Re: [babel] Extension of Call for WG adoption of draft-ovsienko-babel-rfc7298bis through 2018-05-28
Donald Eastlake <d3e3e3@gmail.com> Mon, 21 May 2018 17:58 UTC
Return-Path: <d3e3e3@gmail.com>
X-Original-To: babel@ietfa.amsl.com
Delivered-To: babel@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B3F3012EA7F; Mon, 21 May 2018 10:58:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.45
X-Spam-Level:
X-Spam-Status: No, score=-2.45 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id InnWD9zOUeDu; Mon, 21 May 2018 10:57:58 -0700 (PDT)
Received: from mail-it0-x22f.google.com (mail-it0-x22f.google.com [IPv6:2607:f8b0:4001:c0b::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E3BF712EA42; Mon, 21 May 2018 10:57:57 -0700 (PDT)
Received: by mail-it0-x22f.google.com with SMTP id z6-v6so22034002iti.4; Mon, 21 May 2018 10:57:57 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=GM4kUf2lcJhBz/L0qMG3f8fd6F6zrqeaoXS2WwMFrY4=; b=Xpgwrb0uUYUuanMsXJ8CoLJcxzGp1HBnOgWyY1rrPLowdr4ChhQvYYoHBKw/0pZ+eO NuJFaKbgJos5eEYXMaKXMpcTMU2u9l42vtjGXp3eDjml8Zhry3etngVwYzG4V9ri8qB2 56P4DgSMxbX+SrYIL35BHQAJH6+3QKvNJAg+1LF7KSq0tle22p2QiUDYyveZpjvhV5JY Ijm4KUH2lVwYP1LcUxFBitxGKL6TYsIkBi7WDT5RoFTI/Y5OVHPqQ6gJa0A6aESuIRiY iAiHj4NkjttDcfOl8TgxbcQNt39yBt9tTmC1hH7k5fzwOjKGn64IV6Xe1ykx2XzAoJB4 phrA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=GM4kUf2lcJhBz/L0qMG3f8fd6F6zrqeaoXS2WwMFrY4=; b=PE0tMN4SqWx0RPBxzmOvSzM3iQKTqqAjRgVkIOFNZsBeWhhVICQUAnGiLYbQdu5Yg9 Yj75cYs69nPbSoyiEhPxhEt6w4uTLOUWh9JuT1ac5LIR8NpGoG+bJ3uAuklcakpk35+t zZK4cFIrVgdHpYnX35a7UMI/+RbsiCmaMSFXeuXJMXytmCYkktpXkETkyenU8i0+erf9 632zaZund9/f26R59QSfVatjDERd8bbnUt6z7gWzkuuTc1Wd9a7Zq2NqMzMKM/d8VM34 ppahSzD64fZDT5BDzQyRfqbIL8ZgKUuJhpcCBwpHDK88pdZyTHl5AqroD9ODFfbuT5QH /bhg==
X-Gm-Message-State: ALKqPweVLbSjC7HUSGtvwc2aLLjomNacsbWISuoiUnVYc46tR1mkH70r n6xpsYs6lXdSGRbhvDYS0mulhKLyYDEiseW+cnY=
X-Google-Smtp-Source: AB8JxZoTfTjipWhosRdi/WVlZfSI/zA73m0d0ABnNL3PHffoFjX5tVmfWiGdXRtXFwKAJm+ka1J/nuzQQUxr/VWBhVo=
X-Received: by 2002:a24:1994:: with SMTP id b142-v6mr18513725itb.14.1526925477208; Mon, 21 May 2018 10:57:57 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.107.162.15 with HTTP; Mon, 21 May 2018 10:57:41 -0700 (PDT)
In-Reply-To: <2D09D61DDFA73D4C884805CC7865E6114DDC604A@GAALPA1MSGUSRBF.ITServices.sbc.com>
References: <CAF4+nEGV94Vwdoo+gG_-x-nyQcjjJtv9+JMaM_m3YuZ511_e5g@mail.gmail.com> <877eo1jf82.wl-jch@irif.fr> <2D09D61DDFA73D4C884805CC7865E6114DDC604A@GAALPA1MSGUSRBF.ITServices.sbc.com>
From: Donald Eastlake <d3e3e3@gmail.com>
Date: Mon, 21 May 2018 13:57:41 -0400
Message-ID: <CAF4+nEEFfsMGTv9cp8Sbsp7=fsMKy1GejMgL+hGo3v84-tmKug@mail.gmail.com>
To: "STARK, BARBARA H" <bs7652@att.com>
Cc: Juliusz Chroboczek <jch@irif.fr>, "babel-chairs@ietf.org" <babel-chairs@ietf.org>, Babel at IETF <babel@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/babel/mQBmNTIXQgWulVL4ocwNPnv4GvQ>
Subject: Re: [babel] Extension of Call for WG adoption of draft-ovsienko-babel-rfc7298bis through 2018-05-28
X-BeenThere: babel@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "A list for discussion of the Babel Routing Protocol." <babel.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/babel>, <mailto:babel-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/babel/>
List-Post: <mailto:babel@ietf.org>
List-Help: <mailto:babel-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/babel>, <mailto:babel-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 21 May 2018 17:58:05 -0000
Hi Barbara, Thanks, Donald =============================== Donald E. Eastlake 3rd +1-508-333-2270 (cell) 155 Beaver Street, Milford, MA 01757 USA d3e3e3@gmail.com On Fri, May 18, 2018 at 11:58 AM, STARK, BARBARA H <bs7652@att.com> wrote: > > I wonder if it might be possible to adopt under certain conditions (in-line below)? > Barbara > > > From: Juliusz Chroboczek > ... > > I have mixed feelings, and therefore do not know whether I do or don't > > support adoption at the current time. > > > > On the one hand: > > > > - I am convinced that Babel needs a simple, comprehensible, > > implementable auth mechanism that introduces no heavy dependencies > > (possibly in addition to any heavier mechanism, such as DTLS); > > - Denis' draft is a good starting point for obtaining the above. > > I agree > > > On the other hand: > > > > - as described on the list, the protocol appears to be vulnerable to > > replay, due to an