Re: [dnssd] Secdir last call review of draft-ietf-dnssd-update-lease-07
Ted Lemon <mellon@fugue.com> Fri, 07 July 2023 21:57 UTC
Return-Path: <mellon@fugue.com>
X-Original-To: dnssd@ietfa.amsl.com
Delivered-To: dnssd@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C6044C151538 for <dnssd@ietfa.amsl.com>; Fri, 7 Jul 2023 14:57:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.898
X-Spam-Level:
X-Spam-Status: No, score=-6.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20221208.gappssmtp.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tjdNdjFQfrBG for <dnssd@ietfa.amsl.com>; Fri, 7 Jul 2023 14:57:19 -0700 (PDT)
Received: from mail-qv1-xf2e.google.com (mail-qv1-xf2e.google.com [IPv6:2607:f8b0:4864:20::f2e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 001EEC15107F for <dnssd@ietf.org>; Fri, 7 Jul 2023 14:57:09 -0700 (PDT)
Received: by mail-qv1-xf2e.google.com with SMTP id 6a1803df08f44-635decc135eso18184166d6.0 for <dnssd@ietf.org>; Fri, 07 Jul 2023 14:57:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20221208.gappssmtp.com; s=20221208; t=1688767029; x=1691359029; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=8IZSlZgidkY3PwQ1AetvEVcQEvlnxb8VkyGEVQ17yNs=; b=L25j8k3eQt2y3aFm/2Wgl4/f9sEIboVHXVyUaQaHzMDtwEr8ah4TwJ5vfvPk2bgTA3 jOyyy8KT6rwe4tK7UqztHrO9dcqpuUfNnkxThc6NpYwc2HNmr39jnUawROq5wjGxOxo/ 9QXgePR+4NSxnzugv6mI46IrJkwO3dCvtbQaL/6jDKN8v++QP4qij86TUTwfnDkmn9tX X6rizpagAaEudbEMe4JoAD353r35J+K0hx/jRr+hShLSAL4jF/JGzv7PQVsj3HYa+MaW VMzIjdF++gecUPC6z1kNuL1m3Wf4QWb2AnTg5a9EnM2ox3xA1owH+lJRnYEWldU6WLQ4 9X7g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1688767029; x=1691359029; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=8IZSlZgidkY3PwQ1AetvEVcQEvlnxb8VkyGEVQ17yNs=; b=CRdG28kCrRCQe5rL/xx81DMuYofeaH72G0PEAjvrkHX/YoPn0aaqDLC1/T566YxUqd 8OtYB8Tf/ViO5TXnqY/9bNeozhs5zCHRqaLSyis/cYeI7VRSZ65Whsf/l1BnQhkadvmt FsWVapyiBSEEdxJQ0NAKvOHbFjD7jswvxV0nHfejMdXHdupEhP+PmTsywUVa6bxK6VMw 3OobZnshd+3EzFxk16mC/jr4oAWWPc+DKFfOPNpbS3mmQnz+gIB4rkM/b0ksBAcm1kbH 4RoRA8Yoma8miefA9UElj5jzIG50JQ+69NGtrdQYtPSRyJ2cjsPFVYurwwRGWMAecQhM HZVQ==
X-Gm-Message-State: ABy/qLYURiLWtLvqiAnloijmzgpRI/9wLH//W7cGviDUa4ezOC0oMd0+ n2Lv0mZ+mBsOt+N0DZz71nVfP4hgpZAo5hj1bJKvPg==
X-Google-Smtp-Source: APBJJlH6G7oi6/Js3q7nXpwE6xFXNuB98duWQ8tXjt1cgVKuDXA8k4L5FwAeFHaDwHLjG7ukXge/94FIdgcOBc/8xWM=
X-Received: by 2002:a05:6214:d6a:b0:636:695:c84c with SMTP id 10-20020a0562140d6a00b006360695c84cmr13412903qvs.20.1688767028771; Fri, 07 Jul 2023 14:57:08 -0700 (PDT)
MIME-Version: 1.0
References: <168664004827.19270.1654269216247173536@ietfa.amsl.com>
In-Reply-To: <168664004827.19270.1654269216247173536@ietfa.amsl.com>
From: Ted Lemon <mellon@fugue.com>
Date: Fri, 07 Jul 2023 17:56:32 -0400
Message-ID: <CAPt1N1naaniEnUbZv8VxYEuumY4miRY5u89GaBYisrk97FP4pA@mail.gmail.com>
To: Shivan Sahib <shivankaulsahib@gmail.com>
Cc: secdir@ietf.org, dnssd@ietf.org, draft-ietf-dnssd-update-lease.all@ietf.org, last-call@ietf.org
Content-Type: multipart/alternative; boundary="000000000000dbd41805ffecb636"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnssd/hLtPbqQfstvEw5LtHPrNrp7sxk8>
Subject: Re: [dnssd] Secdir last call review of draft-ietf-dnssd-update-lease-07
X-BeenThere: dnssd@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Discussion of extensions to DNS-based service discovery for routed networks." <dnssd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnssd>, <mailto:dnssd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnssd/>
