IETF Logo Mail Archive

Re: [dhcwg] Citing 'draft-ietf-dhc-secdhcpv6' (rfc3315bis)

Ted Lemon <mellon@fugue.com> Wed, 24 August 2016 15:33 UTC

Return-Path: <mellon@fugue.com>
X-Original-To: dhcwg@ietfa.amsl.com
Delivered-To: dhcwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0931A12DEF4 for <dhcwg@ietfa.amsl.com>; Wed, 24 Aug 2016 08:33:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eP0ble2WT4W9 for <dhcwg@ietfa.amsl.com>; Wed, 24 Aug 2016 08:33:29 -0700 (PDT)
Received: from mail-qk0-x22f.google.com (mail-qk0-x22f.google.com [IPv6:2607:f8b0:400d:c09::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F229C12DE79 for <dhcwg@ietf.org>; Wed, 24 Aug 2016 08:23:37 -0700 (PDT)
Received: by mail-qk0-x22f.google.com with SMTP id z190so18138434qkc.0 for <dhcwg@ietf.org>; Wed, 24 Aug 2016 08:23:37 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20150623.gappssmtp.com; s=20150623; h=mime-version:subject:from:in-reply-to:date:cc:message-id:references :to; bh=H5XwkNMskytQU2vqWkqNogtPdb+AYsBQI3rmUzVrLPY=; b=PGyVUYcMrZUeMxHMbhxfZzvphaxLfE4IsGwiu2PG9UUwNKt7mT92ICi66FSchx/TcG BPGTRKF2UP63HURK2HBbSDQ9Y9TCtySaSqwv9AENu5CUTsW42LtgPP2ow6c5vBWB5FC1 YCUJKwYYuzG+ZN7nc3wDahCSw2A9GYzdVv5dADTJSp3wgP0fHW9wgjGng8FScAR1rZAr T25mVCeHy1ex17Qk0Yrw4itDXOWGoRBkMW1T3vN5zpLlyggftukhBWsgkzvv48YYzH9n cwmXrxatRLBXFiSTW+CZ/xsdHiSA2/L0mGFWgPNhCixzoJw497fSq62O2pK1xF7gGtBG xCZg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :message-id:references:to; bh=H5XwkNMskytQU2vqWkqNogtPdb+AYsBQI3rmUzVrLPY=; b=Gwyf7R6f8JVCGjGYqxQs+mnVhupVYEpwudHGJgE0oTckSHx4EgaEgEA4FjSEXP2pi8 ZaAAVBntPDkNfbHV0jdon0HHHed0/HCWpxZf9gb/tJEkf5d2m8HFWQgxGC950fQmM4J+ xABCykvnl2w3QyoY4GsR/+SNPkFQDCBRCdnP9H2Q7o0jKiapbxp7E+/Jk8Cv1L8fO6wl i79+G0dFnHcmmMPzO7g8QOETfpQ76cQUNDhZUn1VprFZEa6g19Og0rj2Txxvu9o8Bm13 pZAptvqlZyVqKOUJXOFkzUWQtR/MDhLh6DK7VSpv1PjjQTGmW18mv9NqeR4lF3JQSzoi SaWQ==
X-Gm-Message-State: AE9vXwNb2oyP3EkivrFLXANkVslyMumjBkkc2tpxc64+Eo1cYWNdaH06Dho6VRct8x5yLA==
X-Received: by 10.55.109.195 with SMTP id i186mr4019406qkc.3.1472052216967; Wed, 24 Aug 2016 08:23:36 -0700 (PDT)
Received: from [10.0.20.218] (c-71-233-41-235.hsd1.nh.comcast.net. [71.233.41.235]) by smtp.gmail.com with ESMTPSA id l42sm4912759qtb.43.2016.08.24.08.23.34 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Wed, 24 Aug 2016 08:23:35 -0700 (PDT)
Content-Type: multipart/alternative; boundary="Apple-Mail=_09CA0AAB-0134-4D9C-BADD-30A6BCDF989D"
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
From: Ted Lemon <mellon@fugue.com>
In-Reply-To: <2f45b99b50f84b1280e92ad824e39e26@XCH15-05-05.nw.nos.boeing.com>
Date: Wed, 24 Aug 2016 11:23:33 -0400
Message-Id: <9E9A9543-ECB0-4D99-A00F-1AAD813B6522@fugue.com>
References: <92dcf2e0cf08452caa5861f7258ea6c5@XCH15-05-05.nw.nos.boeing.com> <201608121919.u7CJJqcS056876@givry.fdupont.fr> <c5303eef3c124228825f32a40f229107@XCH-ALN-003.cisco.com> <ccaff4d4cb5c4eefb05eee0660c2611c@XCH15-05-05.nw.nos.boeing.com> <f46aa91e4cfb41b29dd2d8186f5959f8@XCH-ALN-003.cisco.com> <ba1c8ff573d7466b8c437373e05f1023@XCH15-05-05.nw.nos.boeing.com> <b65e1dd66b634240b3ca164b2c04c20a@XCH15-05-05.nw.nos.boeing.com> <CAJE_bqfb5sxOpkTEXkwZXckKBWof7U1-W6EFzCHk7ijnMjpMMA@mail.gmail.com> <5ec83aaf4e76497aa4b4d465483bdcf5@XCH15-05-05.nw.nos.boeing.com> <CAJE_bqeKqEgLVC2ZZyUCjsrPP5_suRJ8en2NC+g13Q5PyQL1iw@mail.gmail.com> <30c9413c4662476096ef087ac88f6314@XCH-ALN-003.cisco.com> <dc9d2c300d574732a12f7f366f6223c0@XCH15-05-11.nw.nos.boeing.com> <3A5F0B79-8C76-4E82-97E9-FA63657DE6C3@cisco.com> <CAJ3w4NdjgVxvnvuaWjGM=qtOe0qUq4N96fVXsbNrf=YkhiABbQ@mail.gmail.com> <2f45b99b50f84b1280e92ad824e39e26@XCH15-05-05.nw.nos.boeing.com>
To: "Templin, Fred L" <Fred.L.Templin@boeing.com>
X-Mailer: Apple Mail (2.3124)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dhcwg/jC4gU0yuJkqB0SBs0F4NUtHUzXQ>
Cc: "<dhcwg@ietf.org>" <dhcwg@ietf.org>
Subject: Re: [dhcwg] Citing 'draft-ietf-dhc-secdhcpv6' (rfc3315bis)
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: <dhcwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dhcwg/>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Aug 2016 15:33:35 -0000

