Re: [Ace] [core] Pub Sub and multicast
Francesca Palombini <francesca.palombini@ericsson.com> Fri, 22 March 2019 08:25 UTC
Return-Path: <francesca.palombini@ericsson.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6465B130EC1 for <ace@ietfa.amsl.com>; Fri, 22 Mar 2019 01:25:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.301
X-Spam-Level:
X-Spam-Status: No, score=-4.301 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com header.b=PHvgCJba; dkim=pass (1024-bit key) header.d=ericsson.com header.b=YHYVn6te
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yu1CDyroiCmd for <ace@ietfa.amsl.com>; Fri, 22 Mar 2019 01:25:08 -0700 (PDT)
Received: from sessmg22.ericsson.net (sessmg22.ericsson.net [193.180.251.58]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9E2C2130DEA for <ace@ietf.org>; Fri, 22 Mar 2019 01:25:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; d=ericsson.com; s=mailgw201801; c=relaxed/relaxed; q=dns/txt; i=@ericsson.com; t=1553243105; x=1555835105; h=From:Sender:Reply-To:Subject:Date:Message-ID:To:CC:MIME-Version:Content-Type: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=bN3o7oO56yuWubt1IPTooXufF5rpmVS8EaLSv8e5zPg=; b=PHvgCJbaRe1RBpHF4W5AoQ+653TKDZ9HfAONSxLcxzpd7Q+TDLSk/2xjTjr1u8wz 0R/rivqvKtQRi+CrQWQE971TKg+xvhRxNX0LnLFf2iT7/Qo1v/ddpcG7zygtxzdI V1OtBJoOFFMlBPHxngNXmZYBOAOrYy+8ZU1e21pi7tE=;
X-AuditID: c1b4fb3a-02fff70000001645-0e-5c949be18057
Received: from ESESSMB504.ericsson.se (Unknown_Domain [153.88.183.122]) by sessmg22.ericsson.net (Symantec Mail Security) with SMTP id D6.1D.05701.1EB949C5; Fri, 22 Mar 2019 09:25:05 +0100 (CET)
Received: from ESESSMR504.ericsson.se (153.88.183.126) by ESESSMB504.ericsson.se (153.88.183.122) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1713.5; Fri, 22 Mar 2019 09:25:05 +0100
Received: from ESESBMB505.ericsson.se (153.88.183.172) by ESESSMR504.ericsson.se (153.88.183.126) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1713.5; Fri, 22 Mar 2019 09:25:05 +0100
Received: from EUR03-VE1-obe.outbound.protection.outlook.com (153.88.183.157) by ESESBMB505.ericsson.se (153.88.183.172) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1713.5 via Frontend Transport; Fri, 22 Mar 2019 09:25:05 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=bN3o7oO56yuWubt1IPTooXufF5rpmVS8EaLSv8e5zPg=; b=YHYVn6te5EMVkM+n4RLz5DdSU07iHf8vl5O6D77GjmcRqgOeLsYmXa31H81yJuKqTJnDA31r5o0wb5+UAoli9rB469aUgzxhntAQJXq6BVaOTBp26cct9S8Y2/HtCaaoYGc3TFzqtmFM6nqqO4uKJ3MLaK2XuWlfid91M3ROdcM=
Received: from HE1PR0701MB2746.eurprd07.prod.outlook.com (10.168.185.17) by HE1PR0701MB2410.eurprd07.prod.outlook.com (10.168.128.142) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1750.11; Fri, 22 Mar 2019 08:25:03 +0000
Received: from HE1PR0701MB2746.eurprd07.prod.outlook.com ([fe80::2489:87b6:bfd8:727d]) by HE1PR0701MB2746.eurprd07.prod.outlook.com ([fe80::2489:87b6:bfd8:727d%6]) with mapi id 15.20.1730.013; Fri, 22 Mar 2019 08:25:03 +0000
From: Francesca Palombini <francesca.palombini@ericsson.com>
To: Carsten Bormann <cabo@tzi.org>
CC: "core@ietf.org" <core@ietf.org>, Ace Wg <ace@ietf.org>
Thread-Topic: [core] Pub Sub and multicast
Thread-Index: AQHU3/siSpHHSsIZz0arCk9g1aR/4qYWP2OAgAEi6IA=
Date: Fri, 22 Mar 2019 08:25:03 +0000
Message-ID: <CB750F65-E8AA-43C2-99D2-C5171D8EB1CD@ericsson.com>
References: <1CA68BFD-B585-4CB0-9303-7E2A6FC2B005@ericsson.com> <2A2E572D-D00C-443B-B42D-CC6C9500474D@tzi.org>
In-Reply-To: <2A2E572D-D00C-443B-B42D-CC6C9500474D@tzi.org>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=francesca.palombini@ericsson.com;
x-originating-ip: [158.174.219.143]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 30ddee02-f23c-436a-782f-08d6ae9fe242
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(5600127)(711020)(4605104)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7153060)(7193020); SRVR:HE1PR0701MB2410;
x-ms-traffictypediagnostic: HE1PR0701MB2410:
