IETF Logo Mail Archive

Re: [dhcwg] WGLC on draft-ietf-dhc-anonymity-profile-03 - Respond by Sept. 22, 2015

"Bernie Volz (volz)" <volz@cisco.com> Tue, 22 September 2015 18:00 UTC

Return-Path: <volz@cisco.com>
X-Original-To: dhcwg@ietfa.amsl.com
Delivered-To: dhcwg@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 098841A923D for <dhcwg@ietfa.amsl.com>; Tue, 22 Sep 2015 11:00:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.511
X-Spam-Level:
X-Spam-Status: No, score=-14.511 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cVmoNy5Sl8HV for <dhcwg@ietfa.amsl.com>; Tue, 22 Sep 2015 11:00:22 -0700 (PDT)
Received: from alln-iport-8.cisco.com (alln-iport-8.cisco.com [173.37.142.95]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6E99C1A92BB for <dhcwg@ietf.org>; Tue, 22 Sep 2015 11:00:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=7764; q=dns/txt; s=iport; t=1442944822; x=1444154422; h=from:to:subject:date:message-id:references:in-reply-to: content-id:content-transfer-encoding:mime-version; bh=4AklzadeMb2qQ0sJoJSiZ6l5MAyoE7PQG7vxhr844eY=; b=WoAfyJSaAxDua4X2PRjBFD1GmXv9DzfKA5DdmE3oQD1MHU4ZtZMNHXpq dlEFXeKN8HwaceP0qJc0niEmitsL/QTHwi94SC1yfFfM8zFvQzvXOohoN 8Yu7sm0XVgnzTtjfa/UGXYi4DkMjxqQjlbBCbLMZYdigLrJCOrCKlha3u s=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0DvAQAzlgFW/5RdJa1dgySBPQa9VAENh3MCHIEuOBQBAQEBAQEBgQqEJQEBBCMRVQIBCBgCAiYCAgIwFRABAQQBEogutwyUHAEBAQEBAQEBAgEBAQEBAQEbgSKKToE9gwUYOoJpgUMFhXyBNIZ9hzoBhXeHEYFOh1eJQ4ROg2wBHwEBQoIRDQ8WgT5xiCUGHh+BBQEBAQ
X-IronPort-AV: E=Sophos;i="5.17,574,1437436800"; d="scan'208";a="190614827"
Received: from rcdn-core-12.cisco.com ([173.37.93.148]) by alln-iport-8.cisco.com with ESMTP; 22 Sep 2015 18:00:21 +0000
Received: from XCH-ALN-004.cisco.com (xch-aln-004.cisco.com [173.36.7.14]) by rcdn-core-12.cisco.com (8.14.5/8.14.5) with ESMTP id t8MI0LQC011815 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 22 Sep 2015 18:00:21 GMT
Received: from xch-aln-003.cisco.com (173.36.7.13) by XCH-ALN-004.cisco.com (173.36.7.14) with Microsoft SMTP Server (TLS) id 15.0.1104.5; Tue, 22 Sep 2015 13:00:20 -0500
Received: from xch-aln-003.cisco.com ([173.36.7.13]) by XCH-ALN-003.cisco.com ([173.36.7.13]) with mapi id 15.00.1104.000; Tue, 22 Sep 2015 13:00:20 -0500
From: "Bernie Volz (volz)" <volz@cisco.com>
To: Christian Huitema <huitema@microsoft.com>, Marcin Siodelski <msiodelski@gmail.com>, "dhcwg@ietf.org" <dhcwg@ietf.org>
Thread-Topic: [dhcwg] WGLC on draft-ietf-dhc-anonymity-profile-03 - Respond by Sept. 22, 2015
Thread-Index: AdDlyAO0GXOgr/XUSsKQ4YsaI6PbBQPapmaAAArTFLAAAr/fgA==
Date: Tue, 22 Sep 2015 18:00:20 +0000
Message-ID: <D2270E8B.152B5%volz@cisco.com>
References: <489D13FBFA9B3E41812EA89F188F018E1CC661A4@xmb-rcd-x04.cisco.com> <56014A25.2000209@gmail.com> <DM2PR0301MB0655D32090ACD7BD0C308B33A8450@DM2PR0301MB0655.namprd03.prod.outlook.com>
In-Reply-To: <DM2PR0301MB0655D32090ACD7BD0C308B33A8450@DM2PR0301MB0655.namprd03.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/14.5.5.150821
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.131.78.43]
Content-Type: text/plain; charset="utf-8"
Content-ID: <A6CE5AFB3D6B874296DF4221665BCC88@emea.cisco.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/dhcwg/RhRs9ujla91EYAmGawa5earpdrA>
Subject: Re: [dhcwg] WGLC on draft-ietf-dhc-anonymity-profile-03 - Respond by Sept. 22, 2015
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <dhcwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dhcwg/>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 22 Sep 2015 18:00:26 -0000

>I have no problem applying these changes, but
>I have a process question for Bernie. Do we
>want to apply changes before or after the
>WGLC concludes?


