IETF Logo Mail Archive

Re: [bess] Benjamin Kaduk's No Objection on draft-ietf-bess-mvpn-mib-11: (with COMMENT)

Robert Raszuk <rraszuk@gmail.com> Sat, 15 September 2018 10:22 UTC

Return-Path: <rraszuk@gmail.com>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9EEFD130E1C; Sat, 15 Sep 2018 03:22:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id B2AwINk5bxbt; Sat, 15 Sep 2018 03:21:58 -0700 (PDT)
Received: from mail-pl1-x62f.google.com (mail-pl1-x62f.google.com [IPv6:2607:f8b0:4864:20::62f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2AC46130DD6; Sat, 15 Sep 2018 03:21:58 -0700 (PDT)
Received: by mail-pl1-x62f.google.com with SMTP id g2-v6so5298951plo.2; Sat, 15 Sep 2018 03:21:58 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=IDBuUna1TRj5gfbmOLa2Ul6cMNahcBDlImBYIr8I4Bo=; b=czZXjT78ZwgjAu4tC7/UUZPjPO+zTgwFWtnGiTitOZZojqOIgsBJkFDlrqQYGDeN9+ a4Pmb0z8/+OqpTXOkLnuGJbWZQcpQBLnmGSoCuI1z7we3Tm5GtQ++qjMyos9j1jIdAqo u70cjy5fDFyh4CemRc0NZuAWaISSL7Iyv68VHkhL0ivmAIOcXGaeTwzZgdzIx7hsk8eG ZOY0sl3woksrlkI85u17MBQkiwYn8Ohete5+Zs9hxyRSSSgHw9hYMAgQKYcBQDyuTZ5u rpusc1zKPLJUMiuXPEd7SMtYnONJlCYoXmgKlinYAvv02ucWypwRdvgiYKNvGtRLYZ6m qOWg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=IDBuUna1TRj5gfbmOLa2Ul6cMNahcBDlImBYIr8I4Bo=; b=XAUc4QXv+DYYyHdOFOe+MAQq+UI3Ie2T6aCURNqryQX4PzGrt2LBRaogc229/9imHb 7Vol50YnkiNcIFhe4qwWBGJoK8rFpIX+CAYIekcdx2tYKgAK4oikPGrMEUnJzoYBnv4N qEUxI3FDm069i96UzPQTHM7PJm/ubwECT2ejAZRNbzGrI6ssmxi8+UgkO9/8RPaMiPjm DwHQRL8BwuQdO5FJK9ihqXITxgMqhe8XOrCBHBCiEfy5GvH+TTOjn1d93tQZdPS6nzE9 kbN/xXDMnfv5Juvlxf7Z0ImBxy3IzlD8F/Aw0Q189hXvWpPAL7J7qZ3NwRIWJgSqDtco SVrQ==
X-Gm-Message-State: APzg51C+FkUlhSk2cK/iU5UKQ1rZ4tyNJm0pNh7XCcveTv2FRr2oxd5I Kiw2UKI2gr2YyVhalnicIlwHFHeKqbg1DXwXXfs=
X-Google-Smtp-Source: ANB0VdbLJx/jqd92YpGixcgdnEhq0+QOkGmpwe9eUJr8eZR4SmB2MjvGpRhhSuwuvbODvjn7hkjYvWQx4gVp2hR5UaE=
X-Received: by 2002:a17:902:be08:: with SMTP id r8-v6mr16268419pls.265.1537006917287; Sat, 15 Sep 2018 03:21:57 -0700 (PDT)
MIME-Version: 1.0
References: <153671698701.17065.13377651669195105482.idtracker@ietfa.amsl.com> <CA+b+ERnfqmw3qCSupJu21CUK4OTvQ2iksSFcpqoc6ezvXz=p7Q@mail.gmail.com> <20180915005052.GI48265@kduck.kaduk.org>
In-Reply-To: <20180915005052.GI48265@kduck.kaduk.org>
From: Robert Raszuk <rraszuk@gmail.com>
Date: Sat, 15 Sep 2018 12:21:45 +0200
Message-ID: <CA+b+ERnCFpQorFUzCQeUHa6+j2c-Pswev-H-KsO_+fv6OdU4JQ@mail.gmail.com>
To: Benjamin Kaduk <kaduk@mit.edu>
Cc: The IESG <iesg@ietf.org>, draft-ietf-bess-mvpn-mib@ietf.org, Mach Chen <mach.chen@huawei.com>, bess-chairs@ietf.org, bess@ietf.org
Content-Type: multipart/alternative; boundary="0000000000005282f60575e64ffe"
Archived-At: <https://mailarchive.ietf.org/arch/msg/bess/MOKd_B9KU2krf4T39x9URIm0izI>
Subject: Re: [bess] Benjamin Kaduk's No Objection on draft-ietf-bess-mvpn-mib-11: (with COMMENT)
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 15 Sep 2018 10:22:01 -0000

Hi Benjamin,

Yes now I see your point and all I can do is to agree with it.

As you know the story with right terminology is evolved to be even more
"funny". The real true and encrypted VPNs in the Internet are called SD-WAN
these days without any indication that there is privacy assurance while VPN
term is merely separating default IP reachability between parties if we
look at say L3VPNs. Sure there are also point to point IPSec VPNs which do
either encrypt or assure not compromised payload delivery.

So I guess indeed terminology is pretty confusing - and in fact it is
confusing even to technical people who are just not that ultimately
familiar with RFC4364 protocol and vendor's implementation details. Also
let's note that RFC4364 is often used outside of Internet and perhaps there
in those enterprise private networks encryption is not that much of a
necessity.

> From my view as Security AD, it would be quite a shame if we ended up in
an
> Internet world where some corporate purchaser buys a product labelled
"VPN"
> thinking it will protect (encrypt) his company's data, when in fact it
only
> provides IP reachability separtaion.

