Re: [arch-d] [Model-t] Possible new IAB program on Internet trust model evolution

Joachim Fabini <joachim.fabini@tuwien.ac.at> Fri, 24 January 2020 13:49 UTC

Return-Path: <joachim.fabini@tuwien.ac.at>
X-Original-To: architecture-discuss@ietfa.amsl.com
Delivered-To: architecture-discuss@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E96EC120137; Fri, 24 Jan 2020 05:49:46 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id r6FDF3UiAguD; Fri, 24 Jan 2020 05:49:44 -0800 (PST)
Received: from secgw1.intern.tuwien.ac.at (secgw1.intern.tuwien.ac.at [IPv6:2001:629:1005:30::71]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5418E1200F4; Fri, 24 Jan 2020 05:49:43 -0800 (PST)
Received: from totemomail (localhost [127.0.0.1]) by secgw1.intern.tuwien.ac.at (8.14.7/8.14.7) with ESMTP id 00ODnaWv011233; Fri, 24 Jan 2020 14:49:36 +0100
Received: from localhost ([127.0.0.1]) by totemomail (Totemo SMTP Server) with SMTP ID 719; Fri, 24 Jan 2020 14:49:36 +0100 (CET)
Received: from edge13b.intern.tuwien.ac.at (edge13b.intern.tuwien.ac.at [IPv6:2001:629:1005:30::67]) by secgw1.intern.tuwien.ac.at (8.14.7/8.14.7) with ESMTP id 00ODnZDW011218 (version=TLSv1/SSLv3 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=FAIL); Fri, 24 Jan 2020 14:49:35 +0100
Received: from mbx13c.intern.tuwien.ac.at (2001:629:1005:30::63) by edge13b.intern.tuwien.ac.at (2001:629:1005:30::67) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Fri, 24 Jan 2020 14:49:35 +0100
Received: from [10.0.0.11] (193.154.92.83) by mbx13c.intern.tuwien.ac.at (2001:629:1005:30::63) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Fri, 24 Jan 2020 14:49:35 +0100
To: Jari Arkko <jari.arkko@piuha.net>, <model-t@iab.org>, <architecture-discuss@ietf.org>
References: <E2D709DC-DD01-4946-B2F1-7EE0E101DEF0@piuha.net>
From: Joachim Fabini <joachim.fabini@tuwien.ac.at>
Autocrypt: addr=joachim.fabini@tuwien.ac.at; keydata= xsFNBFzP9YwBEADLSwTOJGpr6+y+UQ2tko4lnJLfcazo3MHJq6w8CoOAeBhgvxHvksx48RpB JOculUcAP+Sr/dAsVJRvbrd3ZVFl5X+5rq5HqZtEER64JkZN3ZWwuZJ2cIPe8UrmPUCCSdDm Q2Ss3jWRYq+5bg9xG9pgRdfXQj4EzocE5+vnq1TEx5skuAK2pmntE29gCO8ICIO0qOtlNMyz UNPyb/wvVR/+8Umj5xO3kJrEjq7NpYCPP+I2nmRmrCVNQ+ruQGjHFbFzLCzeQj/Ln+vHJy3C O5qbBs/8aae2+7g/N642ODgXv78mg6k4r/yA2uCoeqirj9P6d/8qyhdU247oe+96FLwd4ly5 cHjmS5FEBhNsZKB3yPwod8phWwMZhPDro+ttkTRjL9CTmXspLFPlYwDqkuyEVMOHh24toFVI 0QukzYWLrMwY3ae0ni8DM5fcTQaFDWr4rqRcfGRhA66xxT4uUAX20q1VzWBO2fVUr0eB3Hwr FjCS7URAlsPFebuevgt1/pjSbcRk20TXPp//1qwh8GU03C6qy5iHB8coAsCwZec3S92YEdgM obdYgVhLPHOMd89IfldRASAConvQzI8WkiabzkMpL0donUUErNQ9RVFQ1NRoLJYIx2D0CMFN RW01q0xZFEKci+r/S2/YUkhXTXD4cEx4y3A4WCJPi0teSUW8owARAQABzSxKb2FjaGltIEZh YmluaSA8am9hY2hpbS5mYWJpbmlAdHV3aWVuLmFjLmF0PsLBgAQTAQgAKgIbIwUJCWYBgAUL CQgHAgYVCAkKCwIEFgIDAQIeAQIXgAUCXM/2+wIZAQAKCRCbDicB0srp1dEXEACLpHerJzi7 684Ixo6sgwQ0TM/oVV7unXIqFZuuZLMf4r609La++l0BXSmj6LtrIqZVXoFVRwIutEADmaKZ k2kc2zVaKWN/BM4/o8r0db/jOdElv8bbqsui1HYCA1KIKu2nNEMQd1axH0mzBUEFQaIoEPQP mQszQhKHw1ZgAjrsyvU7ZH9aHTboPvLURIAH0CBfgvnm+feFxl/rMBSLu5CJpff9cWA1inKX 1eEexy2tFR80NUSaLauRLC9j9Xe2q+7DLNAT16+5dgRt16bXlkUh4IMpG5k6vpyFu12vSfcB