Re: [Anima] 2nd WGLC for draft-ietf-anima-constrained-join-proxy-12, ends September 20th 2022
Esko Dijk <esko.dijk@iotconsultancy.nl> Wed, 21 September 2022 10:53 UTC
Return-Path: <esko.dijk@iotconsultancy.nl>
X-Original-To: anima@ietfa.amsl.com
Delivered-To: anima@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E097AC14F73F; Wed, 21 Sep 2022 03:53:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.109
X-Spam-Level:
X-Spam-Status: No, score=-2.109 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=iotconsultancy.nl
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id N34WuZwZCdo7; Wed, 21 Sep 2022 03:52:56 -0700 (PDT)
Received: from EUR02-AM5-obe.outbound.protection.outlook.com (mail-eopbgr00090.outbound.protection.outlook.com [40.107.0.90]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BA91AC14F74B; Wed, 21 Sep 2022 03:52:55 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=MRzipTOMFalcG6X4nGv1LR6Uae9jpo9bJJP9aCF9tvoCbTwFJIEvqaDV9semSZx6Bb2mPdOVvUQGLakyY8s8IRaOrFFF/kjef9NESh5sB4ngU3eLTHCLgSevLg88X6omA2NcQduNpXWMz+Qf+iQiZTR7fCPw9b+omWqvHV1U84sOp/0R8XF8T4wB8En2TfOMT+ZmmAkMicY+NGVnveb5KhMiMZucnFFbQUG6+OyPhn2SGuNBsr6BaxsuW5Gu3/hvOccqz15HRXeFlxt4zOQndXtyEaihbmyZtKjwQKmhnE+6mWBFtmpVcczRlLYazg2opzLrlkwElviSue/4n5NJOA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=jX6TuxiNiatjfMFl9Zys+ZuwIdEBe6EeXdQzFBw+BgU=; b=cUy1owc7TAeRsWdBoFiB7AAHE0Db2PRg1YSkOFFwXNc6cWmFi5bLYLYadpZNU5HUMVbAlVoffUIYgti/A0Ff5DX/EYr9GkDp9JhvLUdOGmMWfO1Hu96ZvDbBdsIDTDn/5T5RVndbs7ttYh04E8OBTQIJdDYY++e603IFCWkDK/RGmnG3QUYTXwehZPJtzdUBU/xv5SKuMjEu+QwRFRBWNYrGwkCdMwivYfYobppjFZtHsROl+HRtyngGchHfaBeMrY+XEaAX7lic5ODs0/ZVHjxyuttVcvwvvqlXkudnpPdNLVCVjPX12IewqqAugt6aIvTdMkCjv6Zh5P24w9G4RA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=iotconsultancy.nl; dmarc=pass action=none header.from=iotconsultancy.nl; dkim=pass header.d=iotconsultancy.nl; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=iotconsultancy.nl; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=jX6TuxiNiatjfMFl9Zys+ZuwIdEBe6EeXdQzFBw+BgU=; b=t9WxldVgHBADCDv/8KCR1tZAk5BCyiT2fOVM6p3ZQVfrakilQ6w/0hR1RAjRwYGpGqbnijw8q3kIXxvmmtmRgc83l3l0fMH/zmgsfe+rt4RJ1AULb7rRs0Jj49OIWKXI+FYoJQsF9qKtRvOPXndA6OKkRUdG3Z6j1uhmWstRYiM=
Received: from DU0P190MB1978.EURP190.PROD.OUTLOOK.COM (2603:10a6:10:3b9::20) by AS8P190MB1885.EURP190.PROD.OUTLOOK.COM (2603:10a6:20b:50b::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5654.16; Wed, 21 Sep 2022 10:52:48 +0000
Received: from DU0P190MB1978.EURP190.PROD.OUTLOOK.COM ([fe80::b036:4614:bf67:fa75]) by DU0P190MB1978.EURP190.PROD.OUTLOOK.COM ([fe80::b036:4614:bf67:fa75%7]) with mapi id 15.20.5632.021; Wed, 21 Sep 2022 10:52:48 +0000
From: Esko Dijk <esko.dijk@iotconsultancy.nl>
To: Michael Richardson <mcr@sandelman.ca>, Anima WG <anima@ietf.org>
CC: "anima-chairs@ietf.org" <anima-chairs@ietf.org>, stokcons <stokcons@bbhmail.nl>
Thread-Topic: [Anima] 2nd WGLC for draft-ietf-anima-constrained-join-proxy-12, ends September 20th 2022
Thread-Index: AQHYwhP3HO7jwtOswEm8kcCpJFFx1a3ov6uwgAEGqwCAAAIXgA==
Date: Wed, 21 Sep 2022 10:52:47 +0000
Message-ID: <DU0P190MB1978AC04BBB22272B360984DFD4F9@DU0P190MB1978.EURP190.PROD.OUTLOOK.COM>
References: <Yxd/oBl0dmbmUI8L@faui48e.informatik.uni-erlangen.de> <DU0P190MB1978F420D478B93CE29F36D3FD4C9@DU0P190MB1978.EURP190.PROD.OUTLOOK.COM> <46723.1663756262@dooku>
In-Reply-To: <46723.1663756262@dooku>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=iotconsultancy.nl;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: DU0P190MB1978:EE_|AS8P190MB1885:EE_
x-ms-office365-filtering-correlation-id: 6b2e93fe-6585-41d1-61b6-08da9bbf6c05
