Re: [Detnet] I-D Action: draft-ietf-detnet-security-02.txt
"Grossman, Ethan A." <eagros@dolby.com> Tue, 24 April 2018 01:18 UTC
Return-Path: <eagros@dolby.com>
X-Original-To: detnet@ietfa.amsl.com
Delivered-To: detnet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D4A221205F0 for <detnet@ietfa.amsl.com>; Mon, 23 Apr 2018 18:18:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=dolby.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sZE7qKDLs3LE for <detnet@ietfa.amsl.com>; Mon, 23 Apr 2018 18:18:43 -0700 (PDT)
Received: from NAM03-CO1-obe.outbound.protection.outlook.com (mail-co1nam03on0703.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe48::703]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D6E3B126FDC for <detnet@ietf.org>; Mon, 23 Apr 2018 18:18:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=dolby.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=IBdWyovwiozBUNw5dxW3g4RS50qJzAyOYchKXO3Y4O4=; b=IM8n1tELCXJ1bwL9E9j9yOS36Hd4LXpOVHi3YS503n2RLlsAVMbKOsxxQpxUBHDIe5hKxUZhhZj1vCW18nSRVtAnkaeQw1RUKYIM6NOS7zzFTRthFDdVupT5v1T9wiftUlbc1eetxtjMv2OEec3u+7pHO0oxIefVwSypWjY6qIQ=
Received: from BY2PR0601MB1591.namprd06.prod.outlook.com (10.163.107.149) by BY2PR0601MB1687.namprd06.prod.outlook.com (10.163.107.29) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.696.15; Tue, 24 Apr 2018 01:18:40 +0000
Received: from BY2PR0601MB1591.namprd06.prod.outlook.com ([fe80::84f0:8496:20b5:7f90]) by BY2PR0601MB1591.namprd06.prod.outlook.com ([fe80::84f0:8496:20b5:7f90%14]) with mapi id 15.20.0696.017; Tue, 24 Apr 2018 01:18:40 +0000
From: "Grossman, Ethan A." <eagros@dolby.com>
To: "detnet@ietf.org" <detnet@ietf.org>
Thread-Topic: [Detnet] I-D Action: draft-ietf-detnet-security-02.txt
Thread-Index: AQHT22mylQCEuwQG/Uyp3upq1pgMj6QPHMwQ
Date: Tue, 24 Apr 2018 01:18:40 +0000
Message-ID: <BY2PR0601MB1591C01FEAE6E611A64A8133C4880@BY2PR0601MB1591.namprd06.prod.outlook.com>
References: <152453246935.28907.4369856358499687304@ietfa.amsl.com>
In-Reply-To: <152453246935.28907.4369856358499687304@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [8.39.141.5]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; BY2PR0601MB1687; 7:n0mSVJFA4+Bkf08oDsk/paMC3YaDnXe26LQwj+KV+eLFjobuqol1TiSnQFYqx1wOIXEXuuN4JWCbpiwZSAbiteYZ1d+O9kVo8xHQqKK2ci7rHod1hR2PgaNU+aKITRAMPjoXJbema1qTiLKbX76SHtChruX3Rb/+NV4OBxqFhl6lONZ4Y9XDfh/ipRe5nUuorL3qVthGe+vDQNfk/Zx/LWK+6MZb3e3NzNBHx31oG1xHeo+Di9WOYcPTsuXmK1TP
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(5600026)(4534165)(4627221)(201703031133081)(201702281549075)(2017052603328)(7153060)(7193020); SRVR:BY2PR0601MB1687;
x-ms-traffictypediagnostic: BY2PR0601MB1687:
authentication-results: outbound.protection.outlook.com; spf=skipped (originating message); dkim=none (message not signed) header.d=none; dmarc=none action=none header.from=dolby.com;
x-microsoft-antispam-prvs: <BY2PR0601MB1687DD5BFD820154413BD4C2C4880@BY2PR0601MB1687.namprd06.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(278428928389397)(120809045254105)(192374486261705)(155532106045638);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040522)(2401047)(8121501046)(5005006)(93006095)(93001095)(10201501046)(3002001)(3231232)(944501410)(52105095)(6041310)(20161123558120)(20161123560045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123562045)(20161123564045)(6072148)(201708071742011); SRVR:BY2PR0601MB1687; BCL:0; PCL:0; RULEID:; SRVR:BY2PR0601MB1687;
x-forefront-prvs: 0652EA5565
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(376002)(366004)(346002)(396003)(39380400002)(39860400002)(13464003)(377424004)(53754006)(6306002)(2351001)(3280700002)(446003)(229853002)(3846002)(6916009)(2906002)(25786009)(5640700003)(6436002)(55016002)(9686003)(8936002)(6116002)(81166006)(2900100001)(86362001)(3660700001)(1730700003)(8676002)(5660300001)(6506007)(102836004)(53546011)(74316002)(478600001)(66066001)(186003)(7696005)(6246003)(53936002)(15650500001)(76176011)(26005)(966005)(305945005)(5250100002)(2501003)(476003)(11346002)(33656002)(7736002)(59450400001)(316002); DIR:OUT; SFP:1102; SCL:1; SRVR:BY2PR0601MB1687; H:BY2PR0601MB1591.namprd06.prod.outlook.com; FPR:; SPF:None; LANG:en; MLV:sfv;
