Re: [Detnet] DetNet Security Draft - IP Data Plane Specific section
"Grossman, Ethan A." <eagros@dolby.com> Tue, 02 July 2019 15:49 UTC
Return-Path: <eagros@dolby.com>
X-Original-To: detnet@ietfa.amsl.com
Delivered-To: detnet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0351C1203B5 for <detnet@ietfa.amsl.com>; Tue, 2 Jul 2019 08:49:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=dolby.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5y4tr_MrH5iL for <detnet@ietfa.amsl.com>; Tue, 2 Jul 2019 08:49:11 -0700 (PDT)
Received: from NAM02-SN1-obe.outbound.protection.outlook.com (mail-eopbgr770104.outbound.protection.outlook.com [40.107.77.104]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C26421202B4 for <detnet@ietf.org>; Tue, 2 Jul 2019 08:49:10 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=dolby.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=meDFYmsGkM95Kt4pg+jtALNeXtsHcKS5uSqpuguoDUs=; b=k3cHWSD5uE2muEK3pQeydACg8XwALSPXQxusfyirly9eBbqDRdTRT9Drd0faOtu0vVgJIkk/6Z+WkDi/bokLl7XzDfsQ17lEGKxPuz/pTCJjtLF1hAmCoulsv5Y97DyrO/wEMIa5bHzbfRAzN6DHfHvLA+AQcj5RGUC/iy5J2X0=
Received: from BYAPR06MB4325.namprd06.prod.outlook.com (52.135.240.140) by BYAPR06MB6423.namprd06.prod.outlook.com (20.178.52.12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2032.20; Tue, 2 Jul 2019 15:49:08 +0000
Received: from BYAPR06MB4325.namprd06.prod.outlook.com ([fe80::9566:ed8c:4256:a44d]) by BYAPR06MB4325.namprd06.prod.outlook.com ([fe80::9566:ed8c:4256:a44d%7]) with mapi id 15.20.2032.019; Tue, 2 Jul 2019 15:49:08 +0000
From: "Grossman, Ethan A." <eagros@dolby.com>
To: "Andrew G. Malis" <agmalis@gmail.com>, detnet WG <detnet@ietf.org>
Thread-Topic: [Detnet] DetNet Security Draft - IP Data Plane Specific section
Thread-Index: AdUwmU0S7XaJegIrRpy2N0U5/gB39gALtT4AAAlRH9A=
Date: Tue, 02 Jul 2019 15:49:08 +0000
Message-ID: <BYAPR06MB43253F6246717095A0128217C4F80@BYAPR06MB4325.namprd06.prod.outlook.com>
References: <BYAPR06MB432520A4456F5D35E0B34128C4F80@BYAPR06MB4325.namprd06.prod.outlook.com> <CAA=duU3K6Da3OZDjok9r+8rj3o_HK8fgn2h+KO3gwJ8NXOycwg@mail.gmail.com>
In-Reply-To: <CAA=duU3K6Da3OZDjok9r+8rj3o_HK8fgn2h+KO3gwJ8NXOycwg@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=eagros@dolby.com;
x-originating-ip: [73.162.193.175]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: ec366393-5c66-4959-a703-08d6ff04d1e1
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:BYAPR06MB6423;
x-ms-traffictypediagnostic: BYAPR06MB6423:
x-ms-exchange-purlcount: 3
x-microsoft-antispam-prvs: <BYAPR06MB64232602299A71F0F9101759C4F80@BYAPR06MB6423.namprd06.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 008663486A
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(366004)(39860400002)(396003)(136003)(346002)(376002)(189003)(199004)(53754006)(6116002)(476003)(52536014)(68736007)(3846002)(2420400007)(486006)(478600001)(790700001)(606006)(33656002)(76116006)(2906002)(66556008)(73956011)(66066001)(66476007)(66946007)(256004)(8676002)(64756008)(14444005)(66446008)(7110500001)(15650500001)(7736002)(966005)(102836004)(86362001)(6436002)(110136005)(53936002)(229853002)(446003)(316002)(6506007)(53546011)(5660300002)(186003)(71200400001)(71190400001)(14454004)(9686003)(26005)(25786009)(74316002)(54896002)(6306002)(55016002)(99286004)(76176011)(7696005)(6246003)(236005)(11346002)(81166006)(81156014)(8936002); DIR:OUT; SFP:1102; SCL:1; SRVR:BYAPR06MB6423; H:BYAPR06MB4325.namprd06.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: dolby.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: 9WAzWvYw/9vNs8fhzo/I4Baw2t3lt/cz6xqp2MTq0xkOJ9bCaTWkAZhtyRqRV22y3Hegv/LVe7njCM/KUkR1IQ2ruJZaNSPM7JC6guE4gbgRC9a7osirjWb4mvO+eNo12Ph5BBr8Ej+ecmVBWxylQmooc4904OJxiayf2IhvXI4HasqgFtCQp3/lNA/vjheEBglosB3mOsXUVPOUkxf4Hf6qv5hB9tvLZx6AcvgGg4azZie4tJONdt9eKoEqhUZ3Qydh8sjJPR7uHswOx++O+hl3wvVT6EIsjyZwrLOqm9oUJaXXzrAeWfNSazUrsuInFbafspa9DXXyrgyJqgMH8C0nrilRa9ImO3IlyBqKyypR4mUUN2bmrxPxzv56ssNFEWHjFdKzRPN3bFolVCMS08zYRST822LiIRyMFw+kLOg=