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DU0P190MB1978.EURP190.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230022)(376002)(346002)(366004)(396003)(39830400003)(136003)(451199015)(86362001)(2906002)(33656002)(38100700002)(8936002)(54906003)(5660300002)(52536014)(38070700005)(44832011)(41300700001)(55016003)(186003)(76116006)(110136005)(478600001)(53546011)(6506007)(71200400001)(9686003)(7696005)(316002)(4326008)(66946007)(66476007)(66556008)(66446008)(64756008)(83380400001)(8676002)(122000001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: iotconsultancy.nl
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DU0P190MB1978.EURP190.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 6b2e93fe-6585-41d1-61b6-08da9bbf6c05
X-MS-Exchange-CrossTenant-originalarrivaltime: 21 Sep 2022 10:52:47.9541 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 58bbf628-15d2-46bc-820b-863b6774d44b
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: tWBf95z7PU5FQyCkrJzad9MAVH66Vc8VWciOOVIHtEVgdO+X4fRGy9THLUOqVrgRdRGQ4eRhvuthfY4ar5rpSsm9fKzJYQ3u5Op2HxyCfbE=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS8P190MB1885
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima/cesd3eH4R24-29pypA4I6l91gkE>
Subject: Re: [Anima] 2nd WGLC for draft-ietf-anima-constrained-join-proxy-12, ends September 20th 2022
X-BeenThere: anima@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/anima>, <mailto:anima-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima/>
List-Post: <mailto:anima@ietf.org>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/anima>, <mailto:anima-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 21 Sep 2022 10:53:01 -0000
Thanks, One item I forgot to include which was also on my mind - a security consideration. If an autonomous bootstrap method like BRSKI is left "always-on" in a mesh network, it means that at any time an off-mesh attacker can contact its nearby Join Proxies and flood them with traffic. E.g. using different LL addresses to pretend it is multiple Pledges. This will cause relayed traffic on the mesh, potentially overloading it. * One solution component is clearly rate-limiting of relayed traffic. But, this is not even mentioned in the security considerations. And not in 8995 as far as I can tell. * Another solution component is being able (by an admin) to "turn on" and "turn off" the entire option of BRSKI bootstrapping. This could also be mentioned as a security advice: turn it off when not needed i.e. when the operator knows for sure there are no new Pledges to be bootstrapped. The method of "turning on/off" could be implementation-specific as we don't define any APIs for control of Join Proxies. The intended behavior of any Join Proxy is then as follows: 1. If BRSKI is "on", respond to discovery requests by Pledges as usual and do relay any (DTLS) records they may send to the join-port. 2. If BRSKI is "off" , don't respond to discovery requests by Pledges and don't relay any data sent to the join-port. (Effectively, close it.) Some networks may have a "BRSKI always on" policy because it's needed for their application and for convenience, but for a majority of networks I expect that isn't needed. Maybe such practical security related solutions are already described in other documents e.g. 6TiSCH joining or GRASP documents but unfortunately I didn't read enough of those documents to know this. If so we can also refer to it as security consideration. For a mesh network, avoiding an outsider to be able to "load" the mesh links with random data is especially important. Regards Esko -----Original Message----- From: Michael Richardson <mcr@sandelman.ca> Sent: Wednesday, September 21, 2022 12:31 To: Esko Dijk <esko.dijk@iotconsultancy.nl> Cc: Anima WG <anima@ietf.org>; anima-chairs@ietf.org; stokcons <stokcons@bbhmail.nl> Subject: Re: [Anima] 2nd WGLC for draft-ietf-anima-constrained-join-proxy-12, ends September 20th 2022 Okay, thank you. I'll crunch through your comments on Friday.
