[dnssd] draft-rafiee-dnssd-mdns-threatmodel-03
Tim Chown <tjc@ecs.soton.ac.uk> Tue, 21 July 2015 16:27 UTC
Return-Path: <tjc@ecs.soton.ac.uk>
X-Original-To: dnssd@ietfa.amsl.com
Delivered-To: dnssd@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 759E11A9062 for <dnssd@ietfa.amsl.com>; Tue, 21 Jul 2015 09:27:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.23
X-Spam-Level:
X-Spam-Status: No, score=-1.23 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, SPF_NEUTRAL=0.779, T_RP_MATCHES_RCVD=-0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MgjxzopyeGYW for <dnssd@ietfa.amsl.com>; Tue, 21 Jul 2015 09:27:45 -0700 (PDT)
Received: from falcon.ecs.soton.ac.uk (falcon.ecs.soton.ac.uk [IPv6:2001:630:d0:f102::25e]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D6C951A8F4E for <dnssd@ietf.org>; Tue, 21 Jul 2015 09:27:44 -0700 (PDT)
Received: from falcon.ecs.soton.ac.uk (localhost [127.0.0.1]) by falcon.ecs.soton.ac.uk (8.13.8/8.13.8) with ESMTP id t6LGRhxZ006227 for <dnssd@ietf.org>; Tue, 21 Jul 2015 17:27:43 +0100
X-DKIM: Sendmail DKIM Filter v2.8.2 falcon.ecs.soton.ac.uk t6LGRhxZ006227
DKIM-Signature: v=1; a=rsa-sha1; c=simple/simple; d=ecs.soton.ac.uk; s=201304; t=1437496063; bh=jmFo09+shtn+n27uethADGDbjO8=; h=From:Subject:Date:To:Mime-Version:References; b=R0BpNoKhdAwWUn9QJJ0beRs9Nk58MXdOZBDdfWOjAlwnEx7kHNqpz4TDFwukmW1QJ wou9Yo5tl/kMuyZUm+mqqqKQoFNRbJGmuyznJkOm/OYpneJSttHhCLTHAzCtXdD+g3 BW+j+vCcJ6y/ZPNMwYHIATugEuXmV8pyNyhRt7/0=
Received: from gander.ecs.soton.ac.uk (gander.ecs.soton.ac.uk [2001:630:d0:f102::25d]) by falcon.ecs.soton.ac.uk (falcon.ecs.soton.ac.uk [2001:630:d0:f102::25e]) envelope-from <tjc@ecs.soton.ac.uk> with ESMTP (valid=N/A) id r6KHRh0996407600Yi ret-id none; Tue, 21 Jul 2015 17:27:43 +0100
Received: from [IPv6:2001:67c:370:152:3891:6e19:89fd:12c5] ([IPv6:2001:67c:370:152:3891:6e19:89fd:12c5]) (authenticated bits=0) by gander.ecs.soton.ac.uk (8.13.8/8.13.8) with ESMTP id t6LGQNSn012755 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for <dnssd@ietf.org>; Tue, 21 Jul 2015 17:26:24 +0100
From: Tim Chown <tjc@ecs.soton.ac.uk>
Content-Type: multipart/alternative; boundary="Apple-Mail=_B8BDD8C7-1DAB-4693-A5ED-83A627059AFF"
Message-ID: <EMEW3|dbcca9c0a7bf31ae45ee4f01ab98363cr6KHRh03tjc|ecs.soton.ac.uk|9DA1FEB8-3546-4F23-85D0-6A712B6A0BD6@ecs.soton.ac.uk>
Date: Tue, 21 Jul 2015 17:26:43 +0100
To: dnssd@ietf.org
Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2102\))
X-Mailer: Apple Mail (2.2102)
X-ECS-MailScanner: Found to be clean, Found to be clean
X-smtpf-Report: sid=r6KHRh099640760000; tid=r6KHRh0996407600Yi; client=relay,ipv6; mail=; rcpt=; nrcpt=1:0; fails=0
References: <9DA1FEB8-3546-4F23-85D0-6A712B6A0BD6@ecs.soton.ac.uk>
X-ECS-MailScanner-Information: Please contact the ISP for more information
X-ECS-MailScanner-ID: t6LGRhxZ006227
X-ECS-MailScanner-From: tjc@ecs.soton.ac.uk
Archived-At: <http://mailarchive.ietf.org/arch/msg/dnssd/bfWFMtX13vjll7entQz2fZc6pYM>
Subject: [dnssd] draft-rafiee-dnssd-mdns-threatmodel-03
X-BeenThere: dnssd@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Discussion of extensions to Bonjour \(mDNS and DNS-SD\) for routed networks." <dnssd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnssd>, <mailto:dnssd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnssd/>
List-Post: <mailto:dnssd@ietf.org>
List-Help: <mailto:dnssd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnssd>, <mailto:dnssd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Jul 2015 16:27:46 -0000
Hi, Following on from the previous email, I’d like to encourage discussion of draft-rafiee-dnssd-mdns-threatmodel-03. See: https://tools.ietf.org/html/draft-rafiee-dnssd-mdns-threatmodel-03 <https://tools.ietf.org/html/draft-rafiee-dnssd-mdns-threatmodel-03> Hosnieh has pulled together this draft in response to a request from Ralph and I as chairs. We’d like to see the WG discuss and agree on the scope of the threats that we cover in this document, with a view to adopting it as a WG item. And specifically to Doug - you have raised points previously on DDoS attack paths, information leakage, and address scopes (esp. ULA). It would be good to articulate these more precisely, and to determine where they might fit into the structure of the draft as it stands. I can see Hosnieh already has DoS (section 3.2) and Leakage (section 3.5) included. A reminder that a the goal of the WG is to enable scalable, wide area service discovery, across multiple links. There is thus a natural trade-off in convenience, and the ability to discover remote services, and information exposure. My personal feeling is that the document should focus on specific threats related to the new extended DNS-SD model that the hybrid pray model introduces; thus we could probably shrink or even remove 3.9, and focus on the earlier sections of the document. But this is what we’d like the WG to give input on. Ralph and I will also seek opsec input on this document. We would also welcome input from homenet, where Markus and others have been developing methods to have a hybrid proxy model run autonomously, though - as yet - there isn’t a specific homenet threat model document. Tim