As comments are ideally supposed to be in by end of today (for anywhere on
Earth I assume), there isn’t much time left and starting on an update is
fine (I would wait to publish until tomorrow at the minimum).

It is always possible that more comments may arrive “later”, but that will
likely happen during final shepherd review, AD review, and IESG review
anyway.

- Bernie


On 9/22/15, 1:54 PM, "Christian Huitema" <huitema@microsoft.com> wrote:

>On Tuesday, September 22, 2015 5:32 AM, Marcin Siodelski wrote:
>> 
>> I have read the version -03 of the document and I support it move
>>forward.
>> However, I have some issues, which are mostly repeating what I have
>>said in my
>> previous review from July 22nd, 2015.
>
>Thanks for the comments. I thought that I applied your July 22
>suggestions, but obviously I missed some.
>
>> 3. Anonymity profile for DHCPv4
>> Normative language needs cleanup in this section.
>> 
>> - all messages MUST contain the appropriate Message Type. In the text
>> DHCPDISCOVER MUST contain Message Type, other messages SHOULD contain
>> Message Type. This is wrong.
>> 
>> - Similar applies to the client identifier. I think that in all cases
>>the client SHOULD
>> send it (there may be cases when the client doesn't send it though).
>>Therefore,
>> the DHCPDISCOVER case should not mandate client identifier, as it does
>>now.
>> 
>> - I wonder if there is any reason to state that the client SHOULD
>>include
>> Parameter Request List option? The RFC2131 says it MAY. So, if the
>>client is not
>> interested in receiving any options why SHOULD? And why MUST in the
>> DHCPDISCOVER case.
>> 
>> It also seems that you should probably replace DISCOVER with
>>DHCPDISCOVER,
>> REQUEST with DHCPREQUEST and so on. They are the proper names for the
>> messages.
>
>I have no problem applying these changes, but I have a process question
>for Bernie. Do we want to apply changes before or after the WGLC
>concludes?
>
>> 3.3. Requested IP address option
>> 
>> "There are scenarios in which a client connects to a network when a
>>lease is still
>> valid".
>> 
>> I think this is to address the INIT-REBOOT case when the client wakes
>>up and
>> sends Requested IP address option in the DHCPREQUEST message to obtain
>>the
>> same address. That's ok, but I think it should be referred to as
>>INIT-REBOOT
>> state because it is a naming convention from RFC2131.
>> Secondly, I guess the lease may not really be valid when the client
>>issues the
>> DHCPREQUEST in the INIT-REBOOT state. It may have expired (possibly
>>short
>> time ago) but the client will try to reclaim this lease anyway, and
>>maybe the
>> server can still hand it out. So, it would be probably better to say
>>that
>> 
>> "There are scenarios in which a client connecting to a network remembers
>> previously allocated address, i.e. is in the INIT-REBOOT state."
>
>We can certainly replace the current text:
>
>"There are scenarios in which a client connects to a network when a lease
>is still valid".
>
>By Marcin's suggested text:
>
>"There are scenarios in which a client connecting to a network remembers
>previously allocated address, i.e. is in the INIT-REBOOT state."
>
>Unless there are objections. Marcin, does the INIT-REBOOT use case covers
>the case of "Wi-Fi roaming to a different AP in the same network?"
>
>> 4.4.1. Obtain temporary addresses
>> 
>> Some of my concerns sent in the previous review were not addressed. I
>>think I
>> don't understand how the section about temporary addresses fits into the
>> principle guideline to randomize link layer addresses. In particular,
>>this section
>> discusses replacing IAID to get the new address, while preserving an
>>old address.
>> If the new address is successfully assigned, the old address can be
>>released or
>> left to time out. In any case, the client seems to be using the same
>>MAC address
>> while this transition to the new IAID takes place, so the DHCP server
>>would be
>> able to correlate the old address with the new address. Is this the
>>intent? Is it
>> just giving the hint how to obtain IA_TA-like behavior independently
>>from the
>> randomization of the MAC address?
>> 
>> In other words, if I am implementing a client with the anonymity profile
>> enabled, would I randomize MAC address, MAC address and IAID, or I'd
>>make it
>> an option in the device?
>	
>For "normal" addresses, the behavior is clear: random MAC, MAC dependent
>DUID, random IAID, new addresses that cannot be traced to a previous
>connection with a different MAC. This is what we have implemented.
>
>I must say that our team did not implement the temporary address section
>of the draft. When it comes to temporary addresses, we only have
>experience with the SLAAC + DHCPv6 INFORM, not with stateful DHCPv6.
>
>> Also, why is reference to the Section 4.4. specifically important:
>> 
>> "This, along with the mitigation technique discussed in Section 4.4,
>>will ensure
>> that a client will get a new address that can be renewed...."
>> ?
>> 
>> Randomizing the IAID doesn't imply randomizing MAC address, so I don't
>> understand why it has been mentioned here.
>
>The IAID is an identifier, or can be used as an identifier. So it is
>important to prevent usage of the IAID for correlating two different MAC
>Addresses used in two different sessions.
>
>-- Christian Huitema
>
>

v2.23.0 | Report a Bug | By Email