Re: [bess] Benjamin Kaduk's No Objection on draft-ietf-bess-mvpn-mib-11: (with COMMENT)
Benjamin Kaduk <kaduk@mit.edu> Sat, 15 September 2018 00:51 UTC
Return-Path: <kaduk@mit.edu>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E9165126F72; Fri, 14 Sep 2018 17:51:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZBmniSQ7hGaq; Fri, 14 Sep 2018 17:51:06 -0700 (PDT)
Received: from dmz-mailsec-scanner-5.mit.edu (dmz-mailsec-scanner-5.mit.edu [18.7.68.34]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 07F1A12008A; Fri, 14 Sep 2018 17:51:05 -0700 (PDT)
X-AuditID: 12074422-1b3ff70000000fa0-b6-5b9c577666c7
Received: from mailhub-auth-1.mit.edu ( [18.9.21.35]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by dmz-mailsec-scanner-5.mit.edu (Symantec Messaging Gateway) with SMTP id 27.18.04000.6775C9B5; Fri, 14 Sep 2018 20:51:03 -0400 (EDT)
Received: from outgoing.mit.edu (OUTGOING-AUTH-1.MIT.EDU [18.9.28.11]) by mailhub-auth-1.mit.edu (8.13.8/8.9.2) with ESMTP id w8F0p0E4020743; Fri, 14 Sep 2018 20:51:01 -0400
Received: from kduck.kaduk.org (24-107-191-124.dhcp.stls.mo.charter.com [24.107.191.124]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id w8F0osDe018068 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Fri, 14 Sep 2018 20:50:57 -0400
Date: Fri, 14 Sep 2018 19:50:54 -0500
From: Benjamin Kaduk <kaduk@mit.edu>
To: Robert Raszuk <rraszuk@gmail.com>
Cc: The IESG <iesg@ietf.org>, draft-ietf-bess-mvpn-mib@ietf.org, Mach Chen <mach.chen@huawei.com>, bess-chairs@ietf.org, bess@ietf.org
Message-ID: <20180915005052.GI48265@kduck.kaduk.org>
References: <153671698701.17065.13377651669195105482.idtracker@ietfa.amsl.com> <CA+b+ERnfqmw3qCSupJu21CUK4OTvQ2iksSFcpqoc6ezvXz=p7Q@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <CA+b+ERnfqmw3qCSupJu21CUK4OTvQ2iksSFcpqoc6ezvXz=p7Q@mail.gmail.com>
User-Agent: Mutt/1.9.1 (2017-09-22)
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFupmleLIzCtJLcpLzFFi42IR4hRV1i0PnxNtMPu9sMXOi3+YLVYcn8ls sW7WdEaLGX8mMltcWCts8alzAasDm8fOWXfZPVqOvGX1WLLkJ1MAcxSXTUpqTmZZapG+XQJX xtRmt4LJ6hVHDkQ3ML6U72Lk4JAQMJH4foS3i5GTQ0hgMZPE+tO6XYxcQPZGRomFy3cwQThX mSRW7HzADlLFIqAqMefaSWYQm01ARaKh+zKYLQIU3793KytIA7NAP6PE8VO3WUASwgJJEh8v r2IE2cYLtO3X3VqIbVMZJTq2aILYvAKCEidnPgErZxbQkrjx7yUTSDmzgLTE8n8cIGFOgUCJ E1ffMIHYogLKEnv7DrFPYBSYhaR7FpLuWQjdCxiZVzHKpuRW6eYmZuYUpybrFicn5uWlFuma 6uVmluilppRuYgSFM7uL0g7Gif+8DjEKcDAq8fBqbJ4dLcSaWFZcmXuIUZKDSUmUd6sXUIgv KT+lMiOxOCO+qDQntfgQowQHs5IIb/4/oBxvSmJlVWpRPkxKmoNFSZz3vO7kaCGB9MSS1OzU 1ILUIpisDAeHkgTvjtA50UKCRanpqRVpmTklCGkmDk6Q4TxAw8+A1PAWFyTmFmemQ+RPMepy /Hk/dRKzEEtefl6qlDjvIpAiAZCijNI8uDmgNCSRvb/mFaM40FvCvL4gVTzAFAY36RXQEiag JZ/3zABZUpKIkJJqYFykcsjF4PC8ItbF0/+or4w5YcT98FOJ8kqhCtUZ0gq3L16ecdx8TSnD 5NTcko/T784MUPSwmMFQPcuF7/iZfQJS989++fbBtq46I/XG16pTO9bvz7N+8nIG86aYmJOT cwxXPZL8/Xv7QZ03zEfXHkuUz1gfZtzQnj953T+z6YaVy7SNk5oWKLcpsRRnJBpqMRcVJwIA SotBYx4DAAA=
Archived-At: <https://mailarchive.ietf.org/arch/msg/bess/ghemVd-AYSaAD442upjYUS20f1A>
Subject: Re: [bess] Benjamin Kaduk's No Objection on draft-ietf-bess-mvpn-mib-11: (with COMMENT)
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 15 Sep 2018 00:51:09 -0000
On Wed, Sep 12, 2018 at 10:29:49AM +0200, Robert Raszuk wrote:
> Hi Benjamin,
>
> > A general comment that we've been making on lots of documents in this
> > space is that it would be nice to be in a place where the acronym "VPN"
> > implies transport encryption.
