Re: [Detnet] Secdir last call review of draft-ietf-detnet-mpls-over-udp-ip-06
"Grossman, Ethan A." <eagros@dolby.com> Thu, 24 September 2020 20:28 UTC
Return-Path: <eagros@dolby.com>
X-Original-To: detnet@ietfa.amsl.com
Delivered-To: detnet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 861AB3A129E; Thu, 24 Sep 2020 13:28:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.101
X-Spam-Level:
X-Spam-Status: No, score=-2.101 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=dolby.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tSjVRS6HDmyf; Thu, 24 Sep 2020 13:28:28 -0700 (PDT)
Received: from NAM02-SN1-obe.outbound.protection.outlook.com (mail-eopbgr770102.outbound.protection.outlook.com [40.107.77.102]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7660D3A129C; Thu, 24 Sep 2020 13:28:25 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=n1L6spdWWmF33rst9XT7Nqb0UJ+EK8ZMFdR/XvrBDnBaBgtY3TBk2MNFs5xAx5aIfiwqaZJ2MG+tXKxjMd6uSqPMevYz0bNHY1Mdzxf/azBWUCrTK84/b/pbAPQFnIS3hauxs2x8kJKccsvQvkmA+Uv//8ZP6kKs/tyNrNbLF1HS47A0hu8ICDbl2FhEBALPhQrt2W5U75r9arIhRPIwnDs31WPOtdS+oS2Fdxp6OAFWRo+Kd1+s8cANwqKa4qRWrqra4ioSjbz0lQ5pw0ayOctZ9oEow/Zuz8D+puR0gEOuN8j/TPCjJlesN1cyq63pTO2PodVNU7TSsdLiCcLSaw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=JQ9DDh2bdEUIXxp9x4wdpjQbrgT6HCUOOwMHiFGFFEY=; b=XtCvimn6ls2ay3BovRgJreUCSPu/1M8VXwo+KZRazprwbERBg0ij6UWyHq1iTIw3ellBuS5RwKJt56REF3HfUwjVEgLEpeolOiHVnWX6CiFaQL7kc6MzTBaCE8MLMxISPnRQQqgID7q4GeT+9lLEviqILqekolYSBFXDETmms9SmB+3JnRCwJrVdMS7maRojHz7D3hurpsa/MWvWB794KW4KwUWncosjhqPTFtWcMFRJNdfFdnsknZPlXaNdX7MQu8Laj9ZfqNdPYTSQQFd2ONzGJl+LBChm/4RnY2nzdsXEICvNyK+Q4Mj0kzsxKX/vjpLRu8RBCXR4bBPy1kyV8w==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=dolby.com; dmarc=pass action=none header.from=dolby.com; dkim=pass header.d=dolby.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=dolby.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=JQ9DDh2bdEUIXxp9x4wdpjQbrgT6HCUOOwMHiFGFFEY=; b=q6q0iWac6LEeT8sjxV/lD1bReSBd9uUzkvRWR6QSZzYg6YHXL6XVnAi8bffIb46z4FmL/OhoeIAAx55VBl4egYuDeIEND8opMz8SmuhqwZKAmyy/fUt9LpoyTp0WFiqfQr9wwsLq1CA3uFXkq16HBdFfLrWWADJNcJdF7c3ji7o=
Received: from BY5PR06MB6611.namprd06.prod.outlook.com (2603:10b6:a03:23d::20) by BYAPR06MB4327.namprd06.prod.outlook.com (2603:10b6:a03:59::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3391.22; Thu, 24 Sep 2020 20:28:19 +0000
Received: from BY5PR06MB6611.namprd06.prod.outlook.com ([fe80::59d0:9610:aeb8:ca84]) by BY5PR06MB6611.namprd06.prod.outlook.com ([fe80::59d0:9610:aeb8:ca84%4]) with mapi id 15.20.3391.027; Thu, 24 Sep 2020 20:28:19 +0000
From: "Grossman, Ethan A." <eagros@dolby.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, "secdir@ietf.org" <secdir@ietf.org>
CC: "last-call@ietf.org" <last-call@ietf.org>, "detnet@ietf.org" <detnet@ietf.org>, "draft-ietf-detnet-mpls-over-udp-ip.all@ietf.org" <draft-ietf-detnet-mpls-over-udp-ip.all@ietf.org>
