IETF Logo Mail Archive

Re: [babel] Éric Vyncke's Discuss on draft-ietf-babel-applicability-07: (with DISCUSS and COMMENT)

Juliusz Chroboczek <jch@irif.fr> Mon, 05 August 2019 12:51 UTC

Return-Path: <jch@irif.fr>
X-Original-To: babel@ietfa.amsl.com
Delivered-To: babel@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 07F4B1201C3; Mon, 5 Aug 2019 05:51:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jR2PLqaxslVB; Mon, 5 Aug 2019 05:51:11 -0700 (PDT)
Received: from korolev.univ-paris7.fr (korolev.univ-paris7.fr [IPv6:2001:660:3301:8000::1:2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 805AF1201B0; Mon, 5 Aug 2019 05:51:11 -0700 (PDT)
Received: from potemkin.univ-paris7.fr (potemkin.univ-paris7.fr [IPv6:2001:660:3301:8000::1:1]) by korolev.univ-paris7.fr (8.14.4/8.14.4/relay1/82085) with ESMTP id x75Cp2Pn001199 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Mon, 5 Aug 2019 14:51:02 +0200
Received: from mailhub.math.univ-paris-diderot.fr (mailhub.math.univ-paris-diderot.fr [81.194.30.253]) by potemkin.univ-paris7.fr (8.14.4/8.14.4/relay2/82085) with ESMTP id x75Cp2C4029838; Mon, 5 Aug 2019 14:51:02 +0200
Received: from mailhub.math.univ-paris-diderot.fr (localhost [127.0.0.1]) by mailhub.math.univ-paris-diderot.fr (Postfix) with ESMTP id 758E64E5C3; Mon, 5 Aug 2019 14:51:05 +0200 (CEST)
X-Virus-Scanned: amavisd-new at math.univ-paris-diderot.fr
Received: from mailhub.math.univ-paris-diderot.fr ([127.0.0.1]) by mailhub.math.univ-paris-diderot.fr (mailhub.math.univ-paris-diderot.fr [127.0.0.1]) (amavisd-new, port 10023) with ESMTP id K3rll7R96Jpe; Mon, 5 Aug 2019 14:51:04 +0200 (CEST)
Received: from pirx.irif.fr (unknown [78.194.40.74]) (Authenticated sender: jch) by mailhub.math.univ-paris-diderot.fr (Postfix) with ESMTPSA id C591F4E5BF; Mon, 5 Aug 2019 14:51:02 +0200 (CEST)
Date: Mon, 05 Aug 2019 14:51:02 +0200
Message-ID: <87tvavlqrt.wl-jch@irif.fr>
From: Juliusz Chroboczek <jch@irif.fr>
To: Éric Vyncke <evyncke@cisco.com>
Cc: The IESG <iesg@ietf.org>, draft-ietf-babel-applicability@ietf.org, Donald Eastlake <d3e3e3@gmail.com>, babel-chairs@ietf.org, babel@ietf.org
In-Reply-To: <156500498261.24571.204581663078651704.idtracker@ietfa.amsl.com>
References: <156500498261.24571.204581663078651704.idtracker@ietfa.amsl.com>
User-Agent: Wanderlust/2.15.9
MIME-Version: 1.0 (generated by SEMI-EPG 1.14.7 - "Harue")
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 8bit
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.2.7 (korolev.univ-paris7.fr [IPv6:2001:660:3301:8000::1:2]); Mon, 05 Aug 2019 14:51:02 +0200 (CEST)
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.2.7 (potemkin.univ-paris7.fr [194.254.61.141]); Mon, 05 Aug 2019 14:51:02 +0200 (CEST)
X-Miltered: at korolev with ID 5D482636.000 by Joe's j-chkmail (http : // j-chkmail dot ensmp dot fr)!
X-Miltered: at potemkin with ID 5D482636.002 by Joe's j-chkmail (http : // j-chkmail dot ensmp dot fr)!
X-j-chkmail-Enveloppe: 5D482636.000 from potemkin.univ-paris7.fr/potemkin.univ-paris7.fr/null/potemkin.univ-paris7.fr/<jch@irif.fr>
X-j-chkmail-Enveloppe: 5D482636.002 from mailhub.math.univ-paris-diderot.fr/mailhub.math.univ-paris-diderot.fr/null/mailhub.math.univ-paris-diderot.fr/<jch@irif.fr>
X-j-chkmail-Score: MSGID : 5D482636.000 on korolev.univ-paris7.fr : j-chkmail score : . : R=. U=. O=. B=0.000 -> S=0.000
X-j-chkmail-Score: MSGID : 5D482636.002 on potemkin.univ-paris7.fr : j-chkmail score : . : R=. U=. O=. B=0.000 -> S=0.000
X-j-chkmail-Status: Ham
X-j-chkmail-Status: Ham
Archived-At: <https://mailarchive.ietf.org/arch/msg/babel/L5Zv4FvadzDfpdJZh_gsVwx62ko>
Subject: Re: [babel] Éric Vyncke's Discuss on draft-ietf-babel-applicability-07: (with DISCUSS and COMMENT)
X-BeenThere: babel@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "A list for discussion of the Babel Routing Protocol." <babel.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/babel>, <mailto:babel-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/babel/>
List-Post: <mailto:babel@ietf.org>
List-Help: <mailto:babel-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/babel>, <mailto:babel-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 05 Aug 2019 12:51:14 -0000

