Re: [core] WG Adoption Call for draft-mattsson-core-coap-attacks
supjps-ietf@jpshallow.com Fri, 25 February 2022 10:25 UTC
Return-Path: <jon.shallow@jpshallow.com>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E4CFB3A0D56 for <core@ietfa.amsl.com>; Fri, 25 Feb 2022 02:25:15 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qTwttsowc0bq for <core@ietfa.amsl.com>; Fri, 25 Feb 2022 02:25:11 -0800 (PST)
Received: from mail.jpshallow.com (mail.jpshallow.com [217.40.240.153]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 871003A0D6D for <core@ietf.org>; Fri, 25 Feb 2022 02:25:05 -0800 (PST)
Received: from mail2.jpshallow.com ([192.168.0.3] helo=N01332) by mail.jpshallow.com with esmtp (Exim 4.92.3) (envelope-from <jon.shallow@jpshallow.com>) id 1nNXmZ-0008UB-04; Fri, 25 Feb 2022 10:25:03 +0000
From: supjps-ietf@jpshallow.com
To: mohamed.boucadair@orange.com, 'Marco Tiloca' <marco.tiloca=40ri.se@dmarc.ietf.org>, core@ietf.org
References: <cadf5151-8f7f-9311-6987-de5bf533abe2@ri.se> <28040_1645773815_621883F7_28040_64_1_787AE7BB302AE849A7480A190F8B9330354999C4@OPEXCAUBMA2.corporate.adroot.infra.ftgroup>
In-Reply-To: <28040_1645773815_621883F7_28040_64_1_787AE7BB302AE849A7480A190F8B9330354999C4@OPEXCAUBMA2.corporate.adroot.infra.ftgroup>
Date: Fri, 25 Feb 2022 10:24:58 -0000
Message-ID: <55ce01d82a31$f052c530$d0f84f90$@jpshallow.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Outlook 14.0
Thread-Index: AQHArwUJYTgjKmdOOjJp4CS3KJofbgKK05zqrL6dK5A=
Content-Language: en-gb
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/GNnRO4-iE_jRb5X2HfRtV3c8Sew>
Subject: Re: [core] WG Adoption Call for draft-mattsson-core-coap-attacks
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 25 Feb 2022 10:25:16 -0000
Hi All, I likewise am in favor of this document, but would like to see a few changes / addition. Med is actually referring to 2.4, but this made me realize there was a trap of seeing Block and hence thinking RFC7959 for 2.1 - "The Block Attack" which actually has no reference to CoAP blocks. A better section title could be "The Blocking Attack" and s/Block Attack/Blocking Attack/ elsewhere. For 2.4, "Fragment" in terms of CoAP blocks is not defined, and is not used in RFC7959 (RFC7959 refers to fragmentation issues outside of the CoAP layer), so is unclear that "fragment" is meant to be referring to a CoAP RFC7959 (or draft-ietf-core-new-block to-be-RFC9177) block. Thus, "2.4. The Request CoAP Block Rearrangement Attack" is a step in the right direction for me. Then most of the usage of the word fragment needs to be replaced with block. As a note for mitigating 2.4.1, to-be-RFC9177 requires the use of Request-Tag (https://datatracker.ietf.org/doc/html/draft-ietf-core-new-block#section-4.3) and good use of tokens (https://datatracker.ietf.org/doc/html/draft-ietf-core-new-block#section-6). The lost blocks recovery mechanisms in to-be-RFC9177 mitigate the risk of the wrong block being processed in a request by the server. Again using Block-Wise transfers, there has not been consideration for a delay attack causing the server to send back the wrong data in a BLOCK2 response. See https://github.com/core-wg/echo-request-tag/issues/77 . If the attacker delays the first request (which triggers a BLOCK2 response), and then sends it just before/after the second request (also triggering a BLOCK2 response), the request for the next block for, say the second request, from the client may get back the block from either the first or second request. This can only be mitigated using the Request-Tag on each request, even though BLOCK1 is not being used for the request. I think this attack also needs to be included. Regards Jon > -----Original Message----- > From: mohamed.boucadair@orange.com [mailto:mohamed.boucadair@orange.com] > Sent: 25 February 2022 07:24 > To: Marco Tiloca; core@ietf.org WG (core@ietf.org) > Subject: Re: [core] WG Adoption Call for draft-mattsson-core-coap-attacks > > Hi all, > > I support adoption. > > It would helpful to explicit in Section 2.1 that this is about 7959, not the new > block (to-be-RFC9177). Assessing the case of the new-block would be useful as > well. > > Thank you. > > Cheers, > Med > > > -----Message d'origine----- > > De : core <core-bounces@ietf.org> De la part de Marco Tiloca > > Envoyé : jeudi 24 février 2022 17:21 > > À : core@ietf.org WG (core@ietf.org) <core@ietf.org> > > Objet : [core] WG Adoption Call for draft-mattsson-core-coap-attacks > > > > Dear all, > > > > This mail starts a 2 week Working Group Adoption Call for draft- > > mattsson-core-coap-attacks [1]. > > > > Please, provide your feedback by Wednesday, March 10. > > > > Best, > > Marco and Jaime > > > > [1] https://datatracker.ietf.org/doc/draft-mattsson-core-coap-attacks/ > > > > -- > > Marco Tiloca > > Ph.D., Senior Researcher > > > > Division: Digital System > > Department: Computer Science > > Unit: Cybersecurity > > > > RISE Research Institutes of Sweden > > https://www.ri.se > > > > Phone: +46 (0)70 60 46 501 > > Isafjordsgatan 22 / Kistagången 16 > > SE-164 40 Kista (Sweden) > > > ___________________________________________________________________ > ______________________________________________________ > > Ce message et ses pieces jointes peuvent contenir des informations > confidentielles ou privilegiees et ne doivent donc > pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce > message par erreur, veuillez le signaler > a l'expediteur et le detruire ainsi que les pieces jointes. Les messages > electroniques etant susceptibles d'alteration, > Orange decline toute responsabilite si ce message a ete altere, deforme ou > falsifie. Merci. > > This message and its attachments may contain confidential or privileged > information that may be protected by law; > they should not be distributed, used or copied without authorisation. > If you have received this email in error, please notify the sender and delete this > message and its attachments. > As emails may be altered, Orange is not liable for messages that have been > modified, changed or falsified. > Thank you. > > _______________________________________________ > core mailing list > core@ietf.org > https://www.ietf.org/mailman/listinfo/core
- [core] WG Adoption Call for draft-mattsson-core-c… Marco Tiloca
- Re: [core] WG Adoption Call for draft-mattsson-co… Henk Birkholz
- Re: [core] WG Adoption Call for draft-mattsson-co… mohamed.boucadair
- Re: [core] WG Adoption Call for draft-mattsson-co… supjps-ietf
- Re: [core] WG Adoption Call for draft-mattsson-co… Achim Kraus
- Re: [core] WG Adoption Call for draft-mattsson-co… supjps-ietf
- Re: [core] WG Adoption Call for draft-mattsson-co… Marco Tiloca