Can you cite some evidence to show that AERO will be a common use case for DHCPv6?

As for the AERO encryption problem, I assume it’s that you want some data that’s in the encrypted part of the packet.   The solution is to send that data in the relay agent portion of the packet, since presumably it’s the relay agent that’s going to consume it.

This is a problem that needs to be solved anyway in order for secure DHCPv6 to work in general.   If we were to solve that problem, would it address your concern?

> On Aug 24, 2016, at 11:03 AM, Templin, Fred L <Fred.L.Templin@boeing.com> wrote:
> 
> I have presented a use case (AERO) that needs DHCPv6 authentication but
> not encryption, and I have stated that encryption will be incompatible with
> my use case. Bernie mentioned another use case that will be incompatible.
>  
> As far as I can tell, AERO will be one of the most important use cases for
> DHCPv6, and also as far as I can tell secdhcpv6 could easily be relaxed to
> satisfy the need. So, drawing a hard line like this is essentially blocking an
> important use case for no good reason. Is that really what people want?
>  
> Thanks – Fred
> fred.l.templin@boeing.com <mailto:fred.l.templin@boeing.com>
>  
> From: Lishan Li [mailto:lilishan48@gmail.com <mailto:lilishan48@gmail.com>] 
> Sent: Tuesday, August 23, 2016 8:40 PM
> To: Bernie Volz (volz) <volz@cisco.com <mailto:volz@cisco.com>>
> Cc: Templin, Fred L <Fred.L.Templin@boeing.com <mailto:Fred.L.Templin@boeing.com>>; <dhcwg@ietf.org <mailto:dhcwg@ietf.org>> <dhcwg@ietf.org <mailto:dhcwg@ietf.org>>; Francis Dupont <Francis.Dupont@fdupont.fr <mailto:Francis.Dupont@fdupont.fr>>; 神明達哉 <jinmei@wide.ad.jp <mailto:jinmei@wide.ad.jp>>
> Subject: Re: [dhcwg] Citing 'draft-ietf-dhc-secdhcpv6' (rfc3315bis)
>  
> Hi, Fred,
>  
> In the Applicability part of secure DHCPv6, it is stated that: secure DHCPv6 is applicable in any environment where physical security on the link is not assured and attacks on DHCPv6 are a concern.
> In addition, after the discussion in Yokohama, we have reached a consensus that: Given the focus on pervasive monitoring, all encrypting is the correct direction.
>  
>  
> Best Regards,
> Lishan
>  
> 2016-08-24 5:55 GMT+08:00 Bernie Volz (volz) <volz@cisco.com <mailto:volz@cisco.com>>:
> My point is that we will need to develop a solution for this (i.e. something like the referenced draft); not that this should change sedhcpv6 work.
> 
> Given the focus on pervasive monitoring, encrypting is the correct direction.
> 
> - Bernie (from iPhone)
> 
> > On Aug 23, 2016, at 1:15 PM, Templin, Fred L <Fred.L.Templin@boeing.com <mailto:Fred.L.Templin@boeing.com>> wrote:
> >
> > Hi Bernie,
> >
> >> Note that encryption will cause significant issues for DOCSIS and likely other deployments where the relay currently snoops the traffic.
> >
> > This is exactly the case for AERO, i.e., the relay snoops the traffic which
> > must be available in the clear.
> >
> > So, authentication-only is what is needed. And, it does not need to have
> > anything added to the spec - only a relaxation of what is already there.
> >
> > Thanks - Fred
> > fred.l.templin@boeing.com <mailto:fred.l.templin@boeing.com>
> >
> >> -----Original Message-----
> >> From: Bernie Volz (volz) [mailto:volz@cisco.com <mailto:volz@cisco.com>]
> >> Sent: Friday, August 19, 2016 6:38 AM