Dear Eric,

Thanks for your review.

> == DISCUSS ==

> -- Section 2.2 --

> The 'bug resistance' property of Babel was perhaps learned during the
> implementation, but, I wonder whether the document may simply state 'robust
> with respect to bugs', this is quite a strong statement that needs to be backed
> by facts or proof.

Would you be satisfied if I added the following paragraph?  Or would you
prefer some other resolution?

  For example, an early version of the reference implementation would very
  occasionally corrupt the contents of its receive buffer.  With high
  probability, the bug would corrupt the destination address of an IPv6
  host route, which would cause a spurious "martian" route to be announced
  to the network and then silently time out, with no ill effects.

(For the sake of old times, I'll recall that I was the guilty party, and
that the bug was fixed by Grégoire Henry and Julien Cristau who spent
almost a whole night observing a Babel node.  They weren't pleased.)

> The title of the document is about 'applicability'; but, should it also
> include 'use cases' in the title ?

I prefer shorter titles, but I don't feel strongly either way.  Perhaps
the list can chime in?

> Section 3.1

> The 2nd paragraph is too dense: should explain why Babel is a good fit.

Agreed, I'll reword.

> -- Section 5 --

> Comparison between HMAC & DTLS variants is probably irrelevant in this
> document. Though, a use case with security in mind would be benefitial.

There are no known use cases.  Our users run Babel over secure link
layers, and nobody has requested security mechanisms embedded within the
protocol.  The security mechanisms were designed solely in order to
satisfy IETF requirements.  (To be fair, it was a lot of fun.)

> Also, the comparison should include all aspects including confidentiality and
> anti-reply for both HMAC & DTLS.

The document currently says:

   Babel-HMAC [HMAC] is a simple and easy to implement mechanism that
   only guarantees authenticity and integrity of the routing traffic,
   and only supports symmetric keying with a small number of keys
   (typically just one or two), but is invulnerable to replay even in
   the absence of persistent state.  Babel-DTLS [DTLS] is a more complex
   mechanism, that requires some minor changes to be made to a typical
   Babel implementation and depends on a DTLS stack being available, but
   inherits all of the features of DTLS, notably confidentiality and the
   ability to use asymmetric keys.

Please let me know if you feel that this paragraph needs to be expanded or
otherwise reworded, and, if so, in what way.

Thanks again,

-- Juliusz

v2.23.0 | Report a Bug | By Email