- [Anima] 2nd WGLC for draft-ietf-anima-constrained… Toerless Eckert
- Re: [Anima] 2nd WGLC for draft-ietf-anima-constra… Esko Dijk
- Re: [Anima] 2nd WGLC for draft-ietf-anima-constra… Michael Richardson
- Re: [Anima] 2nd WGLC for draft-ietf-anima-constra… Esko Dijk
- Re: [Anima] 2nd WGLC for draft-ietf-anima-constra… Esko Dijk
- Re: [Anima] 2nd WGLC for draft-ietf-anima-constra… Toerless Eckert
- Re: [Anima] 2nd WGLC for draft-ietf-anima-constra… Esko Dijk
- Re: [Anima] 2nd WGLC for draft-ietf-anima-constra… Michael Richardson
- Re: [Anima] 2nd WGLC for draft-ietf-anima-constra… Michael Richardson
- Re: [Anima] 2nd WGLC for draft-ietf-anima-constra… Michael Richardson
- Re: [Anima] 2nd WGLC for draft-ietf-anima-constra… Michael Richardson
- [Anima] ANIMA constrained-join proxy revision to … Michael Richardson
- Re: [Anima] [core] ANIMA constrained-join proxy r… Esko Dijk
- Re: [Anima] [core] ANIMA constrained-join proxy r… Michael Richardson
- Re: [Anima] [core] ANIMA constrained-join proxy r… Esko Dijk
- Re: [Anima] [core] ANIMA constrained-join proxy r… Carsten Bormann
- Re: [Anima] [core] ANIMA constrained-join proxy r… Michael Richardson
- Re: [Anima] [core] ANIMA constrained-join proxy r… Michael Richardson
- Re: [Anima] [core] ANIMA constrained-join proxy r… Carsten Bormann
- Re: [Anima] [core] ANIMA constrained-join proxy r… Toerless Eckert
- Re: [Anima] [core] ANIMA constrained-join proxy r… Carsten Bormann
- Re: [Anima] [core] ANIMA constrained-join proxy r… Esko Dijk
- Re: [Anima] [core] ANIMA constrained-join proxy r… Esko Dijk
- Re: [Anima] [core] ANIMA constrained-join proxy r… Michael Richardson
- Re: [Anima] [core] ANIMA constrained-join proxy r… Esko Dijk
- Re: [Anima] [core] ANIMA constrained-join proxy r… Toerless Eckert
- Re: [Anima] [core] ANIMA constrained-join proxy r… Esko Dijk
- Re: [Anima] [core] ANIMA constrained-join proxy r… Michael Richardson
- Re: [Anima] [core] ANIMA constrained-join proxy r… Toerless Eckert
- Re: [Anima] [core] ANIMA constrained-join proxy r… Brian E Carpenter
- Re: [Anima] [core] ANIMA constrained-join proxy r… Brian E Carpenter
- Re: [Anima] [core] ANIMA constrained-join proxy r… Michael Richardson
- [Anima] constrained-join-proxy registration of BR… Michael Richardson
- Re: [Anima] [core] ANIMA constrained-join proxy r… Michael Richardson
- Re: [Anima] [core] ANIMA constrained-join proxy r… Michael Richardson
- [Anima] constrained-join-proxy registration of BR… Michael Richardson
- Re: [Anima] [core] ANIMA constrained-join proxy r… Esko Dijk
- Re: [Anima] [core] ANIMA constrained-join proxy r… Esko Dijk
- Re: [Anima] constrained-join-proxy registration o… Brian E Carpenter
- Re: [Anima] 2nd WGLC for draft-ietf-anima-constra… Toerless Eckert
- Re: [Anima] 2nd WGLC for draft-ietf-anima-constra… Michael Richardson
- Re: [Anima] 2nd WGLC for draft-ietf-anima-constra… Toerless Eckert
- Re: [Anima] 2nd WGLC for draft-ietf-anima-constra… Michael Richardson
- Re: [Anima] 2nd WGLC for draft-ietf-anima-constra… Esko Dijk