Re: [babel] Mirja Kühlewind's Discuss on draft-ietf-babel-hmac-08: (with DISCUSS and COMMENT)
Mirja Kuehlewind <ietf@kuehlewind.net> Wed, 07 August 2019 16:54 UTC
Return-Path: <ietf@kuehlewind.net>
X-Original-To: babel@ietfa.amsl.com
Delivered-To: babel@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E17C21206A3; Wed, 7 Aug 2019 09:54:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EPxTmfNwNabP; Wed, 7 Aug 2019 09:54:56 -0700 (PDT)
Received: from wp513.webpack.hosteurope.de (wp513.webpack.hosteurope.de [IPv6:2a01:488:42:1000:50ed:8223::]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 572891206FA; Wed, 7 Aug 2019 09:54:18 -0700 (PDT)
Received: from 200116b82c9bae003483c528e9ba9b65.dip.versatel-1u1.de ([2001:16b8:2c9b:ae00:3483:c528:e9ba:9b65]); authenticated by wp513.webpack.hosteurope.de running ExIM with esmtpsa (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) id 1hvPCZ-0005Bg-Ll; Wed, 07 Aug 2019 18:54:15 +0200
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\))
From: Mirja Kuehlewind <ietf@kuehlewind.net>
In-Reply-To: <87pnlhuf1j.wl-jch@irif.fr>
Date: Wed, 07 Aug 2019 18:54:15 +0200
Cc: Donald Eastlake <d3e3e3@gmail.com>, babel-chairs@ietf.org, The IESG <iesg@ietf.org>, babel@ietf.org, draft-ietf-babel-hmac@ietf.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <5166AACD-49D1-4C59-8764-301D6DAF127C@kuehlewind.net>
References: <156518028058.8361.10940272410936686016.idtracker@ietfa.amsl.com> <87imr9hyqc.wl-jch@irif.fr> <48D085EC-8B31-47FB-A4E1-05BB5CB30829@kuehlewind.net> <87ef1xhx1j.wl-jch@irif.fr> <C3E6F178-3785-4B94-962B-AE8F3A9BCAA8@kuehlewind.net> <87a7clhtke.wl-jch@irif.fr> <E66B43F6-AE00-4C58-A08C-4CC0264EDF29@kuehlewind.net> <87pnlhuf1j.wl-jch@irif.fr>
To: Juliusz Chroboczek <jch@irif.fr>
X-Mailer: Apple Mail (2.3445.104.11)
X-bounce-key: webpack.hosteurope.de;ietf@kuehlewind.net;1565196858;762f3fda;
X-HE-SMSGID: 1hvPCZ-0005Bg-Ll
Archived-At: <https://mailarchive.ietf.org/arch/msg/babel/tdNBIxsL7FuCNevOiEbrx8ee9PI>
Subject: Re: [babel] Mirja Kühlewind's Discuss on draft-ietf-babel-hmac-08: (with DISCUSS and COMMENT)
X-BeenThere: babel@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "A list for discussion of the Babel Routing Protocol." <babel.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/babel>, <mailto:babel-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/babel/>
List-Post: <mailto:babel@ietf.org>
List-Help: <mailto:babel-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/babel>, <mailto:babel-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Aug 2019 16:55:00 -0000
Hi Juliusz, Okay, if I understand you correctly what you want is actually to limit “failed” challenge requests only (where no reply is received or the reply is not valid). Correct? I think then you should specify it this way. Further if the goal is to not run into the rate limit if a single packet is lost, then that is also possible with a token-bucket-like approach, e.g. allow 3 non-confirmed challenges per 10s (or even larger values depending in the expected loss rate). This would make more sense to me as that avoids the dependency on the hello interval. Mirja > On 7. Aug 2019, at 18:16, Juliusz Chroboczek <jch@irif.fr> wrote: > >> Sorry I mean 300ms… (one important letter). > > Ah, ok. I think I undestand what you mean now. > >> But this is usually send every 4 seconds or so…? > > Not necessarily. The timers are configurable, and there can be multiple > packets sent over a single hello interval (e.g. when the routing table > doesn't fit in a single packet). The rate limiting here is going to limit > how fast we can acquire new neighbours in the presence of packet loss. > The value 300ms was chosen as being a compromise between the amount of > traffic an attacker can cause with replayed packets, and the hard limit it > imposes on neighbour acquisition in the presence of packet loss. > > This has nothing to do with congestion control, Mirja, it's solely about > resistance to DoS. In normal operation (with no evil attacker replaying > massive numbers of packets and in the absence of packet loss), there's > going to be just two challenge/reply exchanges (one in each direction) for > every neighbour acquisition. This implies that there is no opportunity > to establish RTT state, and no useful opportunity to reset timers when > a reply is received. > > -- Juliusz > >
- [babel] Mirja Kühlewind's Discuss on draft-ietf-b… Mirja Kühlewind via Datatracker
- Re: [babel] Mirja Kühlewind's Discuss on draft-ie… Juliusz Chroboczek
- Re: [babel] Mirja Kühlewind's Discuss on draft-ie… Mirja Kuehlewind
- Re: [babel] Mirja Kühlewind's Discuss on draft-ie… Juliusz Chroboczek
- Re: [babel] Mirja Kühlewind's Discuss on draft-ie… Mirja Kuehlewind
- Re: [babel] Mirja Kühlewind's Discuss on draft-ie… Juliusz Chroboczek
- Re: [babel] Mirja Kühlewind's Discuss on draft-ie… Mirja Kuehlewind
- Re: [babel] Mirja Kühlewind's Discuss on draft-ie… Juliusz Chroboczek
- Re: [babel] Mirja Kühlewind's Discuss on draft-ie… Mirja Kuehlewind