IETF Logo Mail Archive

Re: [dnssd] draft-ietf-dnssd-requirements-04

"Hosnieh Rafiee" <ietf@rozanak.com> Sat, 01 November 2014 08:22 UTC

Return-Path: <ietf@rozanak.com>
X-Original-To: dnssd@ietfa.amsl.com
Delivered-To: dnssd@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EE5C81A885D for <dnssd@ietfa.amsl.com>; Sat, 1 Nov 2014 01:22:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.011
X-Spam-Level:
X-Spam-Status: No, score=-0.011 tagged_above=-999 required=5 tests=[BAYES_20=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nhcBqCwineBy for <dnssd@ietfa.amsl.com>; Sat, 1 Nov 2014 01:22:02 -0700 (PDT)
Received: from mail.rozanak.com (mail.rozanak.com [IPv6:2a01:238:42ad:1500:aa19:4238:e48f:61cf]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 100051A885A for <dnssd@ietf.org>; Sat, 1 Nov 2014 01:22:01 -0700 (PDT)
Received: from localhost (unknown [127.0.0.1]) by mail.rozanak.com (Postfix) with ESMTP id 6F35925CA0C5; Sat, 1 Nov 2014 08:21:59 +0000 (UTC)
X-Virus-Scanned: amavisd-new at rozanak.com
Received: from mail.rozanak.com ([127.0.0.1]) by localhost (mail.iknowlaws.de [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Oa2xuTuGR8TC; Sat, 1 Nov 2014 09:21:28 +0100 (CET)
Received: from kopoli (p5B34173C.dip0.t-ipconnect.de [91.52.23.60]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) by mail.rozanak.com (Postfix) with ESMTPSA id 16C0E25CA073; Sat, 1 Nov 2014 09:21:28 +0100 (CET)
From: Hosnieh Rafiee <ietf@rozanak.com>
To: 'Douglas Otis' <doug.mtview@gmail.com>, dnssd@ietf.org
References: <D4E77D46-A87B-4CB9-9A66-08B10C5232A3@gmail.com>
In-Reply-To: <D4E77D46-A87B-4CB9-9A66-08B10C5232A3@gmail.com>
Date: Sat, 01 Nov 2014 09:21:24 +0100
Message-ID: <000801cff5ac$d3b861d0$7b292570$@rozanak.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 14.0
Thread-Index: AQIvjAR2/BqqOQ0IW5sobiaVDd+vQpuMQVJg
Content-Language: en-us
Archived-At: http://mailarchive.ietf.org/arch/msg/dnssd/XB9oHlw-Zkj43ME9zV-9CS8nlDw
Subject: Re: [dnssd] draft-ietf-dnssd-requirements-04
X-BeenThere: dnssd@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Discussion of extensions to Bonjour \(mDNS and DNS-SD\) for routed networks." <dnssd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnssd>, <mailto:dnssd-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnssd/>
List-Post: <mailto:dnssd@ietf.org>
List-Help: <mailto:dnssd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnssd>, <mailto:dnssd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 01 Nov 2014 08:22:04 -0000

Hi Douglas,

Some parts of that should be in threat model. If you think something is
still missing from threat model, you can contribute text and add it.
At the moment the threat model only focused on charter and requirement
document.

Best,
Hosnieh


> -----Original Message-----
> From: dnssd [mailto:dnssd-bounces@ietf.org] On Behalf Of Douglas Otis
> Sent: Saturday, November 01, 2014 12:59 AM
> To: dnssd@ietf.org
> Cc: Douglas Otis
> Subject: [dnssd] draft-ietf-dnssd-requirements-04
> 
> Dear dnssd wg,
> 
> The requirements draft still has failed to consider new security
considerations
> caused by exposing link-local information to adjacent networks.  This goes
well
> beyond being mere unions of mDNS and DNSSD issues.
> 
> One solution might involve use of overlay network addressing, for example.
> Without a well considered strategy, no firewall will be able protect local
> networks.
> 
> Regards,
> Douglas Otis
> _______________________________________________
> dnssd mailing list
> dnssd@ietf.org
> https://www.ietf.org/mailman/listinfo/dnssd

v2.23.0 | Report a Bug | By Email