>
> Let me observe that for a lot of work in IETF term "VPN" does *not* imply
> any form of either transport or payload encryption.
I am aware that this is the current state, yes. That's why I used the
phrasing I did, namely, "it would be nice to be in a place", with the
implication that we currently aren't.
> In fact here the MVPN which is derivative of L3VPNs do not imply use of any
> encryption at all.
>
> The term "VPN" here is really all about IP reachability separation.
>
> So with this in mind can you please clarify your above comment ?
Sure! In recent years, the IETF as a whole seems to have shifted toward
placing a greater emphasis on the privacy protection of user data from "the
network" (not the network operators, necessarily, but an attacker that has
coopted or compromised core nodes). This is, in some sense, the core point
of RFC 7258. With this renewed interest in "private" and "privacy"
referring to obscuring user data from intermediates (i.e., encryption),
using the same word "private" to refer to a different concept ("not
shared", as the IP reachability separation embodies) can lead to confusion.
This is particularly pronounced in the case of the acronym "VPN", when
(encrypting) corporate VPNs are nigh-ubiquitous, and end users have
(encrypting) VPNs to pierce firewalls that get in their way, avoid
geographic-based content restrictions, and the like.
While the network engineers and RFC authors know there are different
contexts for the term in current usage, the popular media really does not,
and there are many consumers of RFCs that are not intimately involved in
their development. So as a matter for the "good of the Internet", my
position is that reducing this potential for confusion is desirable.
>From my view as Security AD, it would be quite a shame if we ended up in an
Internet world where some corporate purchaser buys a product labelled "VPN"
thinking it will protect (encrypt) his company's data, when in fact it only
provides IP reachability separtaion.
I don't have an alternative term I want to push for the "not shared" case
(though just "Virtual Network" and its parallels to network virtualization
does come to mind); even a passing mention that this instance of VPN does
not provide data confidentiality would be a big improvemnet, in my mind.
But this is a very broad topic, and it needs to be eased into gradually, so
I'm starting by just mentioning the potential issue when it comes up, with
no expectation of changing the *current* document -- this is more of a
long-term goal.
-Benjamin
>
>
> On Wed, Sep 12, 2018 at 3:49 AM, Benjamin Kaduk <kaduk@mit.edu> wrote:
>
> > Benjamin Kaduk has entered the following ballot position for
> > draft-ietf-bess-mvpn-mib-11: No Objection
> >
> > When responding, please keep the subject line intact and reply to all
> > email addresses included in the To and CC lines. (Feel free to cut this
> > introductory paragraph, however.)
> >
> >
> > Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
> > for more information about IESG DISCUSS and COMMENT positions.
> >
> >
> > The document, along with other ballot positions, can be found here:
> > https://datatracker.ietf.org/doc/draft-ietf-bess-mvpn-mib/
> >
> >
> >
> > ----------------------------------------------------------------------
> > COMMENT:
> > ----------------------------------------------------------------------
> >
> > A general comment that we've been making on lots of documents in this
> > space is that it would be nice to be in a place where the acronym "VPN"
> > implies transport encryption. It's unclear that it's appropriate to
> > request
> > changes to this specific document toward that end, though.
> >
> > Perhaps I'm confused, but "mvpnAdvtPeerAddr" appears in the security
> > considerations in the list of address-related objects that may have
> > privacy/security impact. That list is predicated on being "objects with a
> > MAX-ACCESS other than not-accessible", but all the instances of
> > mvpnAdvtPeerAddr I found in the body text were marked as not-accessible.
> > Similarly for mvpnMrouteCmcastGroupAddr, mvpnMrouteCmcastSourceAddrs,
> > mvpnMrouteNextHopGroupAddr, mvpnMrouteNextHopSourceAddrs, and
> > mvpnMrouteNextHopAddr. (Incidentally, why ar mvpnMrouteCmcastSourceAddrs
> > and mvpnMrouteNextHopSourceAddrs plural with the final 's'?)
> >
> > Perhaps using subsections to separate the various tables' descriptions
> > would aid readability.
> >
> >
> > _______________________________________________
> > BESS mailing list
> > BESS@ietf.org
> > https://www.ietf.org/mailman/listinfo/bess
> >
- [bess] Benjamin Kaduk's No Objection on draft-iet… Benjamin Kaduk
- Re: [bess] Benjamin Kaduk's No Objection on draft… Robert Raszuk
- Re: [bess] Benjamin Kaduk's No Objection on draft… Benjamin Kaduk
- Re: [bess] Benjamin Kaduk's No Objection on draft… Glenn Mansfield Keeni
- Re: [bess] Benjamin Kaduk's No Objection on draft… Hiroshi Tsunoda
- Re: [bess] Benjamin Kaduk's No Objection on draft… Hiroshi Tsunoda
- Re: [bess] Benjamin Kaduk's No Objection on draft… Robert Raszuk
- Re: [bess] Benjamin Kaduk's No Objection on draft… Benjamin Kaduk
- Re: [bess] Benjamin Kaduk's No Objection on draft… Hiroshi Tsunoda
- Re: [bess] Benjamin Kaduk's No Objection on draft… Benjamin Kaduk