IETF Logo Mail Archive

Re: [Anima] FW: New Version Notification for draft-mohammed-anima-voucher-security-profile-00.txt

"Srihari Raghavan (srihari)" <srihari@cisco.com> Tue, 30 May 2023 16:15 UTC

Return-Path: <srihari@cisco.com>
X-Original-To: anima@ietfa.amsl.com
Delivered-To: anima@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3DE1EC15109F for <anima@ietfa.amsl.com>; Tue, 30 May 2023 09:15:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.595
X-Spam-Level:
X-Spam-Status: No, score=-14.595 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b="GnO3xhd4"; dkim=pass (1024-bit key) header.d=cisco.com header.b="jcyw6T5r"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vb7H6_-d4Qvg for <anima@ietfa.amsl.com>; Tue, 30 May 2023 09:15:23 -0700 (PDT)
Received: from rcdn-iport-2.cisco.com (rcdn-iport-2.cisco.com [173.37.86.73]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C000EC151990 for <anima@ietf.org>; Tue, 30 May 2023 09:15:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2460; q=dns/txt; s=iport; t=1685463322; x=1686672922; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=tlnN7KBITqzqZ4h+JBnEwSu1VdoTSgzi1k7DiN71owk=; b=GnO3xhd4GrDolQgQJ3jkb4rhtajT3hch/x5mhCA7NH0rYgdlrpz7ByB8 5rQX0CI3xk7wictNu3+GpkTX8tw22FOY7tnDXpoZb1GdaLzUwXq5dyrbq A1+GSMVXqPO6DehBirO4MOexbUI3+EHj1qp/v89uyBz59nfy6m3hCPIhO s=;
X-IPAS-Result: A0ABAACyIHZkmJ1dJa1aGgEBAQEBAQEBAQEDAQEBARIBAQEBAgIBAQEBQCWBFgUBAQEBCwGBXFJzAlg9R4RRg0+ETokgA51ngSUDQhQPAQEBDQEBOwkEAQGCEoJ0AhaFRwIlNAkOAQICAgEBAQEDAgMBAQEBAQEDAQEFAQEBAgEHBBQBAQEBAQEBAR4ZBQ4QJ4VoDYYFAQEBAxIREQwBATUCAQ8CAQgOCgICIwMCAgIwFAEQAgQOBSKCXAGCXAMBEKMBAYE/AookeoEygQGCCAEBBgQFnyYJgRUtAYk3iCYnG4INgRUnHIJoPoIEXgICgRhGFYNGOYIMIo4/jSuBL3CBIYEnB3sCCQIRQSaBDghVEYFlAwxAAg1VCwtlgSOCWQICESsTDQcFSHwOAREDBwQCgQcQLwcEMh8JBgkYGRgnBlYHLSQJExVCBINsAwqBI0E3AxkrHUADC3A9NRQfBiYBHgIqAYFYBC+BUygknEeDAFoOLyOBGjc7IZZmmReUUAqECKEZBC+Df5NXkRhimA6jBIUFAgQCBAUCDgEHgWM6gVtwFWUBgjwJSRkPjiAZHoJpVI95QzICOQIBBgEKAQEDCYhuLYIrAQE
IronPort-PHdr: A9a23:XHHr+RYpnMJ6ur/yx6j3S4L/LTDihN3EVzX9orI9gL5IN6O78IunZ grU5O5mixnCWoCIo/5Hiu+Dq6n7QiRA+peOtnkebYZBHwEIk8QYngEsQYaFBET3IeSsbnkSF 8VZX1gj9Ha+YgBOAMirX1TJuTWp6CIKXBD2NA57POPwT5XIjsS+zeGa8JzIaAIOjz24Mvt+K RysplDJv9INyct6f78swwHApGdJfekeyWJzcFSUmRu9rsvl9594+CMWsPUkn/M=
IronPort-Data: A9a23:XVMqN6+KMgSN45aIVZ3KDrUD436TJUtcMsCJ2f8bNWPcYEJGY0x3z GBLWmjUOfmJNDD8et5+Pt6x/UtV65Hcmt9qHQo4pSpEQiMRo6IpJzg2wmQcns+2BpeeJK6yx 5xGMrEsFOhtEjmE4E3F3oHJ9RGQ74nQLlbHILCCYngZqTNMEn970ko+wLZh2OaEvPDga++zk YKqyyHgEAfNNw5cagr4PIra9XuDFNyr0N8plgRWicJj5TcypFFJZH4rHpxdGlOjKmVi8kFWc M6YpF2x1juxEx7AkbpJmJ6jGqEBaua60QRjFhO6VoD66iWuqBDe3Y5gNfYCZ1xrjgy7jsle4 dtiu5fsGRgQa/ikdOQ1C3G0EglkNqFAvbTAO3X674qYzlbNdD3nxPAG4EMeZNJDvL0oRzAVs 6VFd1jhbTjb7w6y6KmhS+llnMULJ8jwN4RZsXZlpd3cJah7Gc6dHPybjTNe9AYpvZhPDan0X eo2bBttSE/RWTZmN25CXfrSm8/x1iWgLFW0smm9rKw25mH7zQFt3v7qKtW9RzCRbd9ekkDdr WXc8iGnRBobL9eYjzGC9xpAm9MjgwugWY4MGqaE88dYkUS872I8BhZKBUSC9KzRZlGFZ/pTL Ekd+ywLpKc09VC2QtSVY/FeiCPY1vL7c4cKe9DW+D1h2YKPvFnEXjlsoippLY155JVvFFTGw 3fQx4uxbQGDpoF5Xp50y1t5hSm5NS5QJmgYaGpaCwAE+NLk5oo0i3ojr+qP8obr17UZ+hmpk 1hmSRTSYZ1I3abnMI3gozj6b8qE/MShc+LMzly/spiZxg14fpW5QIej9ELW6/1NRK7AEAnc5 yhZw5PFsbhUZX1oqMBraLhddF1Oz6vaWAAwfXY0d3Xc3233oiX6Ldw4DM9WfR8zaq7ohgMFk GeK6V8Ou/e/zVOhbLR8ZMqqGt82wK37fekJpdiKBueilqNZLVfdlAk3PBb49zm0zCAEz/plU b/FKpnEMJrvIfk9pNZAb71DgeZDK+FX7T67eK0XODz8iObPOC7MGeZfWLZMB8hghJ65TMzu2 483H+OByg5UV6v1ZSy/zGLZBQliwaQTbXwul/FqSw==
