Re: [Detnet] I-D Action: draft-ietf-detnet-security-14.txt
Ethan Grossman <ethan@ieee.org> Mon, 01 February 2021 23:55 UTC
Return-Path: <ethan@ieee.org>
X-Original-To: detnet@ietfa.amsl.com
Delivered-To: detnet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9DF773A15C9 for <detnet@ietfa.amsl.com>; Mon, 1 Feb 2021 15:55:08 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.349
X-Spam-Level:
X-Spam-Status: No, score=-2.349 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.25, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ieee.org
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HMS97b1eFmKs for <detnet@ietfa.amsl.com>; Mon, 1 Feb 2021 15:55:07 -0800 (PST)
Received: from mail-pj1-x1030.google.com (mail-pj1-x1030.google.com [IPv6:2607:f8b0:4864:20::1030]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 28A6D3A15C7 for <detnet@ietf.org>; Mon, 1 Feb 2021 15:55:06 -0800 (PST)
Received: by mail-pj1-x1030.google.com with SMTP id m12so917685pjs.4 for <detnet@ietf.org>; Mon, 01 Feb 2021 15:55:06 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ieee.org; s=google; h=reply-to:from:to:cc:references:in-reply-to:subject:date :organization:message-id:mime-version:content-transfer-encoding :thread-index:content-language; bh=P44QjSkjE3QrJpARYEJ1Tjp7j4gllgDT1ehAzJbEEPE=; b=NKx0uvlV5uuW60tpwKByT2Gv90R6i75v5I8wPjvXepm3nrbU4hsxPpO2J2CI6yzvUa GDIZfusxrmi/VIqxWDcv1/v2iQqE2JAAqNT2OreacXjuf1vBhuO9DDewRA2boW7hLbbD E2JQZhyV7zR64NCm2Bxrl3JSs1Kn9ihlHsfuU=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:reply-to:from:to:cc:references:in-reply-to :subject:date:organization:message-id:mime-version :content-transfer-encoding:thread-index:content-language; bh=P44QjSkjE3QrJpARYEJ1Tjp7j4gllgDT1ehAzJbEEPE=; b=fEU56IGMSj4Z7GRHW9VhL4UD1SElZRkl5FdPj2cXRKbwmv+w86xOPvLKLqr+Z5TF5s HMO8OJQxYhyy53mY6NfD/ZrAhpZ+3iYLSSjQvEfKW75AciRxWUkUmoihOPe78Uxj/R8O jn8evUH8t8P2ulvJ+t7TPAwWFextlaCrbfcj06+s9m6A3UxVzod983D5ai9Kcp/edX8n q9mWOd9p6wmpOm7yFzK4lxhnmem6NPoSw6XUzj4ySzMITY6PZ/bamiiwh0W/KHSRbBPT bFJ743rI4eM/vkEilVl3oBVTolHryqIYtCy7NKLXMg+ab4161iXH3XOjImoB4qeWlvI0 yNBw==
X-Gm-Message-State: AOAM532/ZTtTpTxPJYHZTo8DOWzzH2MAEewrOn4KWVqaYzHdkK2ao/M3 oXT7vpYBJFU2+YkTkiYJ22tmcw==
X-Google-Smtp-Source: ABdhPJyGMmp69sR3qqxaRBL3JWsGq9Tsfjav+KDVqz65LbCpEXrI2CwO8pdIJ2q4T6lcHrFcL/a4/g==
X-Received: by 2002:a17:902:d901:b029:e1:6a7f:564c with SMTP id c1-20020a170902d901b02900e16a7f564cmr5326390plz.11.1612223706263; Mon, 01 Feb 2021 15:55:06 -0800 (PST)
Received: from DESKTOPC435DDQ (99-46-181-151.lightspeed.sntcca.sbcglobal.net. [99.46.181.151]) by smtp.gmail.com with ESMTPSA id s18sm575329pjr.14.2021.02.01.15.55.04 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Mon, 01 Feb 2021 15:55:05 -0800 (PST)
Reply-To: ethan@ieee.org
From: Ethan Grossman <ethan@ieee.org>
To: detnet@ietf.org, detnet-chairs@ietf.org, db3546@att.com
Cc: 'Yaron Sheffer' <yaronf.ietf@gmail.com>, 'Magnus Westerlund' <magnus.westerlund@ericsson.com>, 'Murray Kucherawy' <superuser@gmail.com>, 'Roman Danyliw' <rdd@cert.org>, 'Benjamin Kaduk' <kaduk@mit.edu>, 'Robert Wilton' <rwilton@cisco.com>, 'Barry Leiba' <barryleiba@computer.org>, "'Eric Vyncke (evyncke)'" <evyncke@cisco.com>, 'Yaron Sheffer' <yaronf.ietf@gmail.com>
References: <161222304516.19756.17029275227155031152@ietfa.amsl.com>
In-Reply-To: <161222304516.19756.17029275227155031152@ietfa.amsl.com>
Date: Mon, 01 Feb 2021 15:55:02 -0800
Organization: Coast Computer Design
Message-ID: <01a501d6f8f5$a8ff54f0$fafdfed0$@ieee.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 16.0
Thread-Index: AQH7lW+9udqIHZ7uHiplFLLVTTTeTan6vcMQ
Content-Language: en-us
Archived-At: <https://mailarchive.ietf.org/arch/msg/detnet/5CYkC6JYtlYqNm-ZxDkPb_aIMhw>
Subject: Re: [Detnet] I-D Action: draft-ietf-detnet-security-14.txt
X-BeenThere: detnet@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Discussions on Deterministic Networking BoF and Proposed WG <detnet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/detnet>, <mailto:detnet-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/detnet/>
