I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the IESG.
These comments were written primarily for the benefit of the security area
directors. Document editors and WG chairs should treat these comments just
like any other last call comments.

I found no issues with the draft. The security considerations section
references NETCONF and RESTCONF for network security, with SSH and TLS
used. This seems fine but I wonder if some guidance on using these a la
RFC6125 would be helpful for some. One question in the security
consideration section. Twice "/routing/ribs/rib" is referred to a list.
Should this be "/routing/ribs"?