IronPort-HdrOrdr: A9a23:jB1jk6l2exYggs3rq4Y4L6/hBiDpDfOIimdD5ihNYBxZY6Wkfp +V8sjzhCWatN9OYh0dcIi7SdW9qBPnn6Kc4eEqTNOftJGPghrlEGgQ1/qc/9SGIVywygc979 YsT0EaMrzN5DdB/L7HCWWDYrQdKZy8gd2VbITlvjlQpGNRGtpdBm5CY27xcjwUeOAFP+tCKH P23Lshm9PUQwVvUi3NPAhiYwGsnayvqHvhW3M7Li9izDPLoSKj6bb8HRTd9AwZSSlzzbAr9n WAuxDl54242svLiiP05iv21dB7idHhwtxMCIinkc4OMAjhjQ6uecBIR6CChjYou+uigWxa0+ Uk4i1Qffib2UmhOl1dkiGdnDUIFwxerUMK/GXoxEcLZ/aJHQ7SRfAx3b6xOSGplXbI9OsMoZ 6jmVjp9qa+yXj77X7ADx+ibWAwqqL/y0BS4dI7njhRV5ATZ6RWqpFa9ERJEI0YFCa/84w/Fv JyZfusrMq+XGnqGUwxhFMfieCETzA2BFOLU0ICssua33xfm2141VIRwIgakm0b/JwwRpFY76 CcW54Y3o1mX4sTd+ZwFe0BScy4BijERg/NKnubJRDiGLscM3zAppbr6PE+5f2sepYP0Jwu8a 6xG29wpCo3YQbjGMeO1JpE/lTER3i8Ry3kzoVE651wqtTHNc3W2O24OSQTeueb0oAi65fgKo WO0bptco3eEVc=
X-Talos-CUID: 9a23:Kkr3z2CA9O+TVfz6E3Jm+FAaAfwgS0/M1Vj5LWC2Ajo5V4TAHA==
X-Talos-MUID: 9a23:pjq97QzWjhGuF3WDzQb4ocm0pUiaqJW3MxgMgcosgemrMA1yH2yMth+eT7Zyfw==
X-IronPort-Anti-Spam-Filtered: true
Received: from rcdn-core-6.cisco.com ([173.37.93.157]) by rcdn-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 30 May 2023 16:15:20 +0000
Received: from rcdn-opgw-2.cisco.com (rcdn-opgw-2.cisco.com [72.163.7.163]) by rcdn-core-6.cisco.com (8.15.2/8.15.2) with ESMTPS id 34UGFKov029942 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK) for <anima@ietf.org>; Tue, 30 May 2023 16:15:20 GMT
Authentication-Results: rcdn-opgw-2.cisco.com; dkim=pass (signature verified) header.i=@cisco.com; spf=Pass smtp.mailfrom=srihari@cisco.com; dmarc=pass (p=quarantine dis=none) d=cisco.com
X-IronPort-AV: E=Sophos;i="6.00,204,1681171200"; d="scan'";a="2156668"
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=LRMSah1PJWTR6VP/t5wvjnMs8QPBG6vSVBrrS7w6HrvsQYfXe8hIwDTuqLkNAYl7sph/W9w3jHvMJXpsWBtzVLdOyqUlATw4fCRJI6zXYnQsW2UdE2Hc8x1pXBj5HgnyLw2MEk+QRHuJewLqCzLzQGWfQXUhRfua1fSzjRlDCQffcE/4SGL8XKVaM/m8uKUOMhtHcnkhXJuz0ZSdxYm8yXr9lMUUli39un+b8vrfDiKMzVpGy2Ogi8xHGIXEytLFRgh8uDwh7UzyNk+TeXHMJTj/3djC+5rzBoQqouyYzDvh0xJ8ezvJNg1iwCYt4AjDrbjGP5Pz79f6qRg4x84LeA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=tlnN7KBITqzqZ4h+JBnEwSu1VdoTSgzi1k7DiN71owk=; b=KOSJijMoMK93/2vf8sLmLmilnmt2sBUiN6CoPoczyNKdMbcvuOhq2y9WjEvgDl9vYSEcEg8rfl7gW0Yvt8zL+SLw4KgbQWUiaOkhq+5oR6J53xm1hCAdeOu7yzxuWuQyfGYhsPE2sQK5j8Ch/BGSJx56ujxHrhGHYDkPDCfTKl/5vrkVhBT4w2QY9IFvrC8sAih21hrfkBpRpC2OE/sv7mWmRk8GEhpP8xNCcdSlTqOhBUukxVha0LzuYQzVwL+dE9s3GpIuyg87hacsVRRJuaMEcZ96nhKwoCnI07nTVKUqghbXc8IstiAf/JrfknKz+C1vtYj/uy/CyfQ9zh597w==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=tlnN7KBITqzqZ4h+JBnEwSu1VdoTSgzi1k7DiN71owk=; b=jcyw6T5rmEa3aEarGg96zQnykdAIi03IYfLdd5Tm7YHafHBYDFedOcitpGuHMvqg6vj3xky8eASImLu8OFd+NMgqwxDR6RMLuYqyNDei1QEz/XjFWuEjrKebsc2HeGmW2tbtm/Hi0nWVIp97jCCLcSnggZ1Fr3TAAK0M+OARP38=