> >> To: 神明達哉 <jinmei@wide.ad.jp <mailto:jinmei@wide.ad.jp>>; Templin, Fred L <Fred.L.Templin@boeing.com <mailto:Fred.L.Templin@boeing.com>>
> >> Cc: <dhcwg@ietf.org <mailto:dhcwg@ietf.org>> <dhcwg@ietf.org <mailto:dhcwg@ietf.org>>; Francis Dupont <Francis.Dupont@fdupont.fr <mailto:Francis.Dupont@fdupont.fr>>
> >> Subject: RE: [dhcwg] Citing 'draft-ietf-dhc-secdhcpv6' (rfc3315bis)
> >>
> >>> so not very convincing to overturn a wg consensus on always enabling encryption
> >>
> >> Agreed. We held discussions with others (Randy Busy, etc.) and are under the belief that what is there is in the right direction. This is
> >> an overall solution to the DHCP security solution and tries to address FULL security (as the traffic is encrypted - so it addresses privacy).
> >>
> >> I'm not sure if encryption harms anything in  your environment; so what harm is there to use it?
> >>
> >> Note that encryption will cause significant issues for DOCSIS and likely other deployments where the relay currently snoops the traffic.
> >> So, we'll need to address how to handle that (either dust of the https://tools.ietf.org/html/draft-ietf-dhc-dhcpv6-agentopt-delegate <https://tools.ietf.org/html/draft-ietf-dhc-dhcpv6-agentopt-delegate>
> >> work or come up with something else). Until something else is in place, those environments just can't make use of this capability.
> >>
> >> - Bernie
> >>
> >> -----Original Message-----
> >> From: jinmei.tatuya@gmail.com <mailto:jinmei.tatuya@gmail.com> [mailto:jinmei.tatuya@gmail.com <mailto:jinmei.tatuya@gmail.com>] On Behalf Of ????
> >> Sent: Thursday, August 18, 2016 6:54 PM
> >> To: Templin, Fred L <Fred.L.Templin@boeing.com <mailto:Fred.L.Templin@boeing.com>>
> >> Cc: <dhcwg@ietf.org <mailto:dhcwg@ietf.org>> <dhcwg@ietf.org <mailto:dhcwg@ietf.org>>; Francis Dupont <Francis.Dupont@fdupont.fr <mailto:Francis.Dupont@fdupont.fr>>; Bernie Volz (volz) <volz@cisco.com <mailto:volz@cisco.com>>
> >> Subject: Re: [dhcwg] Citing 'draft-ietf-dhc-secdhcpv6' (rfc3315bis)
> >>
> >> At Thu, 18 Aug 2016 22:42:38 +0000,
> >> "Templin, Fred L" <Fred.L.Templin@boeing.com <mailto:Fred.L.Templin@boeing.com>> wrote:
> >>
> >>> Hi, I already made a stronger case as follows:
> >>>
> >>>> I think what that means in terms of this draft is that for some use cases all
> >>>> that is needed is for the client to include a Signature option in its DHCPv6
> >>>> messages to the server. The client does not need to include a Certificate
> >>>> option nor any encryption options. So, I would like it if the draft could
> >>>> include a simple "authentication only" mode of operation.
> >>
> >> To me, it just looks like "in some cases encryption may not be needed"
> >> and not so different from "it's overkilling for me", so not very
> >> convincing to overturn a wg consensus on always enabling encryption.
> >> But it's ultimately up to the wg.
> >>
> >> --
> >> JINMEI, Tatuya
> 
> _______________________________________________
> dhcwg mailing list
> dhcwg@ietf.org <mailto:dhcwg@ietf.org>
> https://www.ietf.org/mailman/listinfo/dhcwg <https://www.ietf.org/mailman/listinfo/dhcwg>
>  
> _______________________________________________
> dhcwg mailing list
> dhcwg@ietf.org <mailto:dhcwg@ietf.org>
> https://www.ietf.org/mailman/listinfo/dhcwg <https://www.ietf.org/mailman/listinfo/dhcwg>

v2.23.0 | Report a Bug | By Email