Re: [dhcwg] Review of draft-ietf-dhc-sedhcpv6-13
Lishan Li <lilishan48@gmail.com> Thu, 28 July 2016 08:35 UTC
Return-Path: <lilishan48@gmail.com>
X-Original-To: dhcwg@ietfa.amsl.com
Delivered-To: dhcwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3175D12D143; Thu, 28 Jul 2016 01:35:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.449
X-Spam-Level:
X-Spam-Status: No, score=-2.449 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wR_QUm0oCJXo; Thu, 28 Jul 2016 01:35:36 -0700 (PDT)
Received: from mail-qt0-x22e.google.com (mail-qt0-x22e.google.com [IPv6:2607:f8b0:400d:c0d::22e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5B5BE12D197; Thu, 28 Jul 2016 01:35:36 -0700 (PDT)
Received: by mail-qt0-x22e.google.com with SMTP id u25so44077843qtb.1; Thu, 28 Jul 2016 01:35:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=durOBGdogI8EbTLEUlU9Qedv4tDI/GIXWEf7BDoAq7E=; b=nuMle2+WY1O0pbU0uCwSGugo4PRn5Du+mnZz/z+28er9gxGt++dmzNxo6cd4oTivSN isi8js4Ze1HMcanr+/ic5q3U5KdQJhAs0KpFlqnTOmQ5mPsG6bhkinaZbHUShoJjejx7 banvDNFWWCJ1GfO5VzdtvuZFl3U4npwlRcyFet4BGxE9VIwbbWq4ZA6/taLMr/I8mxld IsvN8t9qfr3wHbwDbbmrGu7mYSbcaPFApYzOKia5d/b47voQeZtvtu8VgkD6BeeArxvk 6qvzosuSEjuwg4ujl0yZfRjhSkj9zWlv9175NQ5hIBPxvehAuQ74mlYEmjsprkDZgP+d 3/Yg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=durOBGdogI8EbTLEUlU9Qedv4tDI/GIXWEf7BDoAq7E=; b=F5OUVHtQYM1cA8DLugh/cUzSNQyqW2HAruRY5YsneQXhJN6XmXiKFKLV+lPkhe5O/C EjullLuOsghHAKZbGDVtRLK9HNQSXQMjitOcJ/s88hHjheabwuQ+ALhFsH22fXMNp7oF kyE/SounfGgi9xYrnMgkKhKw6JZaSyuC1tNmWboWE6Sc+3P5c45QUWgShqoLV0kXLUfP ujsUAMxdXhci9UtKMFFKctn/oQMYbNYYjAc4E4s7eercnzr/nrFZEPI2rNEP2rZDJT2G eFurQSRYJvp4TKEI6jGLJJXXZ56T6d21ghPW6zLI1LmPLBuvPKOetTpsf/mBiBl5fTiv xaxg==
X-Gm-Message-State: AEkoouuOXtUV2P/8bcDaiazxGchTr+7I89uBLdcikGzPWp5nrjDUvPULQXuolF8oktVoEr0QP9iP2P4yrTg4VA==
X-Received: by 10.200.49.100 with SMTP id h33mr52006947qtb.86.1469694935381; Thu, 28 Jul 2016 01:35:35 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.200.44.111 with HTTP; Thu, 28 Jul 2016 01:35:34 -0700 (PDT)
In-Reply-To: <609b0e38a87945bf90c55ac8e084d638@XCH-ALN-003.cisco.com>
References: <609b0e38a87945bf90c55ac8e084d638@XCH-ALN-003.cisco.com>
From: Lishan Li <lilishan48@gmail.com>
Date: Thu, 28 Jul 2016 16:35:34 +0800
Message-ID: <CAJ3w4NcjQDWMM74T5cGwrQ__EGyAikDxMxZrYh45z4=0UkUFEw@mail.gmail.com>
To: "Bernie Volz (volz)" <volz@cisco.com>
Content-Type: multipart/alternative; boundary="001a113771588d3cb90538ae044f"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dhcwg/Kv-1oPjShoC6upZ4iSjOJNBUkK4>
Cc: "dhcwg@ietf.org" <dhcwg@ietf.org>, "draft-ietf-dhc-sedhcpv6@ietf.org" <draft-ietf-dhc-sedhcpv6@ietf.org>
Subject: Re: [dhcwg] Review of draft-ietf-dhc-sedhcpv6-13
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: <dhcwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dhcwg/>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 28 Jul 2016 08:35:39 -0000
Dear Bernie, Thanks a lot for your throughout review and comments. For the details, please see inline (start with LS). Best Regards, Lishan 2016-07-26 3:04 GMT+08:00 Bernie Volz (volz) <volz@cisco.com>: > > - Note: We may want to discuss whether the other options related > to requesting the certificate option should or should not be in the ORO > (i.e., signature). I don’t have a problem either way but we should probably > be consistent with whatever we end up in 3315bis about which options should > be in the ORO and which should not. > [LS]: I have discussed this issue with Jinmei. We think that if the certificate option is contained, then the signature and Increasing-Num are also contained. So there is no need to contain the code of signature option and Increasing-Num option in ORO. But according to 3315-bits, "Other top-level Options MUST appear in the Option Request option or the will not be sent by the server". The code of signature option and Increasing-Num should be contained in the ORO. Looking forward to your further comments. > - Is the “If the hash algorithm field is zero, the signature > algorithm and hash algorithm are not separated” clear enough? I’m not > exactly sure myself what this means exactly. > [LS]: How about the following sentences: “If the hash algorithm is zero, then the case indicates that used hash algorithm is decided by the corresponding signature algorithm". Sorry for my not clear expression. Ted have modified the contents of section 1 - section 5. He will modify the remaining sections if he has free time. > - “The message transaction-id is used as the identifier” … what > exactly does this mean? Do future Encrypted-Query message (and hence > Encrypted-Response) use this same transaction-id? Or how is this used? > [LS]: Yes, we think the Encrypted-Query and Encrypted-Response message will use the same transaction-id. Because the client may have multiple public/private key pairs, the transaction-id is used as identifier for the client's private key to decrypt the message. In addition, the transaction-id is also used as identifier for the server's public key to encrypt the message. > - On storage of the increasing-number option, I would expect > that the client (and server) must keep track of this on a per server (per > client) basis? So, a client perhaps should keep a record of this “forever”, > but how should servers manage this? When can they forget this information > (when all leases have expired)? Or do they need to keep this for a period? > [LS]: In our document, the server first sends the Increasing-Num option