346765" class="yiv9754436520">These comments were written
primarily for the benefit of the</span></div><div style="color: rgb(0, 0, 0); font-family: HelveticaNeue, 'Helvetica Neue', Helvetica, Arial, 'Lucida Grande', sans-serif; font-size: 10pt; background-color: rgb(255, 255, 255);" class="yiv9754436520" id="yiv9754436520yui_3_16_0_1_1403022702943_346212"><span style="font-family: monospace;" class="yiv9754436520" id="yiv9754436520yui_3_16_0_1_1403022702943_346238">operational area directors. Document editors and WG chairs should </span><span style="font-family: monospace;" id="yiv9754436520yui_3_16_0_1_1403022702943_346225" class="yiv9754436520">treat these comments just like any other last call comments]</span><br style=""></div><div style="color: rgb(0, 0, 0); font-family: HelveticaNeue, 'Helvetica Neue', Helvetica, Arial, 'Lucida Grande', sans-serif; font-size: 10pt; background-color: rgb(255, 255, 255);" class="yiv9754436520" id="yiv9754436520yui_3_16_0_1_1403022702943_346212"><br
id="yiv9754436520yui_3_16_0_1_1403022702943_346222" class="yiv9754436520" style=""></div><div style="color: rgb(0, 0, 0); font-family: HelveticaNeue, 'Helvetica Neue', Helvetica, Arial, 'Lucida Grande', sans-serif; font-size: 10pt; background-color: rgb(255, 255, 255);" class="yiv9754436520" id="yiv9754436520yui_3_16_0_1_1403022702943_346212">The purpose of 2870bis itself, as stated up front in the introduction, is to separate operational requirements from protocol and deployment requirements. The operational requirements now reference a document <span style="font-family: 'Courier New'; white-space: pre-wrap; font-size: 1em;" class="yiv9754436520">[</span><a rel="nofollow" target="_blank" href="http://tools.ietf.org/html/draft-iab-2870bis-01#ref-RSSAC-001" style="font-family: 'Courier New'; white-space: pre-wrap; font-size: 1em; background-color: rgb(255, 255, 255);" class="yiv9754436520">RSSAC-001</a><span style="font-family: 'Courier New';
white-space: pre-wrap; font-size: 1em;" id="yiv9754436520yui_3_16_0_1_1403022702943_347045" class="yiv9754436520">]</span><span style="font-size:10pt;" class="yiv9754436520" id="yiv9754436520yui_3_16_0_1_1403022702943_347052"> outside of this SDO. This document has protocol requirements and some deployment requirements: I have no OAM-related concerns on the
stated deployment requirements.</span><br class="yiv9754436520" style=""></div><div style="color: rgb(0, 0, 0); font-family: HelveticaNeue, 'Helvetica Neue', Helvetica, Arial, 'Lucida Grande', sans-serif; font-size: 10pt; background-color: rgb(255, 255, 255);" class="yiv9754436520" id="yiv9754436520yui_3_16_0_1_1403022702943_346212"><br id="yiv9754436520yui_3_16_0_1_1403022702943_346900" class="yiv9754436520" style=""></div><div style="color: rgb(0, 0, 0); font-family: HelveticaNeue, 'Helvetica Neue', Helvetica, Arial, 'Lucida Grande', sans-serif; font-size: 10pt; background-color: rgb(255, 255, 255);" class="yiv9754436520" id="yiv9754436520yui_3_16_0_1_1403022702943_346212">Many of the security considerations in the original RFC2870 are themselves related to operational considerations and they are hopefully (re)captured fully in <span style="font-family: 'Courier New'; white-space: pre-wrap; font-size: 1em;" class="yiv9754436520">[</span><a
rel="nofollow" target="_blank" href="http://tools.ietf.org/html/draft-iab-2870bis-01#ref-RSSAC-001" style="font-family: 'Courier New'; white-space: pre-wrap; font-size: 1em; background-color: rgb(255, 255, 255);" class="yiv9754436520">RSSAC-001</a><span style="font-family: 'Courier New'; white-space: pre-wrap; font-size: 1em;" id="yiv9754436520yui_3_16_0_1_1403022702943_347054" class="yiv9754436520">]. A</span><span style="font-size:10pt;" class="yiv9754436520">lthough security considerations on respective DNS protocols are captured in respective RFCs; operational security considerations are critical to the security of the DNS (and, hence, the internet) infrastructure.</span><br class="yiv9754436520" style=""></div><div style="color: rgb(0, 0, 0); font-family: HelveticaNeue, 'Helvetica Neue', Helvetica, Arial, 'Lucida Grande', sans-serif; font-size: 10pt; background-color: rgb(255, 255, 255);" class="yiv9754436520"
id="yiv9754436520yui_3_16_0_1_1403022702943_346212"><br id="yiv9754436520yui_3_16_0_1_1403022702943_346633" class="yiv9754436520" style=""></div><div style="color: rgb(0, 0, 0); font-family: HelveticaNeue, 'Helvetica Neue', Helvetica, Arial, 'Lucida Grande', sans-serif; font-size: 10pt; background-color: rgb(255, 255, 255);" class="yiv9754436520" id="yiv9754436520yui_3_16_0_1_1403022702943_346212">Thanks,</div><div style="color: rgb(0, 0, 0); font-family: HelveticaNeue, 'Helvetica Neue', Helvetica, Arial, 'Lucida Grande', sans-serif; font-size: 10pt; background-color: rgb(255, 255, 255);" class="yiv9754436520" id="yiv9754436520yui_3_16_0_1_1403022702943_346212">-mani</div></div></div></div></div></div></div></body></html>