Well I think the market is here to help us ...

Today I see use of L3VPNs from SPs as rather fading away. SD-WAN have clear
advantages from both technical and economical points of view that I am not
sure if struggle to either rename or add mandatory or even optional
encryption to RFC4364 is really worth the effort.

A bit side observation is that the example described above leads me to
believe that the main fundamental problem is that today IETF does not (at
least to the best of my knowledge) coordinate names for new protocols or
protocol extensions in any way. Anyone can invent his own name and once the
document passes WG validating its technical merits I have not heard of many
cases where IESG or IETF wide review would change the name itself of the
proposal. And maybe in some cases it should ....

Kind regards,
Robert.


On Sat, Sep 15, 2018 at 2:51 AM Benjamin Kaduk <kaduk@mit.edu> wrote:

> On Wed, Sep 12, 2018 at 10:29:49AM +0200, Robert Raszuk wrote:
> > Hi Benjamin,
> >
> > > A general comment that we've been making on lots of documents in this
> > > space is that it would be nice to be in a place where the acronym "VPN"
> > > implies transport encryption.
> >
> > Let me observe that for a lot of work in IETF term "VPN" does *not* imply
> > any form of either transport or payload encryption.
>
> I am aware that this is the current state, yes.  That's why I used the
> phrasing I did, namely, "it would be nice to be in a place", with the
> implication that we currently aren't.
>
> > In fact here the MVPN which is derivative of L3VPNs do not imply use of
> any
> > encryption at all.
> >
> > The term "VPN" here is really all about IP reachability separation.
> >
> > So with this in mind can you please clarify your above comment ?
>
> Sure!  In recent years, the IETF as a whole seems to have shifted toward
> placing a greater emphasis on the privacy protection of user data from "the
> network" (not the network operators, necessarily, but an attacker that has
> coopted or compromised core nodes).  This is, in some sense, the core point
> of RFC 7258.  With this renewed interest in "private" and "privacy"
> referring to obscuring user data from intermediates (i.e., encryption),
> using the same word "private" to refer to a different concept ("not
> shared", as the IP reachability separation embodies) can lead to confusion.
> This is particularly pronounced in the case of the acronym "VPN", when
> (encrypting) corporate VPNs are nigh-ubiquitous, and end users have
> (encrypting) VPNs to pierce firewalls that get in their way, avoid
> geographic-based content restrictions, and the like.
>
> While the network engineers and RFC authors know there are different
> contexts for the term in current usage, the popular media really does not,
> and there are many consumers of RFCs that are not intimately involved in
> their development.  So as a matter for the "good of the Internet", my
> position is that reducing this potential for confusion is desirable.
> From my view as Security AD, it would be quite a shame if we ended up in an
> Internet world where some corporate purchaser buys a product labelled "VPN"
> thinking it will protect (encrypt) his company's data, when in fact it only
> provides IP reachability separtaion.
>
> I don't have an alternative term I want to push for the "not shared" case
> (though just "Virtual Network" and its parallels to network virtualization
> does come to mind); even a passing mention that this instance of VPN does
> not provide data confidentiality would be a big improvemnet, in my mind.
> But this is a very broad topic, and it needs to be eased into gradually, so
> I'm starting by just mentioning the potential issue when it comes up, with
> no expectation of changing the *current* document -- this is more of a
> long-term goal.
>
> -Benjamin
>
> >
> >
> > On Wed, Sep 12, 2018 at 3:49 AM, Benjamin Kaduk <kaduk@mit.edu> wrote:
> >
> > > Benjamin Kaduk has entered the following ballot position for
> > > draft-ietf-bess-mvpn-mib-11: No Objection
> > >
> > > When responding, please keep the subject line intact and reply to all
> > > email addresses included in the To and CC lines. (Feel free to cut this
> > > introductory paragraph, however.)
> > >
> > >
> > > Please refer to
> https://www.ietf.org/iesg/statement/discuss-criteria.html
> > > for more information about IESG DISCUSS and COMMENT positions.
> > >
> > >
> > > The document, along with other ballot positions, can be found here:
> > > https://datatracker.ietf.org/doc/draft-ietf-bess-mvpn-mib/
> > >
> > >
> > >
> > > ----------------------------------------------------------------------
> > > COMMENT:
> > > ----------------------------------------------------------------------
> > >
> > > A general comment that we've been making on lots of documents in this
> > > space is that it would be nice to be in a place where the acronym "VPN"
> > > implies transport encryption.  It's unclear that it's appropriate to
> > > request
> > > changes to this specific document toward that end, though.
> > >
> > > Perhaps I'm confused, but "mvpnAdvtPeerAddr" appears in the security
> > > considerations in the list of address-related objects that may have
> > > privacy/security impact.  That list is predicated on being "objects
> with a
> > > MAX-ACCESS other than not-accessible", but all the instances of
> > > mvpnAdvtPeerAddr I found in the body text were marked as
> not-accessible.
> > > Similarly for mvpnMrouteCmcastGroupAddr, mvpnMrouteCmcastSourceAddrs,
> > > mvpnMrouteNextHopGroupAddr, mvpnMrouteNextHopSourceAddrs, and
> > > mvpnMrouteNextHopAddr.  (Incidentally, why ar
> mvpnMrouteCmcastSourceAddrs
> > > and mvpnMrouteNextHopSourceAddrs plural with the final 's'?)
> > >
> > > Perhaps using subsections to separate the various tables' descriptions
> > > would aid readability.
> > >
> > >
> > > _______________________________________________
> > > BESS mailing list
> > > BESS@ietf.org
> > > https://www.ietf.org/mailman/listinfo/bess
> > >
>

v2.23.0 | Report a Bug | By Email