IETF Logo Mail Archive

Re: [bfcpbis] Kathleen Moriarty's Discuss on draft-ietf-bfcpbis-rfc4582bis-13: (with DISCUSS and COMMENT)

Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com> Sat, 07 March 2015 14:18 UTC

Return-Path: <kathleen.moriarty.ietf@gmail.com>
X-Original-To: bfcpbis@ietfa.amsl.com
Delivered-To: bfcpbis@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5015D1A9077; Sat, 7 Mar 2015 06:18:07 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gaQSJfiYsy94; Sat, 7 Mar 2015 06:18:05 -0800 (PST)
Received: from mail-qg0-x22f.google.com (mail-qg0-x22f.google.com [IPv6:2607:f8b0:400d:c04::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CB1851A9069; Sat, 7 Mar 2015 06:18:04 -0800 (PST)
Received: by qgfh3 with SMTP id h3so19113994qgf.2; Sat, 07 Mar 2015 06:18:04 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=from:content-type:mime-version:subject:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=aU/PKGHEtrqxE7gulWNtnGkO2422+UsrtdldPDDl5dQ=; b=qXBdqYlb6Dw051/pVK8AhQRo8y/SbbZ7v7BMqxhJYwCEQXnVqyLxoKEibMIWhJBvho J0kn1D1O3zPlTQohWhxaCM8BqO0XWeOgZ8hKxXg57IYemSqkgQ/PxyMcYOeNlxfuW8Vk je0Z5BgdYiApTRcO1jp6gRFFflpOsnhomnPMW1MalBGes5QenANlGhev+8kZ4P8PpMVD oc/vvubYZuIb+9Mslr4IPhQRcmG+A8BfJee2burlbBhGHW/l+0S28rB6iSxpJUUWJvu8 tk4PmKyehnkxmgRzl8rcNjvX0g5UpycPk9rowbf8Em4tqpGm6MGsshOLRatmwuGgoZ0a nRxw==
X-Received: by 10.229.80.72 with SMTP id s8mr26092180qck.24.1425737884150; Sat, 07 Mar 2015 06:18:04 -0800 (PST)
Received: from [10.74.85.4] (mobile-107-107-62-30.mycingular.net. [107.107.62.30]) by mx.google.com with ESMTPSA id o7sm7823890qge.8.2015.03.07.06.17.55 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Sat, 07 Mar 2015 06:18:01 -0800 (PST)
From: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
X-Google-Original-From: Kathleen Moriarty <Kathleen.Moriarty.ietf@gmail.com>
Content-Type: multipart/alternative; boundary="Apple-Mail-4A8BD875-448B-44AE-9B21-D59202B2A280"
Mime-Version: 1.0 (1.0)
X-Mailer: iPhone Mail (11D257)
In-Reply-To: <CAKKJt-eFwhiwa0qdAHVc7G=Q8rbqOV_kz2CLYynbJausi9OG2w@mail.gmail.com>
Date: Sat, 07 Mar 2015 09:17:45 -0500
Content-Transfer-Encoding: 7bit
Message-Id: <42DE91B0-AB46-49A0-9513-7420CF3463F4@gmail.com>
References: <20150305152202.28872.54032.idtracker@ietfa.amsl.com> <CAKKJt-eFwhiwa0qdAHVc7G=Q8rbqOV_kz2CLYynbJausi9OG2w@mail.gmail.com>
To: Spencer Dawkins at IETF <spencerdawkins.ietf@gmail.com>
Archived-At: <http://mailarchive.ietf.org/arch/msg/bfcpbis/ts4RWSPDIH53Y8GeuwU3dy-2DXY>
Cc: "bfcpbis@ietf.org" <bfcpbis@ietf.org>, "draft-ietf-bfcpbis-rfc4582bis.all@ietf.org" <draft-ietf-bfcpbis-rfc4582bis.all@ietf.org>, Mary Barnes <mary.ietf.barnes@gmail.com>, The IESG <iesg@ietf.org>, "bfcpbis-chairs@ietf.org" <bfcpbis-chairs@ietf.org>
Subject: Re: [bfcpbis] Kathleen Moriarty's Discuss on draft-ietf-bfcpbis-rfc4582bis-13: (with DISCUSS and COMMENT)
X-BeenThere: bfcpbis@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: BFCPBIS working group discussion list <bfcpbis.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bfcpbis>, <mailto:bfcpbis-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/bfcpbis/>
List-Post: <mailto:bfcpbis@ietf.org>
List-Help: <mailto:bfcpbis-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bfcpbis>, <mailto:bfcpbis-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 07 Mar 2015 14:18:07 -0000


