The security consideration section is written well. I have one minor comment. The security consideration section discusses the necessity of access control by referencing RFC 8341. The access control feature was also discussed in Section 5, but the section refers RFC 5905 and RFC 8519. Since they are both dealing with the necessity of access control, it would be nicer if the security consideration section discusses the need for access control with the same (at least one same) reference.