IETF Logo Mail Archive

Re: [dispatch] DISPATCH IETF 111 meeting - preliminary outcomes and draft minutes

Richard Barnes <rlb@ipv.sx> Wed, 28 July 2021 17:26 UTC

Return-Path: <rlb@ipv.sx>
X-Original-To: dispatch@ietfa.amsl.com
Delivered-To: dispatch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E35753A192A for <dispatch@ietfa.amsl.com>; Wed, 28 Jul 2021 10:26:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.895
X-Spam-Level:
X-Spam-Status: No, score=-1.895 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=ipv-sx.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id htje3GHSmx43 for <dispatch@ietfa.amsl.com>; Wed, 28 Jul 2021 10:26:20 -0700 (PDT)
Received: from mail-qk1-x730.google.com (mail-qk1-x730.google.com [IPv6:2607:f8b0:4864:20::730]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EC9333A192E for <dispatch@ietf.org>; Wed, 28 Jul 2021 10:26:19 -0700 (PDT)
Received: by mail-qk1-x730.google.com with SMTP id 184so3011361qkh.1 for <dispatch@ietf.org>; Wed, 28 Jul 2021 10:26:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ipv-sx.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=JXThm+3TytaPxZ3+/98vLWjfBHBTHWbxKatz74ZD3cg=; b=FiNY9l71Q+619EY2W2ODMk+FR4uYGERiItRyd3aRPnlK4DO0dFO10rBNhibCkhZFhH pmnpg05n+3wOYYdtboePP7dOa7M84bGh2rZvFzpGKatuYKIUN4Zm61Q/KPM6NjyOgQIg Ge0ZkOHyBnQwzQ5q0cvLZPNj8YYm6VYK6sSHwrk+hCuXTGapI+b29iPs9ScnwguNMKyC bDa6WWVXhGPb2i6MrrZD/v74qIFmJkv+pnXB/ekm6Kh3nkiq4OmuP190ARjQ2HXJJOYc v2JVKTNyBRzqkzQ0lZjRGHOnXvLON+9sQBPs8L34iwcxPd6KrCxkY24X4sT3UCtrhDaX hYmQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=JXThm+3TytaPxZ3+/98vLWjfBHBTHWbxKatz74ZD3cg=; b=BpDPKRLvRhCmWKf1KLjT4z3ogEf/Unlv048BUgJEZM+EY8eE3YwE3I+IFfo+CkAye7 +yqw7X4f/JwQqIMUxAU5CTeoYapTMAfrVbgiZE1/h21oTgvPs9zGZtNCEKNAeJM4BiVb 9k9XkNIWRjhtLpivTCAP3/TbQLG2iUVmv1XscqDtMheERCsGcBti1mZvcR9O06asJnRR 0LkwfybX83DX8jOCqk00uX1Uo9OR7jiSaU5KqvdbOmWwY/Q9Vo8PNI4v4FoqJW5OBw4Z t9s1b9Tzdi0a9U3cFW0vfmjrMwFWWbdtl50qBZOrUbfWLBUhbOKUo1lsD70vjxhP7l2+ pEew==
X-Gm-Message-State: AOAM531/ZTq1pO67I5EtjTxnAQXLAomXxV/aHbW/ZXCiidmEYZwzANc9 HdgP1oqKiep5eU1roKxsZXx9KDFoKDK1UY/ZPYcv7c4rLWYREw==
X-Google-Smtp-Source: ABdhPJwxupbkKTL0yVWj4ezw0Shotiz9VQlbz5ACndeBo/osgFgw9zR4grvKF6dMChOmE43rgh/1LlbsCllYLGCi/VE=
X-Received: by 2002:a37:aa57:: with SMTP id t84mr723305qke.371.1627493177953; Wed, 28 Jul 2021 10:26:17 -0700 (PDT)
MIME-Version: 1.0
References: <HE1PR0701MB30504412F0FCC7C14E2D504289E99@HE1PR0701MB3050.eurprd07.prod.outlook.com>
In-Reply-To: <HE1PR0701MB30504412F0FCC7C14E2D504289E99@HE1PR0701MB3050.eurprd07.prod.outlook.com>
From: Richard Barnes <rlb@ipv.sx>
Date: Wed, 28 Jul 2021 13:26:06 -0400
Message-ID: <CAL02cgTbvk4ns8PxX_h0UuuGMUZ1g-YyuyWy=QR56RwzcHXPmQ@mail.gmail.com>
To: John Mattsson <john.mattsson=40ericsson.com@dmarc.ietf.org>
Cc: "dispatch@ietf.org" <dispatch@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000bf2be505c8324805"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dispatch/HJEMVJjB-4jc0ByjDvhbTJTEDEQ>
Subject: Re: [dispatch] DISPATCH IETF 111 meeting - preliminary outcomes and draft minutes
X-BeenThere: dispatch@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: DISPATCH Working Group Mail List <dispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dispatch>, <mailto:dispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dispatch/>
List-Post: <mailto:dispatch@ietf.org>
List-Help: <mailto:dispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dispatch>, <mailto:dispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 28 Jul 2021 17:26:25 -0000