VHJZEKld9APoHoHdjgq7QSeyENfZU+XeAzT/U0fDvF7v392/Fnw7UfVNi5TW2DjiR1cf5ahG YNzfJlIRmiFAkGAxjA6LV6tidpr+KtKvgTh00JZoHVpd4f26/bRTuHXzZh/G36r1bo3qYaQQ mebj6HocdFofh4dN08zv9tiYfrn9uAScZ8JeNQQWb1fg8a2a3nnGLAQiqyFKiuklczA/wkcV ZklezqdO/8nhEhSmiGOLiVwCCdMOBwwBhhJc3iXNYt+pp/v+X/T6m10wwJrwF0JVaPsKqk/m XwCw3jCjcu6iBHPwxS5qmCyJJmBwqq8RtA+Bjdp4J1CIJN3cb+fDoteXBJHYSWYFNGSa9wC4 kSGpw/5LyucT7vSCSolwdC0YVc7BTQRcz/WMARAAyMkUJLJo7g0HwerlxK2kzncvpN0ACN+b Dq89kxJPpbUivE/5I8CTpYQUVBEIq7mvk5/vZj7NWiOdBqW7yx3pmnSuzVtIy7+SB9nVm4mZ InnHij8g1IQ5267C2x1jv93PdbGXFFeEHHg0h/4GjN//3ScyhKt0vf6tDPjGwkUe5tvpvTx7 NiCW2D5hk+tQf5FcvKhwFYCKC6b9DaIb19QgjuANo/g6is/n5M4CYiX+Pqx5j+J6NjG9hMLc 4GTSQur8Ix7LZ3G78z7zB1AdiJMCyeaqrYKTVWNsz1DB5MRiGl9Wz5Q9LZu070neMuoOHD+0 Aaud5JbI8YozvxwTbNN8/fV6byVWvCCmtd8ZZDKfQXgav2HvtejFlm0ix9MTl87+OUGbpLtm WIS/2qZtamrTVfv5dVlCM9ziHkkhV75nMr6X6h+tAaedboC7xIWR8bAC4HGk3KN1cmwjgy4D G87X+tYNmzhAQHioHEEvfklNXOIvU5coDzpdp/n9OxQxPlA5qC+BDSixQqsu5iTcPaA0iGij Ja3A7Wg69ybigctY22ICCvyUv8WgRoCWcHNfjI3sJULLk+SfygEALfgWQ9xKQI+L0M5h+Tq4 2RUpYVC2HKGtzQZ7YhSQcHu9NobA/4qVJcCF+tZXV5mPeMg5LHpmNhfSQRYgbk2KBvaqJw2D MbsAEQEAAcLBZQQYAQgADwUCXM/1jAIbDAUJCWYBgAAKCRCbDicB0srp1YnTD/0Qao7t3YNk Rc04ed1slc22Ned54huNF10TD5+QVSjfdjiMrlUNYznjqnMEdWDaHKclQS7WaBJO2GetSPFr Etk/IJ0bM+C9GjYh+kfqA0X45X8KC4/XLoARd4I+B4uLk+i0UbhlnL9sibVaIGG6IC6S1HGN M0yA9RJ0FPXl4/QV5JAkLNSDKCiyeFjACqExLk7HHNACrLO8Jr7IH8RDE3rlIEgdWxwTIs+9 GeLvMdtasnfEloZCsGb2proOu1QhMZlqoftLhtMzW+4lEmJnUAfxHZRivpjjlQVtWIQ03t6f txnqh4plL3gJsGV+y4ty4emTN9MJsDAyphkqKPqv29hJTyHoeixSG7G0KT/gO+JqTWm/7wwU d7xOW+WtjsXhNM5k5aJtTGpGAwC6QkKnodu+WUkYxpXJKU4cmEBguFQPCwTlFzh7+Jo98Vbh N9cJUQ5iJau00lDU3qJIcbsD06ccy1EoBjIiqAH59DnumrnP99J6iNj8yCxStc1TjA3dRReu +iOGwyoUlp48c3UlpK4BkSegtd2CA37xkiesebEUoRYiAld410PETVlHCQX/kBa6iAx4oEoG lS4E9h1XOCVa0fnJZfwq00WHUbT+P3E3/svKw63HccEuLHBETuowX1ECcGf7s6E9aaexLqbV jVz9rWWAUFG680+ewfjVKZjb5Q==
Message-ID: <27d65034-22be-e2b1-bdb1-f2cbc05ec663@tuwien.ac.at>
Date: Fri, 24 Jan 2020 14:49:34 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.4.1
MIME-Version: 1.0
In-Reply-To: <E2D709DC-DD01-4946-B2F1-7EE0E101DEF0@piuha.net>
Content-Type: text/plain; charset="utf-8"
Content-Language: en-US
X-ClientProxiedBy: mbx13a.intern.tuwien.ac.at (2001:629:1005:30::61) To mbx13c.intern.tuwien.ac.at (2001:629:1005:30::63)
Content-Transfer-Encoding: quoted-printable
X-MIME-Autoconverted: from 8bit to quoted-printable by secgw1.intern.tuwien.ac.at id 00ODnZDW011218
Archived-At: <https://mailarchive.ietf.org/arch/msg/architecture-discuss/ApyfsM_EGzXMno5adbM40Ym_51g>
Subject: Re: [arch-d] [Model-t] Possible new IAB program on Internet trust model evolution
X-BeenThere: architecture-discuss@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: open discussion forum for long/wide-range architectural issues <architecture-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/architecture-discuss/>
List-Post: <mailto:architecture-discuss@ietf.org>
List-Help: <mailto:architecture-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 24 Jan 2020 13:49:52 -0000