Received: from BYAPR11MB3815.namprd11.prod.outlook.com (2603:10b6:a03:fa::27) by PH0PR11MB5190.namprd11.prod.outlook.com (2603:10b6:510:3c::24) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6433.23; Tue, 30 May 2023 16:15:19 +0000
Received: from BYAPR11MB3815.namprd11.prod.outlook.com ([fe80::3d94:58ca:9930:e225]) by BYAPR11MB3815.namprd11.prod.outlook.com ([fe80::3d94:58ca:9930:e225%7]) with mapi id 15.20.6433.022; Tue, 30 May 2023 16:15:18 +0000
From: "Srihari Raghavan (srihari)" <srihari@cisco.com>
To: Michael Richardson <mcr@sandelman.ca>
CC: "anima@ietf.org" <anima@ietf.org>, "jabir Mohammed (jamohamm)" <jamohamm@cisco.com>, "Reda Haddad (rehaddad)" <rehaddad@cisco.com>, "Sandesh Rao (sandeshr)" <sandeshr@cisco.com>
Thread-Topic: [Anima] FW: New Version Notification for draft-mohammed-anima-voucher-security-profile-00.txt
Thread-Index: AQHZktDn1f0sjF4tvUacYT89CYY8ja9y3Y4AgAAbeICAAGFjgA==
Date: Tue, 30 May 2023 16:15:18 +0000
Message-ID: <A7BFB9F8-132C-4E10-92F2-C48AE8B9F17C@cisco.com>
References: <168543538755.57544.11025538238647976477@ietfa.amsl.com> <78D5263E-C7B4-40A8-91E3-949B78DD801C@cisco.com> <3424246.1685462203@dyas>
In-Reply-To: <3424246.1685462203@dyas>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.73.23052000
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: BYAPR11MB3815:EE_|PH0PR11MB5190:EE_
x-ms-office365-filtering-correlation-id: 4786a699-4a81-4dae-089c-08db61290f98
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BYAPR11MB3815.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230028)(136003)(376002)(396003)(39860400002)(366004)(346002)(451199021)(966005)(186003)(6506007)(26005)(6512007)(41300700001)(38100700002)(2616005)(107886003)(83380400001)(6486002)(54906003)(478600001)(71200400001)(66446008)(66476007)(66556008)(64756008)(91956017)(6916009)(76116006)(4326008)(66946007)(122000001)(316002)(8676002)(5660300002)(2906002)(38070700005)(15650500001)(86362001)(33656002)(8936002)(36756003)(45980500001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
Content-ID: <21AA2731DC41E345A79CC2767617C961@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: cisco.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BYAPR11MB3815.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 4786a699-4a81-4dae-089c-08db61290f98
X-MS-Exchange-CrossTenant-originalarrivaltime: 30 May 2023 16:15:18.6213 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: AN1Yr72JQCQquSAhrsiIa1563xoGdHN0ojWBYs9F2kyonadeejCRoTvRT9RmuG3dDEkRY+Gl/2jMKXCwnwMDvw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PH0PR11MB5190
X-Outbound-SMTP-Client: 72.163.7.163, rcdn-opgw-2.cisco.com
X-Outbound-Node: rcdn-core-6.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima/YuV8QSTaL78AE6x5u6Kfz7ncGgw>
Subject: Re: [Anima] FW: New Version Notification for draft-mohammed-anima-voucher-security-profile-00.txt
X-BeenThere: anima@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/anima>, <mailto:anima-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima/>
List-Post: <mailto:anima@ietf.org>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/anima>, <mailto:anima-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 May 2023 16:15:27 -0000