I hate sending symmetric keys around as much as the next person.  But we
should be pragmatic here.

The situation with SDES is unlike the situation with a bunch of the other
deprecations we have done recently (SSLv3, TLS 1.0).  There, the protocol
was broken, in the sense that it does not provide the guarantees that it is
supposed to provide.  Here, SDES still does what it says on the label, just
like it always has; we’re just increasingly grumpy about that model and
there are somewhat better alternatives.

Note “somewhat” — DTLS-SRTP is only better than SDES to the extent that the
certificates in the DTLS exchange are verified independent of the signaling
path.  If you rely only on the fingerprint in SDP for authentication, then
an SDP-path entity can swap out fingerprints to intercept get keys just as
well as with SDES.  (At best, this swaps an active for a passive attack,
which is not nothing, but not a huge step.)  We do have mechanisms for such
verification, but they’re not widely deployed.

All of which tells me that there's not an urgent need for action here.
SDES is not a looming threat to the Internet.  In the many deployments
where it is used, it still does what it claims to do, and people have
accommodated that into their broader system models.  Even if there were to
be a mass migration to DTLS-SRTP, the actual security benefit for all that
work would be fairly minor until we do a lot more work to solve the
authentication problems.

So if folks want to make a bigger, scarier warning label to put on SDES to
guide people away from it, sure, fine.  But it doesn’t seem like a blaring
red warning light is called for.  In terms of this document, the content is
probably mostly OK if we reframe it in that light.  Obsoleting SDES and
marking it Historic, though, is over the top; it will just create
unnecessary consternation.

--Richard

On Tue, Jul 27, 2021 at 7:08 PM John Mattsson <john.mattsson=
40ericsson.com@dmarc.ietf.org> wrote:

> westhawk thp@westhawk.co.uk wrote:
>
>
>
> >> On 26 Jul 2021, at 23:30, Kirsty P <Kirsty.p=40ncsc.gov.uk@dmarc.ietf.org> <&lt;Kirsty.p=40ncsc.gov.uk@dmarc.ietf.org&gt;> >wrote:
>
> >>
>
> >> SDP Security Descriptions is NOT RECOMMENDED and Historic: consensus was >sub-optimal. There was support for revisiting the space currently standardised >by SDP, but not on direction (whether to do a deprecation with/without >replacement). Future paths suggested included: mmusic, a new WG, more work >required for it to be ready, or a BoF (said in chat) to vet the idea further.
>
> >My sense is that there was a rough consensus around a goal to make it possible >to deprecate SDES - but the required steps were unclear.
>
>
>
> Yes, looking at the Jabber log there was quite strong support for the goal
> of deprecating SDES:
>
>
>
> Eric Rescorla: Let's all just agree that this (Mattson's SDES) draft is a
> good idea and promote it to full standard toda
> Martin Thomson: now that I see John presenting this, I have to wonder: why
> didn't this deprecation happen before?
> Sean Turner: When Dan Wing got up and said not to use SDES in Berlin - I
> assumed that was that ;)
> Pete Resnick: Why "NOT RECOMMENDED" instead of "MUST NOT"?
> Sean Turner: +1 to what ekr said
> Rich Salz: +1 also
>
>
>
>
>
> Regarding the next required steps I agree with Pete. Let’s charter.
>
>
>
> Ben Kaduk: So is this dispatch to BoF, or straight to WG?
>
> Pete Resnick: @ben: Sounds like this discussion has done the equivalent
> of BoFing. Charter.
>
>
>
> Cheers,
>
> John
> _______________________________________________
> dispatch mailing list
> dispatch@ietf.org
> https://www.ietf.org/mailman/listinfo/dispatch
>

v2.23.0 | Report a Bug | By Email