Thread-Topic: [Detnet] Secdir last call review of draft-ietf-detnet-mpls-over-udp-ip-06
Thread-Index: AQHWkp7QtLhjU0mW50S8oNMAEUQjo6l4Ol6g
Date: Thu, 24 Sep 2020 20:28:19 +0000
Message-ID: <BY5PR06MB6611BE0705F79CB6C4FE8883C4390@BY5PR06MB6611.namprd06.prod.outlook.com>
References: <160097130665.26261.15986068503995393539@ietfa.amsl.com>
In-Reply-To: <160097130665.26261.15986068503995393539@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: cs.tcd.ie; dkim=none (message not signed) header.d=none;cs.tcd.ie; dmarc=none action=none header.from=dolby.com;
x-originating-ip: [73.70.15.21]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 04de134e-650b-411c-dace-08d860c8601c
x-ms-traffictypediagnostic: BYAPR06MB4327:
x-microsoft-antispam-prvs: <BYAPR06MB43270CC21B127DC5ACF3A165C4390@BYAPR06MB4327.namprd06.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: XwKAXlmqxjyImV6kggr57UmOwsRSN/CXdRysDtGCxgpbZ9MpKzrum8luZY4kQ1Y14Hy03vxz76KeoVwJ9D6pg9FwIKGMLqh7LKM45MnKyYUW+cuIg7f6mbFXKUscb+MXE+By+MzaludYEmGhioyk3iTAC0eB8/Q1RTMxd+ZNN5S7S/tRgSXn2MzBHdBvj1R7fT7w7gNsY1qfKCQZaDdLlYU3qePsC4w06G1wyGQSdbu0fhKm6CXzUhoig1+58gOIMjqS0/u5y3v2qb/nJpzSFNA2VKztNG2d53XIxKYyIR/rDNzqPUUuxCVcieAuu/9F7OFWCUHpi/z0x8YhsTM8lQ44uTa+2q0/7nY0iBVZeyGPWRVaEFQy3kM+gRpnWiR1vTDVJAMreV4eRQ1Ftk5tzQ==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BY5PR06MB6611.namprd06.prod.outlook.com; PTR:; CAT:NONE; SFS:(376002)(136003)(366004)(346002)(396003)(39850400004)(54906003)(7696005)(66556008)(966005)(8936002)(26005)(53546011)(8676002)(186003)(71200400001)(86362001)(5660300002)(64756008)(66476007)(76116006)(66946007)(6506007)(33656002)(66446008)(4326008)(316002)(55016002)(2906002)(52536014)(110136005)(296002)(83380400001)(9686003)(478600001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: 7nVo6cpmNss164UgW7ZX7ygUSyAr5vWfasYQ/JNh9ihoihkWgmdRjKUmJUswtjxEgAdaMPU4XZOGQqNTL4+2JAzYlCmFKJVzHmZjz+QV2EmpizYxRxFs+wey9464hpjZ8XCR0p4BeJdTUrcSuNzn+gDq9rfkK0EQz1HMJKYG8lkDNYcV6SgBJr23yGCBALPO3/nqMZHFebv3gBfdIbv3MkTH4jqb1xvjdbswhSFpxkgVeRxC1/8QEpBFfo7smDqqTDHMmVcE/mATsWhJxzXwSH3HYD5TNjBwcxmE5lKBDC9t35uJ0Fx6+Fn2GRElIcfI4x9a6n+3KwqsJ9ldL0bqcLXZE1E/Y0SOpX73axGVz7Xv5UjIfEkArKiZpRU+n7lr64tHhUhsFAibfeyIHrc1BGU8SAXhmpMiDvVjFkF9E1vYrF+hP5CnOUkNuqgjULpx14Fe8V9G3KQDUJnR4H51LVeyh5VfmzekPg7vnq6pVqGaQf9wj1vpEdCm8yi9LYt+gwxxMzsIwI5vlJ+ow/0y5+lYvIltK7BIeoz/RRDW7KtUEFxE2/f7+5x0MDdhxyu7RG8l7NoPZeRFO9qWMotSL9FOSQW7RjFG5PcbUq1GMbaQAmDb0f1jn691c4Mps7p00wP2uAG92YkMjCWcKka+XQ==
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: dolby.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BY5PR06MB6611.namprd06.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 04de134e-650b-411c-dace-08d860c8601c
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Sep 2020 20:28:19.2864 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 05408d25-cd0d-40c8-8962-5462de64a318
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: ylkk38uS7dW8ppMs+Aql3zyQYltzOwpswUxY0vfKpuRao/MWqdN1B0woethxC+pgRLoX08XZHK3K1Qa5gEBoRQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR06MB4327
