IETF Logo Mail Archive

Re: [core] I-D Action: draft-ietf-core-attacks-on-coap-01.txt

John Mattsson <john.mattsson@ericsson.com> Thu, 10 November 2022 11:04 UTC

Return-Path: <john.mattsson@ericsson.com>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 48D68C14F73D for <core@ietfa.amsl.com>; Thu, 10 Nov 2022 03:04:55 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.677
X-Spam-Level:
X-Spam-Status: No, score=-2.677 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.571, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ehV7iGbiM3h6 for <core@ietfa.amsl.com>; Thu, 10 Nov 2022 03:04:51 -0800 (PST)
Received: from EUR05-DB8-obe.outbound.protection.outlook.com (mail-db8eur05on2077.outbound.protection.outlook.com [40.107.20.77]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 563B8C14F720 for <core@ietf.org>; Thu, 10 Nov 2022 03:04:51 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Ha2rIw9013Hf5tCwRHR2VlG7YRqKlFUPF7U8UgncdsEmqAGJQwQs3XeRpzgcCuE8nv/1y/iWglq1O9+OjiZgg02QzA9UCKEUPYmW2VPSreZHnrurOy6Vy8kUBhhi9LDNdrzNzaRAI9IctdXxLgcuHnejAdtKskmqhW7XkyQXo6BdQnpRQ4r8h03XjSoTD13ogwyf6oIjwx7l8xDrfFKWeUm3waftLQl2zfgNnXUG6yjXV4qmcKCWckFTECwTn6S4ooId4xVGKH0qVIoMikasRDzQvg9d6xYTndG9kFKSB88pmPQmZlzvCdCek8uYy1sWg6674c/0aeSOGHiE+LtAog==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=o4y2Rqi4nVaRmOEYa9LWLxHUGbNm20FOz61tTLjmGz4=; b=iG/ZG/0HtbWwEUzcf3dJQtvhDoCpyqaubYdTSP5S9yM7UP86QhjASBWI+3GtVuVIz3mVRZ6efhsTqm3KDEjTFACH/k+lubX8nVA2aiYsmEY+WE+y1RxqZbmNAbG2JuMZIpqEN7sfKLk/SruqZQRHkEtrOKL9iO3YmxcsqTiFenzKKXUScE+AMgrtoRTj45uG9qv9qFS/gLkuz9K5OB7w3YngGBnKKEwqHh/E2YPIl22Ptxb1gRL8vfhwCS78Oct96BTJhNhMTg6+CXvpIdY58Ims3W/ghn6elvyp6rnRc/15kqyuxzKofnr7LcyewFEFqhJUW6qdcKLAMgVbeWzaCQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=o4y2Rqi4nVaRmOEYa9LWLxHUGbNm20FOz61tTLjmGz4=; b=u6SKYD0opWgdGcfhDziSQdYHqvaoSgQd42WtVzXpX2/fx7YaKjiAKEkcVjgPVnma40fFh0D4NtLu9nkUo+013kgwkPHmlpDIawRROIcgmJIw1saXXp57jyBQyNZug/8YWoAZO8VgBVsdKy62WiBXeWYxTelX/GBoz3YRGzzKHbk=
Received: from HE1PR0701MB3050.eurprd07.prod.outlook.com (2603:10a6:3:4b::8) by DB9PR07MB7947.eurprd07.prod.outlook.com (2603:10a6:10:2a9::20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5791.27; Thu, 10 Nov 2022 11:04:48 +0000
Received: from HE1PR0701MB3050.eurprd07.prod.outlook.com ([fe80::4458:48c2:e76a:4057]) by HE1PR0701MB3050.eurprd07.prod.outlook.com ([fe80::4458:48c2:e76a:4057%6]) with mapi id 15.20.5791.027; Thu, 10 Nov 2022 11:04:48 +0000
From: John Mattsson <john.mattsson@ericsson.com>
To: "core@ietf.org" <core@ietf.org>
Thread-Topic: [core] I-D Action: draft-ietf-core-attacks-on-coap-01.txt
Thread-Index: AQHY9PLQT3tZ+Eu9MEqD76mvhxmqMa43/IOU
Date: Thu, 10 Nov 2022 11:04:47 +0000
Message-ID: <HE1PR0701MB3050A78DE4E8CFCD55EAE47D89019@HE1PR0701MB3050.eurprd07.prod.outlook.com>
References: <166807759799.8377.8307043275662656195@ietfa.amsl.com>
In-Reply-To: <166807759799.8377.8307043275662656195@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: HE1PR0701MB3050:EE_|DB9PR07MB7947:EE_
x-ms-office365-filtering-correlation-id: dc557bb4-d5b1-4e13-62b6-08dac30b61d9
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR0701MB3050.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(4636009)(136003)(346002)(366004)(39860400002)(396003)(376002)(451199015)(82960400001)(38070700005)(71200400001)(38100700002)(166002)(966005)(6916009)(478600001)(122000001)(86362001)(83380400001)(316002)(8936002)(66946007)(33656002)(52536014)(53546011)(6506007)(7696005)(91956017)(66446008)(21615005)(44832011)(8676002)(66476007)(76116006)(55016003)(26005)(66556008)(4001150100001)(186003)(41300700001)(64756008)(9686003)(66574015)(5660300002)(2906002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_HE1PR0701MB3050A78DE4E8CFCD55EAE47D89019HE1PR0701MB3050_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR0701MB3050.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: dc557bb4-d5b1-4e13-62b6-08dac30b61d9
X-MS-Exchange-CrossTenant-originalarrivaltime: 10 Nov 2022 11:04:47.9727 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: LcdLNUjQzE52dd/6Ds/Zyfz4nR5WL+gfQyqcA+R8fa6/1XgyMR/VdfsPN1Zkbw6W+4nB0+IUFIBKeGfOZ6wKUhzrC3pq5G1hsOU+hVbHoVo=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB9PR07MB7947
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/oARu7N-6NCfvBdw-wWn75DuWhTc>
Subject: Re: [core] I-D Action: draft-ietf-core-attacks-on-coap-01.txt
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Nov 2022 11:04:55 -0000