Jari, Stephen, all,

I support the IAB initiative. As a detailed reply to some aspects
mentioned in the draft charter: imo
- it's needed that these threat/trust model activities find a home. The
IAB taking the lead can help in covering a wide variety of perspectives
(including aspects that some may consider research).
- the potential impact of the threat model on future activities is too
high to handle it within a closed group and/or side-meetings. Being open
for public participation and becoming more visible (by listing the
sessions in the program) can help to include perspectives of all
affected parties.
- the major challenge (imho) is an appropriate scope of the new model
while keeping it simple, usable and relevant for most of us (as your
draft and the charter both mention). Various areas/stakeholders/systems
may have conflicting views and priorities at
architectural/structural/protocol/security/privacy levels.
- An unbiased discussion/review on (explicit and, in particular,
implicit) prerequisites that RFC3552 relies on and if/how they changed
within the last 17 years may be a good start (fitting topic 2 of the
expected outputs).

At a technical level the term "compromised" (*) may benefit from a
refined perspective and definition. It sounds simple, but thinking of
group communications (multicast, broadcast) it becomes a challenge.

thanks
Joachim

PS: (*): or "compromisable"? The safe (realistic) assumption is to
consider any system to be vulnerable.

On 24/01/2020 12:49, Jari Arkko wrote:
> 
> The IAB are considering starting up a programme on Internet
> trust model evolution as described in the link at the bottom of this
> email.
> 
> We'd like to get feedback on that idea and the text. As you may
> be aware, in 2019 a number of documents were published on
> this topic and discussions held (on the mailing list, SAAG, side
> meeting at IETF-106, workshops, etc). There’s also a virtual
> meeting coming up on February 14th.
> 
> To be clear, any output from this program would be text offered 
> to the IETF for consideration - it is not within the IAB's remit, nor 
> that of an IAB program, to modify a BCP. Nonetheless, an IAB 
> program offers a good venue for this work, as it perhaps allows 
> for more focus on the evolving architecture aspect within this space.
> 
> The plan is for the new program to be entirely open for participation,
> similar to how the current work has already been. That is, the mailing
> list is open for all interested to join, meetings are open and listed
> in the public agendas. The IAB will find a chair or chairs for the
> group to stay organised.
> 
> There's no specific deadline for this, but the IAB will consider this
> further in the next few weeks, so if you could take a few minutes 
> to share your thoughts on this that'd be great.
> 
> https://github.com/intarchboard/model-t-charter/blob/master/model-t-charter-00.md
> https://www.iab.org/mailman/listinfo/model-t
> 
> Stephen & Jari
> 
> 

-- 
---------------------------------------
Dr. Joachim Fabini
Senior Scientist
Institute of Telecommunications
TU Wien
Gusshausstrasse 25/E389
A-1040 Vienna, Austria
Tel: +43 1 58801-38813
mailto: Joachim.Fabini@tuwien.ac.at
---------------------------------------