List-Post: <mailto:detnet@ietf.org>
List-Help: <mailto:detnet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/detnet>, <mailto:detnet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Feb 2021 23:55:09 -0000
Hi All, We have submitted draft 14 of the DetNet Security Considerations draft, which includes resolutions for all remaining AD review comments (as noted in my previous emails with the per-reviewer dispositions). Specifically, this version addresses comments from Yaron Sheffer, Magnus Westerlund, Murray Kucherawy, Eric Vyncke, Roman Danyliw, Benjamin Kaduk, Robert Wilton, and Barry Leiba. Thank you all for your reviews, and I hope we have addressed each of your comments to your satisfaction - if you have any further comments, suggestions or corrections please don't hesitate to let us know. Sincerely, Ethan (as Editor, DetNet Security Considerations draft) -----Original Message----- From: detnet <detnet-bounces@ietf.org> On Behalf Of internet-drafts@ietf.org Sent: Monday, February 1, 2021 3:44 PM To: i-d-announce@ietf.org Cc: detnet@ietf.org Subject: [Detnet] I-D Action: draft-ietf-detnet-security-14.txt A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Deterministic Networking WG of the IETF. Title : Deterministic Networking (DetNet) Security Considerations Authors : Ethan Grossman Tal Mizrahi Andrew J. Hacker Filename : draft-ietf-detnet-security-14.txt Pages : 59 Date : 2021-02-01 Abstract: A DetNet (deterministic network) provides specific performance guarantees to its data flows, such as extremely low data loss rates and bounded latency (including bounded latency variation, i.e. "jitter"). As a result, securing a DetNet requires that in addition to the best practice security measures taken for any mission-critical network, additional security measures may be needed to secure the intended operation of these novel service properties. This document addresses DetNet-specific security considerations from the perspectives of both the DetNet system-level designer and component designer. System considerations include a taxonomy of relevant threats and attacks, and associations of threats versus use cases and service properties. Component-level considerations include ingress filtering and packet arrival time violation detection. This document also addresses security considerations specific to the IP and MPLS data plane technologies, thereby complementing the Security Considerations sections of those documents. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-detnet-security/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-ietf-detnet-security-14 https://datatracker.ietf.org/doc/html/draft-ietf-detnet-security-14 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-detnet-security-14 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ _______________________________________________ detnet mailing list detnet@ietf.org https://www.ietf.org/mailman/listinfo/detnet
- [Detnet] I-D Action: draft-ietf-detnet-security-1… internet-drafts
- Re: [Detnet] I-D Action: draft-ietf-detnet-securi… Ethan Grossman
- Re: [Detnet] I-D Action: draft-ietf-detnet-securi… Eric Vyncke (evyncke)
- Re: [Detnet] I-D Action: draft-ietf-detnet-securi… Yaron Sheffer
- Re: [Detnet] I-D Action: draft-ietf-detnet-securi… Ethan Grossman
- Re: [Detnet] I-D Action: draft-ietf-detnet-securi… Benjamin Kaduk
- Re: [Detnet] I-D Action: draft-ietf-detnet-securi… Ethan Grossman
- Re: [Detnet] I-D Action: draft-ietf-detnet-securi… Benjamin Kaduk
- Re: [Detnet] I-D Action: draft-ietf-detnet-securi… Ethan Grossman
- Re: [Detnet] I-D Action: draft-ietf-detnet-securi… Yaron Sheffer
- Re: [Detnet] I-D Action: draft-ietf-detnet-securi… Ethan Grossman
- Re: [Detnet] I-D Action: draft-ietf-detnet-securi… Yaron Sheffer
- Re: [Detnet] I-D Action: draft-ietf-detnet-securi… Ethan Grossman