Re: [Ace] [core] Pub Sub and multicast

Carsten Bormann <cabo@tzi.org> Thu, 21 March 2019 16:04 UTC

Return-Path: <cabo@tzi.org>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C01E713143A; Thu, 21 Mar 2019 09:04:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ms13qNNbqvVE; Thu, 21 Mar 2019 09:04:18 -0700 (PDT)
Received: from smtp.uni-bremen.de (gabriel-vm-2.zfn.uni-bremen.de [134.102.50.17]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A395B131371; Thu, 21 Mar 2019 09:03:54 -0700 (PDT)
Received: from [10.0.0.216] (unknown [82.202.112.231]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.uni-bremen.de (Postfix) with ESMTPSA id 44QBRX2XCJzycr; Thu, 21 Mar 2019 17:03:52 +0100 (CET)
Content-Type: text/plain; charset=utf-8
Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\))
From: Carsten Bormann <cabo@tzi.org>
In-Reply-To: <1CA68BFD-B585-4CB0-9303-7E2A6FC2B005@ericsson.com>
Date: Thu, 21 Mar 2019 17:03:51 +0100
Cc: "core@ietf.org" <core@ietf.org>, Ace Wg <ace@ietf.org>
X-Mao-Original-Outgoing-Id: 574877029.323092-1268c0c3c97ca6dc1872f3924fef50d4
Content-Transfer-Encoding: quoted-printable
Message-Id: <2A2E572D-D00C-443B-B42D-CC6C9500474D@tzi.org>
References: <1CA68BFD-B585-4CB0-9303-7E2A6FC2B005@ericsson.com>
To: Francesca Palombini <francesca.palombini@ericsson.com>
X-Mailer: Apple Mail (2.3445.9.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/hvwpekyWPO4pG2hozpInBjTJw8A>
Subject: Re: [Ace] [core] Pub Sub and multicast
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Mar 2019 16:04:25 -0000

I’m certainly interested.

Not sure I understand “	• Additionally, the Subscriber must be authorized to subscribe, otherwise an attacker could DoS external nodes that do not want to receive the publications”.  Whether the attacker is authorized to subscribe and whether the actual notification receiver is interested is kind of orthogonal.

Generally, we’d need a way to prove address ownership for setting up observation interest.  The Echo option can be used for that…

Grüße, Carsten