x-microsoft-antispam-message-info: ZCwRZ3DUOvTxofTpKAvBh8SfvtG+Vow6wwpruAdxyXiC3/OG0krlmBDvJCm7BHrCVEGEqgEUEclUrjLv+yvFdTRLwGVgq5Ia2htPv0lKfButhHX7ZzHq4Uc9VEE3wSwdgyIYYMHE5oz3Vr1hqzzRhzQ9L0pZ89iYXx19noVG4dGRYdweISl8HF0Rf+eb7+3v
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-MS-Office365-Filtering-Correlation-Id: 3b00c6d5-4029-492e-6f30-08d5a981507a
X-OriginatorOrg: dolby.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 3b00c6d5-4029-492e-6f30-08d5a981507a
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Apr 2018 01:18:40.6994 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 05408d25-cd0d-40c8-8962-5462de64a318
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY2PR0601MB1687
Archived-At: <https://mailarchive.ietf.org/arch/msg/detnet/Szo0zJWb2IF1fRIYrVzbVAKinAM>
Subject: Re: [Detnet] I-D Action: draft-ietf-detnet-security-02.txt
X-BeenThere: detnet@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Discussions on Deterministic Networking BoF and Proposed WG <detnet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/detnet>, <mailto:detnet-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/detnet/>
List-Post: <mailto:detnet@ietf.org>
List-Help: <mailto:detnet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/detnet>, <mailto:detnet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Apr 2018 01:18:47 -0000
Hi All, I updated only the version number to keep the draft alive, since it was about to expire. Work is currently paused on the draft, waiting for the final decisions on the Data Plane technologies. Once those are in, we can add sections to this draft which are specific to those technologies. Best, Ethan. -----Original Message----- From: detnet [mailto:detnet-bounces@ietf.org] On Behalf Of internet-drafts@ietf.org Sent: Monday, April 23, 2018 6:14 PM To: i-d-announce@ietf.org Cc: detnet@ietf.org Subject: [Detnet] I-D Action: draft-ietf-detnet-security-02.txt A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Deterministic Networking WG of the IETF. Title : Deterministic Networking (DetNet) Security Considerations Authors : Tal Mizrahi Ethan Grossman Andrew J. Hacker Subir Das John Dowdell Henrik Austad Kevin Stanton Norman Finn Filename : draft-ietf-detnet-security-02.txt Pages : 39 Date : 2018-04-23 Abstract: A deterministic network is one that can carry data flows for real- time applications with extremely low data loss rates and bounded latency. Deterministic networks have been successfully deployed in real-time operational technology (OT) applications for some years (for example [ARINC664P7]). However, such networks are typically isolated from external access, and thus the security threat from external attackers is low. IETF Deterministic Networking (DetNet) specifies a set of technologies that enable creation of deterministic networks on IP-based networks of potentially wide area (on the scale of a corporate network) potentially bringing the OT network into contact with Information Technology (IT) traffic and security threats that lie outside of a tightly controlled and bounded area (such as the internals of an aircraft). These DetNet technologies have not previously been deployed together on a wide area IP-based network, and thus can present security considerations that may be new to IP- based wide area network designers. This draft, intended for use by DetNet network designers, provides insight into these security considerations. In addition, this draft collects all security- related statements from the various DetNet drafts (Architecture, Use Cases, etc) into a single location Section 7. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-detnet-security/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-ietf-detnet-security-02 https://datatracker.ietf.org/doc/html/draft-ietf-detnet-security-02 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-detnet-security-02 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ _______________________________________________ detnet mailing list detnet@ietf.org https://www.ietf.org/mailman/listinfo/detnet
- [Detnet] I-D Action: draft-ietf-detnet-security-0… internet-drafts
- Re: [Detnet] I-D Action: draft-ietf-detnet-securi… Grossman, Ethan A.