I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. This document describes the limitations of the existing Diameter overload mechanisms and provides requirements for new overload management mechanisms. The document is very well written and clear. I had just two comments: 1) The last sentence of Requirement 13 is a bit hard to parse. 2) Requirement 31 requires indication of overload at specified granularities (realm, application, node). Should overload status mechanisms have similar granularity requirements (see requirements 10 or 24)?