IETF Logo Mail Archive

Re: [Ace] Group Communication Security Disagreements

Eliot Lear <lear@cisco.com> Tue, 13 September 2016 09:34 UTC

Return-Path: <lear@cisco.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5E2A812B282 for <ace@ietfa.amsl.com>; Tue, 13 Sep 2016 02:34:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -16.029
X-Spam-Level:
X-Spam-Status: No, score=-16.029 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-1.508, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JsBriFL-MQ-g for <ace@ietfa.amsl.com>; Tue, 13 Sep 2016 02:34:26 -0700 (PDT)
Received: from aer-iport-1.cisco.com (aer-iport-1.cisco.com [173.38.203.51]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 369E812B277 for <ace@ietf.org>; Tue, 13 Sep 2016 02:34:26 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=6968; q=dns/txt; s=iport; t=1473759266; x=1474968866; h=subject:to:references:from:message-id:date:mime-version: in-reply-to; bh=wk/O7LYPivBQxOUF3InbmMQo9g3C0gP/k0Ln0I+vc2w=; b=iOWFqq8w7VtK/4qTFBbPZByTEnA0VeCR6cAUesfASJObCApzb0oqCMsN /f9fiZap53tLSMvyIP8Hd5rJZ7Py0wFhu67Glv0N5SWybhO5LU8DCJSpJ fijEXi/BTXiixzbY1JVvs28UcSSU+NHjbaF3evoeFQMeaNdOBrOPxko6f 8=;
X-Files: signature.asc : 481
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0BoAgCjx9dX/xbLJq1dGQEBAQEBAQEBAQEBBwEBAQEBgzoBAQEBAXUqUo0zphGFDYIDGQEKhXoCggUUAQIBAQEBAQEBXieEYgEBBAEBASAkJxsLBBQqAgInMAYBDAYCAQGIRg6xVYR9hzwBAQEBAQEBAQEBAQEBAQEBAQEBAQEOCQWIKYJWh0KCWgWUE4VQg0CBdYoXiWGGAYxYg3seNoReOjSHLwEBAQ
X-IronPort-AV: E=Sophos;i="5.30,328,1470700800"; d="asc'?scan'208,217";a="688181919"
Received: from aer-iport-nat.cisco.com (HELO aer-core-1.cisco.com) ([173.38.203.22]) by aer-iport-1.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 13 Sep 2016 09:34:23 +0000
Received: from [10.61.252.38] ([10.61.252.38]) by aer-core-1.cisco.com (8.14.5/8.14.5) with ESMTP id u8D9YNwW002284; Tue, 13 Sep 2016 09:34:23 GMT
To: Ludwig Seitz <ludwig@sics.se>, ace@ietf.org
References: <57909032.10809@gmx.net> <6d259c5b-28e3-c748-4590-0c9f942fe343@comcast.net> <378a0359-6b31-a30c-af28-8ea567b06b00@cisco.com> <57963480.2000809@gmx.net> <0d4c6d56-ebb5-2f43-d555-29c336396033@ericsson.com> <15169.1469642303@obiwan.sandelman.ca> <CAHbuEH4u=AF1LSoDq+YfLwt+VX1OOrj54331GuZmyjLswHvNnw@mail.gmail.com> <3271.1469656595@obiwan.sandelman.ca> <32aa7104-70df-80c7-8d6e-537b66716de9@comcast.net> <13663.1469714549@obiwan.sandelman.ca> <9a4153f1-6a96-0ae6-020b-0f0f966aecdf@cisco.com> <95997f84-2715-3287-39d3-45d6ff5f3ea0@comcast.net> <463a5cce-9dd1-5d68-bd97-0f08d0719960@sics.se>
From: Eliot Lear <lear@cisco.com>
Message-ID: <1aa47ac3-46e7-40b4-d7d9-9e4bb051f286@cisco.com>
Date: Tue, 13 Sep 2016 11:34:22 +0200
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:45.0) Gecko/20100101 Thunderbird/45.3.0
MIME-Version: 1.0
In-Reply-To: <463a5cce-9dd1-5d68-bd97-0f08d0719960@sics.se>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="sh9OGWc1C9cdjnXgaCXBe5cUIJ1jNLa5B"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/E8B1YcA3GOFjmLHR-S8x0sRd-nM>
Subject: Re: [Ace] Group Communication Security Disagreements
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 13 Sep 2016 09:34:30 -0000

Hi Ludwig and Mike,

In thinking about this problem, I wonder if the challenge here really is
a matter of layering.  First of all, if we were to do source
authentication, what would that mean?  Would it mean that all messages
were signed?  If so, what sort of format would we be talking about? 
IPSEC-AH?  Higher?  I state this because typically, although by no means
always, we have at least some separation between protocol and content. 
I just wonder where that line would be here.

I agree that source authentication is important, both in terms of group
joins and in terms of message content for all the reasons previously
stated.  I just wonder if we need to specify all of that in this WG, or
if we can state what we think the right answer is above or below.**

Eliot


On 9/12/16 9:32 AM, Ludwig Seitz wrote:
> On 2016-09-09 21:44, Michael StJohns wrote:
>> Hi -
>>
>> It's been over a month since there's been any further discussion on this
>> topic.   Given the record I would suggest a lack of consensus to proceed
>> on basis of two items:  1) A roughly even split on the vocal yays and
>> nays on the subject of symmetric key multicast for control functions and
>> 2) a failure to address the specific concern of "How do you enforceably
>> keep a cheap, unsafe-in-the-broader-internet security mechanism off the
>> broader internet?"
>>
>> Your mileage may vary.
>>
>> Mike
>>
>
> Can we at least agree to work on group communication with source
> authentication?
>
> /Ludwig
>
>
>
>
> _______________________________________________
> Ace mailing list
> Ace@ietf.org
> https://www.ietf.org/mailman/listinfo/ace

v2.35.0 | Report a Bug | By Email | System Status