Re: [Anima-signaling] GRASP issue 52: Insecure instance text
Brian E Carpenter <brian.e.carpenter@gmail.com> Tue, 02 August 2016 02:26 UTC
Return-Path: <brian.e.carpenter@gmail.com>
X-Original-To: anima-signaling@ietfa.amsl.com
Delivered-To: anima-signaling@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1])
by ietfa.amsl.com (Postfix) with ESMTP id 877DE12D6A6
for <anima-signaling@ietfa.amsl.com>; Mon, 1 Aug 2016 19:26:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9,
DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1,
FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key)
header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44])
by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id 5sAIVN9NYksa for <anima-signaling@ietfa.amsl.com>;
Mon, 1 Aug 2016 19:26:52 -0700 (PDT)
Received: from mail-pf0-x229.google.com (mail-pf0-x229.google.com
[IPv6:2607:f8b0:400e:c00::229])
(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
(No client certificate requested)
by ietfa.amsl.com (Postfix) with ESMTPS id C324B12D661
for <anima-signaling@ietf.org>; Mon, 1 Aug 2016 19:26:52 -0700 (PDT)
Received: by mail-pf0-x229.google.com with SMTP id p64so61110509pfb.1
for <anima-signaling@ietf.org>; Mon, 01 Aug 2016 19:26:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
h=subject:to:references:cc:from:organization:message-id:date
:user-agent:mime-version:in-reply-to:content-transfer-encoding;
bh=c1dy18CzJFPn2OJoVipO0S7//JH07zM1RmFSbVDTpSY=;
b=RBikoOktlpyRE7mVe63o13IPC+TSMd8deEfqf97qiBsmDQoYKZyf+1+rNtK1NHDE6c
GmcbcqRIY/NpxAvJgdVebQaatkXUPh8Uk7afl2UrzSuOmqAFszUhVQgYE5CyV+x2OhMy
ukjf/BKOf5sdeabcAUFHa5bNHJx3p35o3c2hnP6fqS2M9NQYjSUhDXqSUbk67AMeCcjp
H5fJ27pdT/aL/rdD+Ey4U5m5oauYqy7jtO68hq039IqJfKT6FMVcSClXZ3BezpNA+qZk
2ZkY/GZX7+Jve/S7WbPpEeUwlRENhXGx+BiNxjOIsR4iRN4kWXIKpmsEvUlfKtsEBCYD
hCCg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20130820;
h=x-gm-message-state:subject:to:references:cc:from:organization
:message-id:date:user-agent:mime-version:in-reply-to
:content-transfer-encoding;
bh=c1dy18CzJFPn2OJoVipO0S7//JH07zM1RmFSbVDTpSY=;
b=E9ab97URiRuLFNxwGqo0+vPAwJs63iDGN6l+llDNIYOd72eBT1N3PiQBOy0CNR7ImL
MCreC/4bE9HvbARi0SAs8376Lk6Nt8NAbBortIUpdd3WZAHkYjJpsqIj5/oXczFAY9Fa
r359ryyWs5Wccqro23jb3dREmwvp6l2w0NKOx6E6f67eHNAwmNuM1tnVzA4iUslUSg+s
bi5mSOTrtGl8hoJATlzl6x34Oka64bz5sVedXfhNPUe+Vonu1GSuoIcuviQIW1cKamZN
Z4O/kxfwXvjjITqH6RvzZvHHpjzJX54UYI+hPTwjnZVkSmEEIGo+ZVn2xq4emQxaOKn/
m5HA==
X-Gm-Message-State: AEkoouvQsZx+8cvaYXZ8xoVdl0yIZfgnu8P5jIpiHyBTtFdLjUcXGN0Dm9pg/VmHXv57Og==
X-Received: by 10.98.11.86 with SMTP id t83mr101818537pfi.51.1470104812025;
Mon, 01 Aug 2016 19:26:52 -0700 (PDT)
Received: from ?IPv6:2001:df0:0:2006:c0da:ac17:5f6d:8e76?