List-Post: <mailto:dnssd@ietf.org>
List-Help: <mailto:dnssd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnssd>, <mailto:dnssd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 07 Jul 2023 21:57:19 -0000
On Tue, Jun 13, 2023 at 3:07 AM Shivan Sahib via Datatracker < noreply@ietf.org> wrote: > Reviewer: Shivan Sahib > Review result: Has Nits > > A few minor issues for the Security Considerations section: > > 1. RFC 2119 keywords are used for some but not all bounds mentioned in this > section. Is there a reason we don't use SHOULD and RECOMMEND for the > maximum > acceptable value for the LEASE values? > These may vary depending on the application. That would belong in a specific operational document for a specific set of use cases. We thought about specifying a limit, but just didn't have a basis for specifying one. As an example, though, the Thread specification, which is for a particular use case, specifies a limit of 14 days for the key lease and 7 days for the lease. 2. It would be useful for the document to also RECOMMEND a minimum interval > between updates. > We do, in Security Considerations. 3. More broadly, ISTM that all the recommended values here (minimum interval > between updates, lease renewal min and max) should be moved up into the > main > content of the document. A too-short lease, for e.g., has implications not > just > for security but operation in general. > We do recommend a minimum of 1800 seconds in the Requestor Behavior section. > 4. Is the "public key signing" a reference to SIG(0) [RFC 2931]? > Yes. I will add an informative reference—this is rather vague, isn't it? > 5. Again, the language is in the last para of the Security Considerations > section around auth strategy is not very strong. Perhaps a reference to RFC > 3007 would help. > The only specific application of update lease is SRP (draft-ietf-dnssd-srp). SRP specifies exactly one authentication scheme, FCFS naming, which is referenced in the aforementioned paragraph. Realistically, that is the only standard application for this that is not somebody doing something weird on their own. If someone decides to add another, more general application, then the general advice about DNS updates Aside from the existing example of SRP, I don't think this request is actionable. I agree that it's a good idea in principle, but I think it requires new protocol work for which there is currently no demand. SRP solves a specific real-world use case, which is why it's being advanced and nothing else is. I'd love to see a more general solution to this problem, but right now nobody is asking for it. > > 6. "conver" in the last sentence of this section seems like a typo, I'm not > sure what this sentence means. > Typo. This is what the sentence should say: An example of a key management strategy can be found in <xref target="I-D.ietf-dnssd-srp"/>, which uses "first come, first-served naming" rather than an explicit trust establishment process, to confer update permission to a set of records. Thanks so much for the review. I'm sorry we're not agreeing on every point, but hopefully the IESG will decide how they feel about this and make recommendations if they think more work is needed.
- [dnssd] Secdir last call review of draft-ietf-dns… Shivan Sahib via Datatracker
- Re: [dnssd] Secdir last call review of draft-ietf… Ted Lemon