Hi Michael

Thank you for your time.

Agreed that MASA is the signing authority and the draft is meant to convey that the owner can influence the choice by way of parameterized inputs to the MASA APIs.  So, owner can be presented with a 'security profile selector' input via the MASA external APIs and when the owner provides the PDC and the selector input values, MASA can then go ahead and create the voucher with appropriate security profile settings (after verification and validation) for the device.

Hope it clarifies and I can modify the draft text to better convey the same.

Thanks
Srihari

On 30/05/23, 9:35 PM, "Michael Richardson" <mcr@sandelman.ca <mailto:mcr@sandelman.ca>> wrote:




Hi, I'll read your I-D, but:


Srihari Raghavan \(srihari\) <srihari=40cisco.com@dmarc.ietf.org <mailto:40cisco.com@dmarc.ietf.org>> wrote:
> 2. This allows the owner to change and
> customize the security posture of the device dynamically and securely
> and under scale. 3. This lets the owner to selectively enable or
> disable each of the underlying security parameters that make up the
> security posture of the device.


Hi, RFC8366 Vouchers are signed by the MASA, not the owner, so this doesn't
follow.


We do desperately need a configuration backup/restore mechanism that can be
audited and trusted, and this does need to be wrapped up into onboarding, but
I don't think it can be done WITHIN the voucher, which is what I'm guessing
you have done.


--
] Never tell me the odds! | ipv6 mesh networks [
] Michael Richardson, Sandelman Software Works | network architect [
] mcr@sandelman.ca <mailto:mcr@sandelman.ca> http://www.sandelman.ca/ <http://www.sandelman.ca/&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;>| ruby on rails [

v2.23.0 | Report a Bug | By Email