IETF Logo Mail Archive

Re: [babel] Extension of Call for WG adoption of draft-ovsienko-babel-rfc7298bis through 2018-05-28

"STARK, BARBARA H" <bs7652@att.com> Fri, 18 May 2018 15:58 UTC

Return-Path: <bs7652@att.com>
X-Original-To: babel@ietfa.amsl.com
Delivered-To: babel@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E3B2912DA4D; Fri, 18 May 2018 08:58:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.601
X-Spam-Level:
X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9zQN2n5hBoV8; Fri, 18 May 2018 08:58:54 -0700 (PDT)
Received: from mx0a-00191d01.pphosted.com (mx0a-00191d01.pphosted.com [67.231.149.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DFFB512D96C; Fri, 18 May 2018 08:58:54 -0700 (PDT)
Received: from pps.filterd (m0049295.ppops.net [127.0.0.1]) by m0049295.ppops.net-00191d01. (8.16.0.22/8.16.0.22) with SMTP id w4IFtRKH006414; Fri, 18 May 2018 11:58:52 -0400
Received: from alpi154.enaf.aldc.att.com (sbcsmtp6.sbc.com [144.160.229.23]) by m0049295.ppops.net-00191d01. with ESMTP id 2j20w39j95-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Fri, 18 May 2018 11:58:51 -0400
Received: from enaf.aldc.att.com (localhost [127.0.0.1]) by alpi154.enaf.aldc.att.com (8.14.5/8.14.5) with ESMTP id w4IFwoTu004929; Fri, 18 May 2018 11:58:50 -0400
Received: from zlp30485.vci.att.com (zlp30485.vci.att.com [135.47.91.178]) by alpi154.enaf.aldc.att.com (8.14.5/8.14.5) with ESMTP id w4IFwjNV004861; Fri, 18 May 2018 11:58:45 -0400
Received: from zlp30485.vci.att.com (zlp30485.vci.att.com [127.0.0.1]) by zlp30485.vci.att.com (Service) with ESMTP id 144A440002BA; Fri, 18 May 2018 15:58:45 +0000 (GMT)
Received: from GAALPA1MSGHUBAH.ITServices.sbc.com (unknown [130.8.218.157]) by zlp30485.vci.att.com (Service) with ESMTPS id F1A5840006C2; Fri, 18 May 2018 15:58:44 +0000 (GMT)
Received: from GAALPA1MSGUSRBF.ITServices.sbc.com ([169.254.5.42]) by GAALPA1MSGHUBAH.ITServices.sbc.com ([130.8.218.157]) with mapi id 14.03.0389.001; Fri, 18 May 2018 11:58:44 -0400
From: "STARK, BARBARA H" <bs7652@att.com>
To: 'Juliusz Chroboczek' <jch@irif.fr>, Donald Eastlake <d3e3e3@gmail.com>
CC: "babel-chairs@ietf.org" <babel-chairs@ietf.org>, Babel at IETF <babel@ietf.org>
Thread-Topic: [babel] Extension of Call for WG adoption of draft-ovsienko-babel-rfc7298bis through 2018-05-28
Thread-Index: AQHT7l8e0nDad8b/vkyBPu2WV7O50aQ1tTeA///q6/A=
Date: Fri, 18 May 2018 15:58:44 +0000
Message-ID: <2D09D61DDFA73D4C884805CC7865E6114DDC604A@GAALPA1MSGUSRBF.ITServices.sbc.com>
References: <CAF4+nEGV94Vwdoo+gG_-x-nyQcjjJtv9+JMaM_m3YuZ511_e5g@mail.gmail.com> <877eo1jf82.wl-jch@irif.fr>
In-Reply-To: <877eo1jf82.wl-jch@irif.fr>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [130.10.205.47]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2018-05-18_06:, , signatures=0
X-Proofpoint-Spam-Details: rule=outbound_policy_notspam policy=outbound_policy score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1011 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1711220000 definitions=main-1805180173
Archived-At: <https://mailarchive.ietf.org/arch/msg/babel/8ChgTyofG2COHqZ905WBy_Z_4RQ>
Subject: Re: [babel] Extension of Call for WG adoption of draft-ovsienko-babel-rfc7298bis through 2018-05-28
X-BeenThere: babel@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "A list for discussion of the Babel Routing Protocol." <babel.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/babel>, <mailto:babel-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/babel/>
List-Post: <mailto:babel@ietf.org>
List-Help: <mailto:babel-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/babel>, <mailto:babel-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 18 May 2018 15:58:57 -0000

I wonder if it might be possible to adopt under certain conditions (in-line below)?
Barbara

> From: Juliusz Chroboczek
...
> I have mixed feelings, and therefore do not know whether I do or don't
> support adoption at the current time.
> 
> On the one hand:
> 
>   - I am convinced that Babel needs a simple, comprehensible,
>     implementable auth mechanism that introduces no heavy dependencies
>     (possibly in addition to any heavier mechanism, such as DTLS);
>   - Denis' draft is a good starting point for obtaining the above.

I agree
 
> On the other hand:
> 
>   - as described on the list, the protocol appears to be vulnerable to
>     replay, due to an unfortunate confusion between symmetric reachability
>     (as defined by 6126bis) and security association.  I have a plan for
>     fixing the vulnerability (by removing the confusion), but I'd like to
>     have a chance to explain my ideas in order to see if they work;

I've seen many adopted drafts die without ever being sent for publication. I've helped kill a few myself. Admittedly, it is easier to kill prior to adoption than prior to WGLC -- but not that much easier. Might it be possible to agree to adopt, but with the understanding that we don't have WGLC unless there are at least 2 interoperable implementations without a replay vulnerability? That is, there exists a technical issue that *must* be resolved before WGLC.

>   - the document (as opposed to the protocol) is very difficult to work
>     with.  Three reasons for that: (1) an almost complete lack of
>     rationale and human-readable intuitions, (2) a tendency to repeat the
>     same points multiple times, and (3) a tendency to repeat what is
>     already in 6126bis.  This is bad for a security document, and is
>     especially worrying since the author has a poor track record of
>     listening to stylistic (as opposed to technical) criticisms.

Authors of WG drafts are assigned by the chairs and do not have to be the same as authors of individual contributions those WG drafts evolve from. If Denis were willing to work with a co-author, the chairs could assign such a co-author with the specific charter of making the draft readable. I would be willing to volunteer to do this. Alternately, the chairs could be cold-hearted and cruel and completely remove Denis as an author (which I'm not advocating, unless Denis refuses to work with a co-author or wants to completely step aside from this effort). I've seen this done several times. So this is not a reason that should prevent adoption, but is input the chairs should consider.
 
> Should the stylistic issues with the document be fixed, and should my ideas
> for fixing the vulnerability work out, I'd support adoption with no hesitation.
> As it currently stands, and since I do not trust the author to fix the editorial
> issues once the document is adopted, I'm not sure.
> 
> -- Juliusz
> 
> _______________________________________________
> babel mailing list
> babel@ietf.org
> https://urldefense.proofpoint.com/v2/url?u=https-
> 3A__www.ietf.org_mailman_listinfo_babel&d=DwICAg&c=LFYZ-
> o9_HUMeMTSQicvjIg&r=LoGzhC-
> 8sc8SY8Tq4vrfog&m=kuyFIAvd4lkAsr4xOmt0IOcVUWBjZuPVIcUKHf9RgX4&s
> =24w8fbY1aQnxpOhJyK1zB-lnaFAfOawqOckSQeh8zUg&e=

v2.23.0 | Report a Bug | By Email