Re: [alto] Secdir last call review of draft-ietf-alto-cost-calendar-17
Vijay Gurbani <vijay.gurbani@gmail.com> Mon, 02 March 2020 15:02 UTC
Return-Path: <vijay.gurbani@gmail.com>
X-Original-To: alto@ietfa.amsl.com
Delivered-To: alto@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 35CFE3A0859; Mon, 2 Mar 2020 07:02:40 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tOrJ2npvOsTp; Mon, 2 Mar 2020 07:02:39 -0800 (PST)
Received: from mail-ed1-x52d.google.com (mail-ed1-x52d.google.com [IPv6:2a00:1450:4864:20::52d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7A16D3A0857; Mon, 2 Mar 2020 07:02:38 -0800 (PST)
Received: by mail-ed1-x52d.google.com with SMTP id dc19so82370edb.10; Mon, 02 Mar 2020 07:02:38 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=bKEFY6PMfKj/wo0/J+WnY2Tu8XWaOK5EqEeLpxQn3M8=; b=XPzRJAuogjFgEHwwiwWH2fl1sCAeTgv9P/IzABnnnECF7ZSOSpAHHD5iMFHdKSf8R/ H/Po6Sh3hS7WtC6+qEkBx47ziu6Zt+0FYcNBGutX4crZ1aUQT3LpfbXqAXpdGOzNiKlW l4kQYFP3b1gP90UQmQR0A6EtzX7mpyG0rOLE5uxjWP4el4NFkYGyShUAbPmaQmckOoo4 4bGH5b0+67GaKelApKF1R3FxVFXu3p5N8FYVLCyUVVVDl1CfEaA49Td1MwB5njJ9vSk4 sdBQp3Wx4Btg0Lw5v/Hkoo6Idx0V4mdokcrLlW7m6XTQ4dEHLRnhzPCZpvq35UC59BD7 Wtag==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=bKEFY6PMfKj/wo0/J+WnY2Tu8XWaOK5EqEeLpxQn3M8=; b=poCSCx9kb1hrCIdYAvaRdBgw6fVPzGOdVSN7tqHhy8aja6SklZV1V9sfG9wydwuXsC Iy1d2f3wyJ76V2Jd3u2kwUEq7MUoLyqYy0SUwlWIrEkw5fMv/DT+kpjhzsSPllLSIYSC l5T7LAAXavgL8inVfPVhSYsCKTSia+tMarLYrlJ8DZ/wYzl/5J6JRx62K2pm0PVhr1wu mCMeGaEvxTOmUxZ02JGK+ZfZKnNXf0zi9c3h3V4NwQvolz7F0jMOgqDmnJQoSkg7NiGe jhGiVI5YY7v4OM3ZJc0i/vid/+djOL75Pa2UVlJyq59/yRHD6kupF6npFX2iqgygloba azBg==
X-Gm-Message-State: ANhLgQ2Ay+ddHBjgvJ/avqbqPkQnb6zJMuuSxw7yxKKjktHlij31JLPP YBQz/2ISdniroIy925LzKp9kKvu6ZFtiR9AH7hI=
X-Google-Smtp-Source: ADFU+vs9hL8XjkFIQiU6BKOISR8WTlo6pNdvFDpw7vWb0b98GPq6enRALNK00K4kpxzNJDAQ312DsfveMLto0zot3bI=
X-Received: by 2002:aa7:d397:: with SMTP id x23mr4342709edq.190.1583161356852; Mon, 02 Mar 2020 07:02:36 -0800 (PST)
MIME-Version: 1.0
References: <158261019978.24286.6282703976329096776@ietfa.amsl.com> <CANUuoLp8shxPbW7TYAWPZML5tZ3nhEfsyzfq-81eX+YGufReTQ@mail.gmail.com>
In-Reply-To: <CANUuoLp8shxPbW7TYAWPZML5tZ3nhEfsyzfq-81eX+YGufReTQ@mail.gmail.com>
From: Vijay Gurbani <vijay.gurbani@gmail.com>
Date: Mon, 02 Mar 2020 09:02:49 -0600
Message-ID: <CAMMTW_KwtuoE0=j3ZDQxE9C2L-xaWEpZojOu1TFrMJDEE2t_jw@mail.gmail.com>
To: "Y. Richard Yang" <yry@cs.yale.edu>
Cc: Brian Weis <bew.stds@gmail.com>, IETF ALTO <alto@ietf.org>, draft-ietf-alto-cost-calendar.all@ietf.org
Content-Type: multipart/alternative; boundary="0000000000004c21f2059fe07a5a"
Archived-At: <https://mailarchive.ietf.org/arch/msg/alto/5iFCc-_0cu6F7zgzNpCK4rfna0g>
Subject: Re: [alto] Secdir last call review of draft-ietf-alto-cost-calendar-17
X-BeenThere: alto@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Application-Layer Traffic Optimization \(alto\) WG mailing list" <alto.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/alto>, <mailto:alto-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/alto/>
List-Post: <mailto:alto@ietf.org>
List-Help: <mailto:alto-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/alto>, <mailto:alto-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Mar 2020 15:02:40 -0000
Dear Richard: I will suggest a couple of minor modifications: New paragraph: > > The operator should be should be cognizant that the preceding mechanisms > do not address all security risks. In particular, they will not help in > the case of “malicious clients” possessing valid credentials to > authenticate. The threat here can be that legitimate clients have > become subverted by an attacker and are now ‘bots’ being asked to > participate in a DDoS attack. The Calendar information would be valuable > information for when to persecute a DDoS attack. A mechanism such as > a monitoring system that detects abnormal behaviors may still be > needed." > Suggested changes: The operator should be should be cognizant that the preceding mechanisms do not address all security risks. In particular, they will not help in the case of “malicious clients” possessing valid authentication credentials. The threat here is that legitimate clients have become subverted by an attacker and are now ‘bots’ being asked to participate in a DDoS attack. The Calendar information now becomes valuable in knowing exactly when to perpetrate a DDoS attack. A mechanism such as a monitoring system that detects abnormal behaviors may still be needed. Cheers, - vijay [ Trimmed the Cc list to avoid email explosion on a minor change. ]
- [alto] Secdir last call review of draft-ietf-alto… Brian Weis via Datatracker
- Re: [alto] Secdir last call review of draft-ietf-… Y. Richard Yang
- Re: [alto] Secdir last call review of draft-ietf-… Brian Weis
- Re: [alto] Secdir last call review of draft-ietf-… Y. Richard Yang
- Re: [alto] Secdir last call review of draft-ietf-… Vijay Gurbani
- Re: [alto] Secdir last call review of draft-ietf-… Y. Richard Yang
- Re: [alto] Secdir last call review of draft-ietf-… Mirja Kuehlewind