x-microsoft-antispam-prvs: <HE1PR0701MB2410F5B766A1233FA9536E0798430@HE1PR0701MB2410.eurprd07.prod.outlook.com>
x-forefront-prvs: 09840A4839
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(136003)(366004)(39860400002)(346002)(396003)(376002)(189003)(199004)(8676002)(99286004)(44832011)(4744005)(68736007)(446003)(76176011)(14454004)(256004)(229853002)(66066001)(14444005)(3846002)(6116002)(6916009)(97736004)(26005)(11346002)(186003)(6246003)(4326008)(6512007)(102836004)(53936002)(71190400001)(71200400001)(36756003)(54906003)(316002)(81166006)(8936002)(82746002)(81156014)(83716004)(486006)(25786009)(105586002)(106356001)(2616005)(476003)(5660300002)(33656002)(305945005)(6486002)(7736002)(6506007)(86362001)(478600001)(2906002)(6436002); DIR:OUT; SFP:1101; SCL:1; SRVR:HE1PR0701MB2410; H:HE1PR0701MB2746.eurprd07.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: wraHTak2RcD4Bqy1vNraA7O2aqleaZNdysgLYWGAnDjgvttSpEg9ASvaFmVIWPRQhEh4IHjO95HEMGoux7M0amRLOEOeBIv/JN53jTXJnrdQ+1ttbXFMy3kbGkxLvqfNm2KVGhkhz1BN2eTjt0pD0fcWaUEiluENtijiash0tA7MtoswcgFcAdHjdEDxmXl+/ufsEUQRvvmeWzMJfM66FgExoLHpw5GXfLbXPiRq0ku7HF4DhzQDk3Zxo5WpsigQahT04vgostpSxLGBBrcTgGo/1037JgXnzMq+RYGfLzM8p5Is8naIThXANdZF0O9lk6+4xAaFHjGxHoOupFduVD5BcMrOOeQ144dCpzioxPAI1D1RvQW9TEkY8c2ncLrE79KPJWrHTbsLDDHIliz0gKryt0einhe52aYzdcXlUFo=
Content-Type: text/plain; charset="utf-8"
Content-ID: <BEF755C4F80BC34385CB641AD0812884@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 30ddee02-f23c-436a-782f-08d6ae9fe242
X-MS-Exchange-CrossTenant-originalarrivaltime: 22 Mar 2019 08:25:03.6842 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0701MB2410
X-OriginatorOrg: ericsson.com
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFprCKsWRmVeSWpSXmKPExsUyM2J7le7D2VNiDPpmq1p8/9bDbHFkyl1W i31v1zM7MHssWfKTyWPaoswApigum5TUnMyy1CJ9uwSujFXfgwuecFU0nXFrYDzA1cXIySEh YCIxo2c7YxcjF4eQwBFGia1n/7FCON8YJc6v/sYC5/Qem8oO4Sxhkjiz/DxYhkVgArPE4wen oDIzmCT2rDvMBuE8Y5RYu7ePEWQNm4CNxIWH71lBbBEBJYkLF9ewgdjMAlYS3x6BdHNyCAto Sny+spUFokZLYuGxHWwQtpVE//YzYDUsAqoSPy8vA4vzCthLfFm8HGymkECBxJ87f8B6OQWs JVb/3MUEYjMKyEp8aVzNDLFLXOLWk/lMEG8LSCzZc54ZwhaVePn4HytEfbLEldt97BBxZYn3 F04zQtiyEpfmd0PZvhKbP10Fe19C4DajxMpTO9kgEjoSu/qPQTXnS1y5fxMqLiPRdHAGK4T9 nFXi4TIhiKNTJZavbWWcwKg3C8l9sxg5gGxNifW79CHCHhLXNx1ng7AVJaZ0P2SfBfa+oMTJ mU9YFjCyrmIULU4tLs5NNzLSSy3KTC4uzs/Ty0st2cQITCsHt/y22sF48LnjIUYBDkYlHl7v mikxQqyJZcWVuYcYJTiYlUR4d0VPjhHiTUmsrEotyo8vKs1JLT7EKM3BoiTO+0dIMEZIID2x JDU7NbUgtQgmy8TBKdXAWHkk9kStzq4FO7miG/fkiEzw3+HKkPjBuDz9osO3EpWnStr3Qztf /vgiu3DNBI+ZH/vKyrUWB0W1erhvDHtXmKVwddfP1FKR/Rfu+kh/W6b88WLurBdx+9Zuvf1K +WEK/4nLm+V/rH/fuPtEqXJTKecV7tVnT61L/1d/fILCG4HTV5wulP599laJpTgj0VCLuag4 EQDatnz8JwMAAA==
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/A9FTbdFnbicy6LkoozyFWzAGUfg>
Subject: Re: [Ace] [core] Pub Sub and multicast
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Mar 2019 08:25:09 -0000
Hi Carsten, Yes, the phrasing is not good on that slide... If you notice, the "proposals" afterward point to a general "DoS protection mechanism". How that is done really depends on the tools available, for example the broker might only send notifications to subscribers that have been added to an OSCORE group, but echo is definitely another way of doing that. Thanks, Francesca On 21/03/2019, 17:04, "Carsten Bormann" <cabo@tzi.org> wrote: I’m certainly interested. Not sure I understand “ • Additionally, the Subscriber must be authorized to subscribe, otherwise an attacker could DoS external nodes that do not want to receive the publications”. Whether the attacker is authorized to subscribe and whether the actual notification receiver is interested is kind of orthogonal. Generally, we’d need a way to prove address ownership for setting up observation interest. The Echo option can be used for that… Grüße, Carsten
- [Ace] Pub Sub and multicast Francesca Palombini
- Re: [Ace] [core] Pub Sub and multicast Carsten Bormann
- Re: [Ace] [core] Pub Sub and multicast Francesca Palombini