unfortunate confusion between symmetric reachability > > (as defined by 6126bis) and security association. I have a plan for > > fixing the vulnerability (by removing the confusion), but I'd like to > > have a chance to explain my ideas in order to see if they work; > > I've seen many adopted drafts die without ever being sent for publication. I've helped kill a few myself. Admittedly, it is easier to kill prior to adoption than prior to WGLC -- but not that much easier. Might it be possible to agree to adopt, but with the understanding that we don't have WGLC unless there are at least 2 interoperable implementations without a replay vulnerability? That is, there exists a technical issue that *must* be resolved before WGLC. I suppose it's possible but I don't see much point. If people want 2 interoperable implementations, which is consistent with the way this WG has been thinking about drafts, and such implementations don't exist, either there won't be a WGLC or it will fail. > > - the document (as opposed to the protocol) is very difficult to work > > with. Three reasons for that: (1) an almost complete lack of > > rationale and human-readable intuitions, (2) a tendency to repeat the > > same points multiple times, and (3) a tendency to repeat what is > > already in 6126bis. This is bad for a security document, and is > > especially worrying since the author has a poor track record of > > listening to stylistic (as opposed to technical) criticisms. > > Authors of WG drafts are assigned by the chairs and do not have to be the same as authors of individual contributions those WG drafts evolve from. If Denis were willing to work with a co-author, the chairs could assign such a co-author with the specific charter of making the draft readable. I would be willing to volunteer to do this. Alternately, the chairs could be cold-hearted and cruel and completely remove Denis as an author (which I'm not advocating, unless Denis refuses to work with a co-author or wants to completely step aside from this effort). I've seen this done several times. So this is not a reason that should prevent adoption, but is input the chairs should consider. It is not that common for WG chairs to exercise their authority over authorship on WG draft. Things normally work out informally. If substantial text changes are needed to the draft, my first through is that people should be proposing text changes or going through and marking up the draft and sending the result to Denis. Involuntarily removing an author of a WG draft is extreme rare and pretty much only happens if there is a clear WG consensus for specific changes and the author refuses to make those changes. I don't see any point in talking about that at this point. Thanks, Donald ============================= Donald E. Eastlake 3rd +1-508-333-2270 (cell) 155 Beaver Street, Milford, MA 01757 USA d3e3e3@gmail.com > > Should the stylistic issues with the document be fixed, and should my ideas > > for fixing the vulnerability work out, I'd support adoption with no hesitation. > > As it currently stands, and since I do not trust the author to fix the editorial > > issues once the document is adopted, I'm not sure. > > > > -- Juliusz > > > > _______________________________________________ > > babel mailing list > > babel@ietf.org > > https://urldefense.proofpoint.com/v2/url?u=https- > > 3A__www.ietf.org_mailman_listinfo_babel&d=DwICAg&c=LFYZ- > > o9_HUMeMTSQicvjIg&r=LoGzhC- > > 8sc8SY8Tq4vrfog&m=kuyFIAvd4lkAsr4xOmt0IOcVUWBjZuPVIcUKHf9RgX4&s > > =24w8fbY1aQnxpOhJyK1zB-lnaFAfOawqOckSQeh8zUg&e=
- [babel] Extension of Call for WG adoption of draf… Donald Eastlake
- Re: [babel] Extension of Call for WG adoption of … Juliusz Chroboczek
- Re: [babel] Extension of Call for WG adoption of … STARK, BARBARA H
- Re: [babel] Extension of Call for WG adoption of … Juliusz Chroboczek
- Re: [babel] Extension of Call for WG adoption of … Donald Eastlake
- Re: [babel] Extension of Call for WG adoption of … Denis Ovsienko
- Re: [babel] Extension of Call for WG adoption of … Donald Eastlake
- Re: [babel] Extension of Call for WG adoption of … Denis Ovsienko
- Re: [babel] Extension of Call for WG adoption of … Donald Eastlake
- Re: [babel] Extension of Call for WG adoption of … Juliusz Chroboczek
- Re: [babel] Extension of Call for WG adoption of … Denis Ovsienko
- Re: [babel] Extension of Call for WG adoption of … Denis Ovsienko