Archived-At: <https://mailarchive.ietf.org/arch/msg/detnet/UBy7fJGR0wEIflRhhSwyT4C6shA>
Subject: Re: [Detnet] Secdir last call review of draft-ietf-detnet-mpls-over-udp-ip-06
X-BeenThere: detnet@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Discussions on Deterministic Networking BoF and Proposed WG <detnet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/detnet>, <mailto:detnet-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/detnet/>
List-Post: <mailto:detnet@ietf.org>
List-Help: <mailto:detnet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/detnet>, <mailto:detnet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 24 Sep 2020 20:28:31 -0000
Thanks Stephen. FWIW it isn't too late to add some text to the DetNet Security draft regarding DetNet over UDP, if someone can think up something useful to say. I suppose one could simply mention UDP in the same breath as TCP (implying that the same general security guidelines apply, if that's our stance). Any thoughts (from anyone)? Thanks, Ethan (as Editor, DetNet Security draft) -----Original Message----- From: detnet <detnet-bounces@ietf.org> On Behalf Of Stephen Farrell via Datatracker Sent: Thursday, September 24, 2020 11:15 AM To: secdir@ietf.org Cc: last-call@ietf.org; detnet@ietf.org; draft-ietf-detnet-mpls-over-udp-ip.all@ietf.org Subject: [Detnet] Secdir last call review of draft-ietf-detnet-mpls-over-udp-ip-06 Reviewer: Stephen Farrell Review result: Ready (Sorry for the missed review deadline.) Other than general doubts about "I'll only use this in one administrative domain", the only specific thing that concerned me here was that draft-ietf-detnet-security doesn't seem to include any analysis of detnet/UDP (and indeed says that detnet runs over IP) and the security considerations section here is purely by reference. Given that draft-ietf-detnet-security seems to have done a reasonable job of analysis, it's a pity to not have that for the detnet/UDP case. All that said, I don't have any concrete problems to highlight with detnet/UDP, though of course I've not been thinking about this as $dayjob, so there may be issues there. _______________________________________________ detnet mailing list detnet@ietf.org https://www.ietf.org/mailman/listinfo/detnet
- [Detnet] Secdir last call review of draft-ietf-de… Stephen Farrell via Datatracker
- Re: [Detnet] Secdir last call review of draft-iet… Grossman, Ethan A.
- Re: [Detnet] Secdir last call review of draft-iet… Balázs Varga A
- Re: [Detnet] Secdir last call review of draft-iet… Stewart Bryant
- Re: [Detnet] Secdir last call review of draft-iet… Grossman, Ethan A.
- Re: [Detnet] Secdir last call review of draft-iet… Black, David
- Re: [Detnet] Secdir last call review of draft-iet… Stewart Bryant
- Re: [Detnet] Secdir last call review of draft-iet… Black, David