Sent from my iPhone

> On Mar 5, 2015, at 11:14 AM, Spencer Dawkins at IETF <spencerdawkins.ietf@gmail.com> wrote:
> 
> Just continuing the trend of ADs talking to each other in ballot threads :-)
> 
>> On Thu, Mar 5, 2015 at 9:22 AM, Kathleen Moriarty <Kathleen.Moriarty.ietf@gmail.com> wrote:
>> Kathleen Moriarty has entered the following ballot position for
>> draft-ietf-bfcpbis-rfc4582bis-13: Discuss
>> 
>> When responding, please keep the subject line intact and reply to all
>> email addresses included in the To and CC lines. (Feel free to cut this
>> introductory paragraph, however.)
>> 
>> 
>> Please refer to http://www.ietf.org/iesg/statement/discuss-criteria.html
>> for more information about IESG DISCUSS and COMMENT positions.
>> 
>> 
>> The document, along with other ballot positions, can be found here:
>> http://datatracker.ietf.org/doc/draft-ietf-bfcpbis-rfc4582bis/
>> 
>> 
>> 
>> ----------------------------------------------------------------------
>> DISCUSS:
>> ----------------------------------------------------------------------
>> 
>> Thanks for your work on this draft, it was very well written which is
>> much appreciated.
>> 
>> I just have one item I'd like to discuss that should be very easy to
>> resolve.
>> This should be considered with Spencer's question on what happens when
>> the fragments are larger or smaller than the path MTU.  It's important to
>> state this to prevent fragmentation overlap attacks (unless you can
>> explain why we don't need to worry about that).
>> 
>> In the second sentence on page 42, adding the ending clause may be
>> helpful:
>>   The size of each of these N messages MUST be
>>    smaller than the path MTU to help prevent fragmentation overlap
>> attacks.
>> 
>> 
>> ----------------------------------------------------------------------
>> COMMENT:
>> ----------------------------------------------------------------------
>> 
>> 
>> Spencer asked what happens when TLS/DTLS is not used, so perhaps
>> rewording of the intro to the security considerations section would help
>> to clear up his point.  TLS/DTLS is the MTI with flexibility left in to
>> support some other undefined mechanism to secure the channel.  Since no
>> MTU is set, but recommended, the first few sentences are a bit confusing.
>>  The rest of the paragraph is clear in terms of MTI and recommendations
>> when TLD/DTLS is used as well as alternates options supporting the listed
>> desired security properties.
> 
> I think what I was wondering, was whether it's obvious that it's easier to off-path attack UDP protocols than TCP protocols in general, since an attacker has to splice attack packets into the TCP sequence numbering, while UDP doesn't have the same ... I don't want to say "protection", but maybe "obstacle". So, DTLS is in some sense more helpful than TLS, in resisting off-path attacks.
> 

Interesting, it would be good to understand this as well.  Thanks for catching this and raising the question.

> Kathleen being the security type that I'll never be, please pay more attention to her thoughts about this than mine!

Spencer is humble, please do answer his questions as well!

Thanks,
Kathleen
> 
> Spencer
>  
>> Security Considerations
>> 
>>    BFCP uses TLS/DTLS to provide mutual authentication between clients
>>    and servers.  TLS/DTLS also provides replay and integrity protection
>>    and confidentiality.
>

v2.23.0 | Report a Bug | By Email