Hi, I've had a very quick look at this draft, and it didn't ring any alarms. Just one small comment on the Security Considerations, which starts:
> There is no protection against "unauthorized" ACP nodes to generate > service announcements, because there is no authorization scheme in > GRASP. That sounds a bit brutal. I suggest replacing the sentence: All ACP nodes are at the same level of trust, as a result of successfully enrolling and joining the ACP. However, there is currently no mechanism in GRASP for indicating and authorizing the role of a node. Therefore there is no protection against ACP nodes generating inappropriate service announcments. Regards Brian _______________________________________________ Anima mailing list [email protected] https://www.ietf.org/mailman/listinfo/anima