([2001:df0:0:2006:c0da:ac17:5f6d:8e76])
by smtp.gmail.com with ESMTPSA id j21sm186267pfj.75.2016.08.01.19.26.49
(version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
Mon, 01 Aug 2016 19:26:51 -0700 (PDT)
To: Toerless Eckert <eckert@cisco.com>
References: <fbc9727c-c4c0-1cd1-b015-382c33a5a90a@gmail.com>
<20160801092907.GV21039@cisco.com>
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
Organization: University of Auckland
Message-ID: <96d3a8f9-eca8-ed02-eff2-a0f586e8bea3@gmail.com>
Date: Tue, 2 Aug 2016 14:26:51 +1200
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101
Thunderbird/45.2.0
MIME-Version: 1.0
In-Reply-To: <20160801092907.GV21039@cisco.com>
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima-signaling/2XwILM-qXR-IMxwA1QreClfOoXQ>
Cc: Anima signaling DT <anima-signaling@ietf.org>
Subject: Re: [Anima-signaling] GRASP issue 52: Insecure instance text
X-BeenThere: anima-signaling@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Mailing list for the signaling design team of the ANIMA WG
<anima-signaling.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/anima-signaling>,
<mailto:anima-signaling-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima-signaling/>
List-Post: <mailto:anima-signaling@ietf.org>
List-Help: <mailto:anima-signaling-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/anima-signaling>,
<mailto:anima-signaling-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 Aug 2016 02:26:54 -0000
> SONN - Secure Only Neighbor Negotiation > For use when negotiating (securely) an ACP channgel: > loopcount=1 only. All messages permitted. Does that really need to be a separate instance? It can be controlled completely via the API. Regards Brian On 01/08/2016 21:29, Toerless Eckert wrote: > Maybe Max has more details, he did take some notes. > >>From my side: > > - Define different "Modes" of GRASP, where each Mode has > specific limitation (or none). Every Instance of GRASP has a particular Mode: > > DULL - Discovery Unsolicited Link Local > > This is the "insecure" mode, aka: Only Unsolicited Link Local Discovery Response > Messages are permitted. Loop Count = 1. No redirects are permitted. > > (i don't think we need to constrain the announcements further to only bootstrap > proxy etc. This should be nicely reuseable for any similar announcements, not > only bootstrap proxy). > > FULL - Instance inside ACP. No restrictions. > > SONN - Secure Only Neighbor Negotiation > For use when negotiating (securely) an ACP channgel: > loopcount=1 only. All messages permitted. > > Cheers > Toerless > > On Mon, Aug 01, 2016 at 09:01:56AM +1200, Brian E Carpenter wrote: >> Hi, >> >> Here's another issue for design team comments. >> >> I have a specific request from the bootstrap team to described in detail >> what is allowed and disallowed in an insecure instance of GRASP. The idea is >> that during bootstrap a separate instance of GRASP will run in its own memory >> space, such that it cannot contaminate the normal secure instance. For example >> it will have its own discovery cache. I will work on the text as soon as >> possible, based on some input from Max Pritikin. Any input welcome. >> >> Regards >> Brian >> >> _______________________________________________ >> Anima-signaling mailing list >> Anima-signaling@ietf.org >> https://www.ietf.org/mailman/listinfo/anima-signaling >
- Re: [Anima-signaling] GRASP issue 52: Insecure in… Max Pritikin (pritikin)
- [Anima-signaling] Fwd: Re: GRASP issue 52: Insecu… Brian E Carpenter
- Re: [Anima-signaling] GRASP issue 52: Insecure in… Brian E Carpenter
- Re: [Anima-signaling] GRASP issue 52: Insecure in… Brian E Carpenter
- Re: [Anima-signaling] GRASP issue 52: Insecure in… Toerless Eckert
- Re: [Anima-signaling] GRASP issue 52: Insecure in… Brian E Carpenter
- Re: [Anima-signaling] GRASP issue 52: Insecure in… Toerless Eckert
- [Anima-signaling] GRASP issue 52: Insecure instan… Brian E Carpenter