--- 1/draft-ietf-mpls-self-ping-05.txt	2015-11-01 13:15:40.934727205 -0800
+++ 2/draft-ietf-mpls-self-ping-06.txt	2015-11-01 13:15:40.962727883 -0800
@@ -1,23 +1,23 @@
 
 MPLS Working Group                                             R. Bonica
 Internet-Draft                                          Juniper Networks
 Intended status: Standards Track                                I. Minei
-Expires: April 4, 2016                                      Google, Inc.
+Expires: May 4, 2016                                        Google, Inc.
                                                                  M. Conn
                                                               D. Pacella
                                                              L. Tomotaki
                                                                  Verizon
-                                                         October 2, 2015
+                                                        November 1, 2015
 
                              LSP Self-Ping
-                      draft-ietf-mpls-self-ping-05
+                      draft-ietf-mpls-self-ping-06
 
 Abstract
 
    When certain RSVP-TE optimizations are implemented, ingress LSRs can
    receive RSVP RESV messages before forwarding state has been installed
    on all downstream nodes.  According to the RSVP-TE specification, the
    ingress LSR can forward traffic through an LSP as soon as it receives
    a RESV message.  However, if the ingress LSR forwards traffic through
    the LSP before forwarding state has been installed on all downstream
    nodes, traffic can be lost.
@@ -48,21 +48,21 @@
    Internet-Drafts are working documents of the Internet Engineering
    Task Force (IETF).  Note that other groups may also distribute
    working documents as Internet-Drafts.  The list of current Internet-
    Drafts is at http://datatracker.ietf.org/drafts/current/.
 
    Internet-Drafts are draft documents valid for a maximum of six months
    and may be updated, replaced, or obsoleted by other documents at any
    time.  It is inappropriate to use Internet-Drafts as reference
    material or to cite them other than as "work in progress."
 
-   This Internet-Draft will expire on April 4, 2016.
+   This Internet-Draft will expire on May 4, 2016.
 
 Copyright Notice
 
    Copyright (c) 2015 IETF Trust and the persons identified as the
    document authors.  All rights reserved.
 
    This document is subject to BCP 78 and the IETF Trust's Legal
    Provisions Relating to IETF Documents
    (http://trustee.ietf.org/license-info) in effect on the date of
    publication of this document.  Please review these documents
@@ -79,21 +79,21 @@
    3.  The LSP Self-ping Message . . . . . . . . . . . . . . . . . .   5
    4.  LSP Self Ping Procedures  . . . . . . . . . . . . . . . . . .   6
    5.  Bidirectional LSP Procedures  . . . . . . . . . . . . . . . .   8
    6.  IANA Considerations . . . . . . . . . . . . . . . . . . . . .   8
    7.  Security Considerations . . . . . . . . . . . . . . . . . . .   8
    8.  Contributors  . . . . . . . . . . . . . . . . . . . . . . . .   8
    9.  Acknowledgements  . . . . . . . . . . . . . . . . . . . . . .   9
    10. References  . . . . . . . . . . . . . . . . . . . . . . . . .   9
      10.1.  Normative References . . . . . . . . . . . . . . . . . .   9
      10.2.  Informative References . . . . . . . . . . . . . . . . .  10
-   Appendix A.  Rejected Approaches  . . . . . . . . . . . . . . . .  10
+   Appendix A.  Rejected Approaches  . . . . . . . . . . . . . . . .  11
    Authors' Addresses  . . . . . . . . . . . . . . . . . . . . . . .  11
 
 1.  Introduction
 
    Ingress Label Switching Routers (LSR) use RSVP-TE [RFC3209] to
    establish MPLS Label Switched Paths.  The following paragraphs
    describe RSVP-TE procedures.
 
    The ingress LSR calculates a path between itself and an egress LSR.
    The calculated path can be either strictly or loosely routed.  Having
@@ -359,31 +359,34 @@
 6.  IANA Considerations
 
    IANA has assigned UDP Port Number 8503 [IANA.PORTS] for use by LSP
    Self-ping.
 
 7.  Security Considerations
 
    LSP Self-ping messages are easily forged.  Therefore, an attacker can
    send the ingress LSR a forged LSP Self-ping message, causing the
    ingress LSR to terminate the LSP Self-ping session prematurely.  In
-   order to mitigate these threats, implementations SHOULD NOT assign
-   Session-ID's in a predictable manner.  Furthermore, operators SHOULD
-   filter LSP Self-ping packets at network ingress points.
+   order to mitigate these threats, operators SHOULD filter LSP Self-
+   ping packets at the edges of the MPLS signaling domain.  Furthermore,
+   implementations SHOULD NOT assign Session-ID's in a predictable
+   manner.  In order to avoid predictablity, imlementations can leverage
+   a Cryptographically Secure Pseudo-randomn Number Generator (CSPRNG)
+   [NIST-CSPRNG]
 
 8.  Contributors
 
    The following individuals contributed significantly to this document:
 
       Mark Wygant
-
       Verizon
+
       mark.wygant@verizon.com
 
       Ravi Torvi
 
       Juniper Networks
 
       rtorvi@juniper.net
 
 9.  Acknowledgements
 
@@ -443,20 +446,25 @@
               Networks, "Seamless Bidirectional Forwarding Detection
               (S-BFD)", draft-akiya-bfd-seamless-base-03 (work in
               progress), April 2014.
 
    [IANA.PORTS]
               IANA, "Service Name and Transport Protocol Port Number
               Registry", <http://www.iana.org/assignments/
               service-names-port-numbers/
               service-names-port-numbers.txt>.
 
+   [NIST-CSPRNG]
+              "NIST Special Publication 800-90A, Recommendation for
+              Random Number Generation Using Deterministic Random Bit
+              Generators", January 2012.
+
    [RFC4594]  Babiarz, J., Chan, K., and F. Baker, "Configuration
               Guidelines for DiffServ Service Classes", RFC 4594,
               DOI 10.17487/RFC4594, August 2006,
               <http://www.rfc-editor.org/info/rfc4594>.
 
    [RFC6383]  Shiomoto, K. and A. Farrel, "Advice on When It Is Safe to
               Start Sending Data on Label Switched Paths Established
               Using RSVP-TE", RFC 6383, DOI 10.17487/RFC6383, September
               2011, <http://www.rfc-editor.org/info/rfc6383>.