to the client. So I think that the server should keep a record of this "forever". When the transaction between the client and server is finished, the client can forget the information. > - This is perhaps an issue for section 9.1.3, but I would think > a 64-bit value would be better for the Increasing Number option? And, > should this be modulo 2^32 (or 2^64) check to see if the current number if > “higher” than the previous? Otherwise, what happens if the number wraps > around? > [LS]: If the server keeps a record of the increasing number, I also think 64-bit value would be better. And module 2^64 check is also needed. Thanks for your valuable comments. > - For sentence at end of paragraph on page 9, “If contained > number is lower than the stored number on the server, the server MUST drop > the DHCPv6 message”. This section is all about client behavior, so should > this server processing be in elsewhere (or was this supposed to say client, > not server)? Perhaps the how each (client or server) handles this > increasing number option can be more generic and moved to a separate > section (perhaps with the option definition)? You could then say client (or > server) does increasing number check as documented in section 9.1.3? > [LS]: Thanks! Will adopt your suggestion. > - On page 10, 2nd paragraph. It is a bit odd for the server to > send an ORO to the client. While the server can do that in a Reconfigure, > it is not generally expected in a Reply. We should consider this carefully > and it may be better to have the server send back a specific option (Client > Certificate Request or something like that)? > [LS]: Stephen suggested us that client authentication should be optional. So I think that it is better to indicate whether client authentication is needed in Reply message. So you mean that we define a new option to specify the request of client certificate option? How about the following process method: The server does not specify the request of client's certificate. And all the clients sends certificates to the server. If client authentication is necessary, then the server check it. If client authentication is not necessary, then the server drops the receiving certificate information. > - On page 10, 3rd paragraph. See earlier about transaction-id > and how this is used. > [LS]: Please see earlier reply. > Section 9.1.2 > > - Perhaps more should be said as to how signature of message is > created (signature field set to all 0’s when generating and validating)? > [LS]: For the format of encrypted message format, we have added reference of RFC5652 which defines the creation method of signature and other content of encrypted message. > - I think note about Authentication option in 3315 could be > dropped (given that 3315bis has removed that)? There might be a question as > to whether to “update” RFC 3315bis to say that if seDHCPv6 is used, the > Reconfigure Key Authentication Protocol SHOULD or SHOULD NOT (?) be used. > Perhaps there is also some work needed to define how Reconfigure is sent > when seDHCPv6 is being used? After all, it would be nice to make use of > this to secure it better. > [LS]: In this document, we states that "Authentication option SHOULD NOT be used if secure DHCPv6 is applied." The statement that How Reconfigure should be used needs to be added. > Section 9.1.3 > > - I think using OPTION_INCREASING_NUM[BER] would be better (add > underscore is most important). This will use more consistent naming with > current options. > [LS]: Agree. Will adopt your suggestion. > - Again see earlier for comments regarding: > > o Number of bits (consider 64) > > o How to compare (modulo 2^32 or 2^64 comparison to allow for > rollover). See TCP RFC (793) section 3.3. > [LS]: Thanks a lot for the given reference. Will modify the check method according to the reference. > Section 9.2 > > - See earlier about my comments about transaction-id and what > this means and how it is used for this message as I think it is a bit more > involved than normal? > > - Options field – I think “or” is wrong here and you want and > (Server Identifier Option AND Encrypted-message)? This might be too simple > a rewrite as it MUST contain the Encrypted-message option and MUST contain > the Server Identifier if the message in the Encrypted-message option has a > Server Identifier option – when sent from Client). > [LS]: Will modify it. > Other items: > > - As mentioned for 9.1.2, adding something about how > server/client deal with Reconfigure would be useful. > [LS]: Will add it. > - Clarifying whether Rebind can use seDHCPv6 or not would be > good? And how this is done (or not done)? It might be that when using this, > one is stuck with Renew or having to return to Solicit instead of using > Rebind? > [LS]: Whether return to Solicit or Rebind message, the returned message can only be decrypted with the selected server(s). So the change to RFC3315 is that solicit and rebind messages can only be sent to the selected server. > And finally … the text in the -12 (or was it -11) was more descriptive as > to how the client especially should behave. While I think that was probably > over specified, it now seems that perhaps it is a bit under specified > (section 6)? > [LS]: Sorry for my not clear expression. Other author will modify it. Thanks again. Best Regards, Lishan
- [dhcwg] Review of draft-ietf-dhc-sedhcpv6-13 Bernie Volz (volz)
- Re: [dhcwg] Review of draft-ietf-dhc-sedhcpv6-13 Lishan Li