Hi,





    
    I have reviewed this document as part of the security directorate's
    ongoing effort to review all IETF documents being processed by the
    IESG. These comments were written primarily for the benefit of the
    security area directors. Document editors and WG chairs should treat
    these comments just like any other last call comments.





    Overall, the document looks great. This is a very information-dense
    document and the authors and contributors have done a wonderful job
    of putting it together. While I do not follow the technology, I was
    able to understand the concepts and I could see that the security
    considerations were appropriate.





    Some very small nits that the authors may want to consider:


    - the terms DODAG, DIO, and DAO are not expanded anywhere. (Yeah, I
    know I could go look them up... ;-)


    
    - The 2nd paragraph in 9.3 ends with "Known schemes". I figure
    someone was going to write something more there.





    Regards,


    Chris