Re: [alto] Secdir last call review of draft-ietf-alto-cost-calendar-17
Mirja Kuehlewind <ietf@kuehlewind.net> Mon, 02 March 2020 18:22 UTC
Return-Path: <ietf@kuehlewind.net>
X-Original-To: alto@ietfa.amsl.com
Delivered-To: alto@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 41CBD3A0EAD; Mon, 2 Mar 2020 10:22:08 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mZ39O2iHBrsu; Mon, 2 Mar 2020 10:22:06 -0800 (PST)
Received: from wp513.webpack.hosteurope.de (wp513.webpack.hosteurope.de [IPv6:2a01:488:42:1000:50ed:8223::]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 917843A0EA9; Mon, 2 Mar 2020 10:22:06 -0800 (PST)
Received: from p200300dee7239a00fcc74dc47cb342f6.dip0.t-ipconnect.de ([2003:de:e723:9a00:fcc7:4dc4:7cb3:42f6]); authenticated by wp513.webpack.hosteurope.de running ExIM with esmtpsa (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) id 1j8phc-0003KL-VG; Mon, 02 Mar 2020 19:22:04 +0100
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\))
From: Mirja Kuehlewind <ietf@kuehlewind.net>
In-Reply-To: <CANUuoLp1Zf_jF8ZXtrV_TWyjLpESpqOpwAoAYTx+OJfxvzZ48A@mail.gmail.com>
Date: Mon, 02 Mar 2020 19:22:04 +0100
Cc: Vijay Gurbani <vijay.gurbani@gmail.com>, Brian Weis <bew.stds@gmail.com>, IETF ALTO <alto@ietf.org>, draft-ietf-alto-cost-calendar.all@ietf.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <013AF6A9-3CBF-411B-963C-D5BE12987A5A@kuehlewind.net>
References: <158261019978.24286.6282703976329096776@ietfa.amsl.com> <CANUuoLp8shxPbW7TYAWPZML5tZ3nhEfsyzfq-81eX+YGufReTQ@mail.gmail.com> <CAMMTW_KwtuoE0=j3ZDQxE9C2L-xaWEpZojOu1TFrMJDEE2t_jw@mail.gmail.com> <CANUuoLp1Zf_jF8ZXtrV_TWyjLpESpqOpwAoAYTx+OJfxvzZ48A@mail.gmail.com>
To: "Y. Richard Yang" <yry@cs.yale.edu>
X-Mailer: Apple Mail (2.3445.104.11)
X-bounce-key: webpack.hosteurope.de;ietf@kuehlewind.net;1583173326;91df44ab;
X-HE-SMSGID: 1j8phc-0003KL-VG
Archived-At: <https://mailarchive.ietf.org/arch/msg/alto/2IJ9ln2tWl32GwBhqdP8ZURtji4>
Subject: Re: [alto] Secdir last call review of draft-ietf-alto-cost-calendar-17
X-BeenThere: alto@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Application-Layer Traffic Optimization \(alto\) WG mailing list" <alto.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/alto>, <mailto:alto-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/alto/>
List-Post: <mailto:alto@ietf.org>
List-Help: <mailto:alto-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/alto>, <mailto:alto-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Mar 2020 18:22:08 -0000
If these stay the only changes, we can add them as RFC editor notes without the need to upload a new version. Mirja > On 2. Mar 2020, at 19:12, Y. Richard Yang <yry@cs.yale.edu> wrote: > > Thanks a lot, Vijay! The edit looks good. > > We will commit the edit when we upload a new version on Thursday. > Richard > > On Mon, Mar 2, 2020 at 10:02 AM Vijay Gurbani <vijay.gurbani@gmail.com> wrote: > Dear Richard: I will suggest a couple of minor modifications: > > New paragraph: > > The operator should be should be cognizant that the preceding mechanisms > do not address all security risks. In particular, they will not help in > the case of “malicious clients” possessing valid credentials to > authenticate. The threat here can be that legitimate clients have > become subverted by an attacker and are now ‘bots’ being asked to > participate in a DDoS attack. The Calendar information would be valuable > information for when to persecute a DDoS attack. A mechanism such as > a monitoring system that detects abnormal behaviors may still be needed." > > Suggested changes: > The operator should be should be cognizant that the preceding mechanisms > do not address all security risks. In particular, they will not help in > the case of “malicious clients” possessing valid authentication credentials. > The threat here is that legitimate clients have become subverted by an attacker > and are now ‘bots’ being asked to participate in a DDoS attack. The Calendar > information now becomes valuable in knowing exactly when to perpetrate a DDoS > attack. A mechanism such as a monitoring system that detects abnormal > behaviors may still be needed. > > Cheers, > > - vijay > > [ Trimmed the Cc list to avoid email explosion on a minor change. ] > > > > > -- > -- > ===================================== > | Y. Richard Yang <yry@cs.yale.edu> | > | Professor of Computer Science | > | http://www.cs.yale.edu/~yry/ | > =====================================
- [alto] Secdir last call review of draft-ietf-alto… Brian Weis via Datatracker
- Re: [alto] Secdir last call review of draft-ietf-… Y. Richard Yang
- Re: [alto] Secdir last call review of draft-ietf-… Brian Weis
- Re: [alto] Secdir last call review of draft-ietf-… Y. Richard Yang
- Re: [alto] Secdir last call review of draft-ietf-… Vijay Gurbani
- Re: [alto] Secdir last call review of draft-ietf-… Y. Richard Yang
- Re: [alto] Secdir last call review of draft-ietf-… Mirja Kuehlewind