Hi,

This update tries to address many but not all of the WGLC comments:

  *   “block attack” renamed “blocking attack”
  *   Added ”availability” to list of required properties
  *   Added that the freshness definition comes from RFC 9175
  *   Several changes to abstract and introduction based on Achim’s comment

Left to do of WGLC comments:

  *   All the comments related to the Request Fragment Rearrangement Attack
  *   Maybe more changes based on Achim’s comment

Cheers,
John

From: core <core-bounces@ietf.org> on behalf of internet-drafts@ietf.org <internet-drafts@ietf.org>
Date: Thursday, 10 November 2022 at 10:54
To: i-d-announce@ietf.org <i-d-announce@ietf.org>
Cc: core@ietf.org <core@ietf.org>
Subject: [core] I-D Action: draft-ietf-core-attacks-on-coap-01.txt

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Constrained RESTful Environments WG of the IETF.

        Title           : Attacks on the Constrained Application Protocol (CoAP)
        Authors         : John Preuß Mattsson
                          John Fornehed
                          Göran Selander
                          Francesca Palombini
                          Christian Amsüss
  Filename        : draft-ietf-core-attacks-on-coap-01.txt
  Pages           : 19
  Date            : 2022-11-10

Abstract:
   Being able to securely read information from sensors, to securely
   control actuators, and to not enable distributed denial-of-service
   attacks are essential in a world of connected and networking things
   interacting with the physical world.  Using a security protocol such
   as DTLS, TLS, or OSCORE to protect CoAP is a requirement for secure
   operation and protects against many attacks.  This document
   summarizes a number of known attacks on CoAP deployments and show
   that just using CoAP with a security protocol like DTLS, TLS, or
   OSCORE is not enough for secure operation.  Several of the discussed
   attacks can be mitigated with the solutions in RFC 9175.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-core-attacks-on-coap/

There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-ietf-core-attacks-on-coap-01.html

A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-ietf-core-attacks-on-coap-01


Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts


_______________________________________________
core mailing list
core@ietf.org
https://www.ietf.org/mailman/listinfo/core

v2.23.0 | Report a Bug | By Email