Content-Type: multipart/alternative; boundary="_000_BYAPR06MB43253F6246717095A0128217C4F80BYAPR06MB4325namp_"
MIME-Version: 1.0
X-OriginatorOrg: dolby.com
X-MS-Exchange-CrossTenant-Network-Message-Id: ec366393-5c66-4959-a703-08d6ff04d1e1
X-MS-Exchange-CrossTenant-originalarrivaltime: 02 Jul 2019 15:49:08.4852 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 05408d25-cd0d-40c8-8962-5462de64a318
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: eagros@dolby.net
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR06MB6423
Archived-At: <https://mailarchive.ietf.org/arch/msg/detnet/mnW1A5SdiN7lXrWK-0SXc54PqCA>
Subject: Re: [Detnet] DetNet Security Draft - IP Data Plane Specific section
X-BeenThere: detnet@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Discussions on Deterministic Networking BoF and Proposed WG <detnet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/detnet>, <mailto:detnet-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/detnet/>
List-Post: <mailto:detnet@ietf.org>
List-Help: <mailto:detnet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/detnet>, <mailto:detnet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 Jul 2019 15:49:14 -0000
OK, well, if I can get the MPLS-specific text from Stewart in time for me to get it into a revision in time for the draft deadline this coming Monday, I can include this also, at least as a placeholder (or lightning rod). Ethan. From: Andrew G. Malis <agmalis@gmail.com> Sent: Tuesday, July 2, 2019 4:20 AM To: Grossman, Ethan A. <eagros@dolby.com> Cc: detnet WG <detnet@ietf.org> Subject: Re: [Detnet] DetNet Security Draft - IP Data Plane Specific section Ethan, That's certainly good as initial text for the section. As far as a SECDIR review, I'm sure that our WG chars will be asking the SECDIR for an early review of the entire document before it goes to WG last call. At least that what I would do in their place. :-) Cheers, Andy On Tue, Jul 2, 2019 at 2:02 AM Grossman, Ethan A. <eagros@dolby.com<mailto:eagros@dolby.com>> wrote: Hi All, I am having difficulty getting a contribution for our proposed “last remaining” section of the DetNet Security draft, which is the “IP Data Plane Specific” section. Could it be that there is nothing to say? What if I said the following – who would we need to have review this statement to poke some holes in it? I mean, that is essentially the text I’m looking for, should it actually exist. Proposed text for “IP Data Plane Considerations for DetNet” section: “The IP protocol has a long history of security considerations and mitigations, and its use as a DetNet Data Plane introduces no new security issues that were not there before (apart from those already described in the data-plane-independent section of this document). Thus the security considerations for a DetNet based on an IP data plane are purely inherited from the rich IP Security literature and code/application base, and the data-plane-independent section of this document”. Is that good? Should we ask for a review from the SECDIR for this statement? Ethan (as Editor, DetNet Security draft). _______________________________________________ detnet mailing list detnet@ietf.org<mailto:detnet@ietf.org> https://www.ietf.org/mailman/listinfo/detnet<https://urldefense.proofpoint.com/v2/url?u=https-3A__www.ietf.org_mailman_listinfo_detnet&d=DwMFaQ&c=lI8Zb6TzM3d1tX4iEu7bpg&r=ZcHC6wX_gDwPDcfMaFNZiQ&m=xhuMBCdrQg6A5lgr0QmGgB55MasslYPYw_S2eT4cDC0&s=T3VJk4yZ0s4huZyS-9h8VbaGXp4sPlOEsivHNBH5SSo&e=>
- [Detnet] DetNet Security Draft - IP Data Plane Sp… Grossman, Ethan A.
- Re: [Detnet] DetNet Security Draft - IP Data Plan… Maik Seewald (maseewal)
- Re: [Detnet] DetNet Security Draft - IP Data Plan… Andrew G. Malis
- Re: [Detnet] DetNet Security Draft - IP Data Plan… Grossman, Ethan A.