Re: [dtn] Roman Danyliw's No Objection on draft-ietf-dtn-tcpclv4-18: (with COMMENT)
Brian Sipos <BSipos@rkf-eng.com> Sun, 01 March 2020 19:40 UTC
Return-Path: <BSipos@rkf-eng.com>
X-Original-To: dtn@ietfa.amsl.com
Delivered-To: dtn@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AE5BC3A0C4F; Sun, 1 Mar 2020 11:40:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=rkfeng.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hWI3hnYs4vGQ; Sun, 1 Mar 2020 11:39:58 -0800 (PST)
Received: from NAM11-CO1-obe.outbound.protection.outlook.com (mail-co1nam11on2068.outbound.protection.outlook.com [40.107.220.68]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C69D83A0C3B; Sun, 1 Mar 2020 11:39:57 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=CsfjJ3sxbaFFY/Qd8BpKbWw3HItHcRBm6iP6usRFUlXKmWfBdJMTQN05mFNMuW6CABh4kgmxWRdFUne+b6T30xHqUEqB61H0OwP/uoSY0ofIHOa7FhB6yRkbiwThSeXECKQWpz9fjZDy/G0QL9P48JxFRpFtSyr4aI1ZFcPRV7fkNngi9/36fLNXRXGJThn+boTR/ZNCFsCBF4+FSLaCIjaBDn3/lNFy+UaVQto2pf+EhtZNMui0whBZZMKBoxMQEZhSqj6YU/iBMVDm2T7jschsWOaJEGco6HbDv20ZmKVP9oknBoyIpqzOXoixpjE/6hR4Oq9+LE58HP5Jhp3F3w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;bh=bAP46aMnpZ1wfRZbvmrrWurY2Cfy0vfh124ZydyvA3E=; b=nqxygqr6mpjFkScKEvQw5Oh/zR4dp50AJJ1gYd/vwN3k2FDQC4irvkQBluP2JA0Kic4e3dvvoeToyM115iDO9BhxTf7ITLJyvm7K/dFNmxmfPA+BypmkUs+f8w0O15rKErxLqMHRuspWgqoS1ykBSgmV+sqlb21bzongMnLboKHhpZYIronD93jesueM2Gy/xRH7RvFkbCKnkM+aH3dB9qCkad76E/d9SnKxVhEn7lsHM4L84uEbrGiuQE105fGavqkFJR48IBaW/hnTvM6CkmBZJ/xSeW/KnXuSuExG45AA+04bJvo5lvRMDuM73v7U8TddAkeNVJkEDWjhdGaw1A==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=rkf-eng.com; dmarc=pass action=none header.from=rkf-eng.com; dkim=pass header.d=rkf-eng.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rkfeng.onmicrosoft.com; s=selector2-rkfeng-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;bh=bAP46aMnpZ1wfRZbvmrrWurY2Cfy0vfh124ZydyvA3E=; b=n5gdxr29wH0Gesk+7eNC4CwcDyfdqqr63B1E8BnpG0zIIDxM/85sTJfhQnjrq9MYl3I9xktTTsl6DPhmFDoUkkrALtc31iSUBj8eUqSNGugAiai2Wq2r3or0gsinbxaCuASzaPJRBfOQkxC1QNl3leeJKq6hT1vOUq+zvE4Ij68=
Received: from MN2PR13MB3520.namprd13.prod.outlook.com (2603:10b6:208:16c::29) by MN2PR13MB3630.namprd13.prod.outlook.com (2603:10b6:208:1e2::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2793.9; Sun, 1 Mar 2020 19:36:26 +0000
Received: from MN2PR13MB3520.namprd13.prod.outlook.com ([fe80::69eb:6eb6:b373:f292]) by MN2PR13MB3520.namprd13.prod.outlook.com ([fe80::69eb:6eb6:b373:f292%2]) with mapi id 15.20.2793.011; Sun, 1 Mar 2020 19:36:18 +0000
From: Brian Sipos <BSipos@rkf-eng.com>
To: "rdd@cert.org" <rdd@cert.org>, "iesg@ietf.org" <iesg@ietf.org>
CC: "dtn-chairs@ietf.org" <dtn-chairs@ietf.org>, "draft-ietf-dtn-tcpclv4@ietf.org" <draft-ietf-dtn-tcpclv4@ietf.org>, "dtn@ietf.org" <dtn@ietf.org>, "edward.birrane@jhuapl.edu" <edward.birrane@jhuapl.edu>
Thread-Topic: [dtn] Roman Danyliw's No Objection on draft-ietf-dtn-tcpclv4-18: (with COMMENT)
Thread-Index: AQHV52EHDO6an0ulS0egmCzzr51di6g0MpYA
Date: Sun, 01 Mar 2020 19:36:18 +0000
Message-ID: <24380be1e56aed6b4df8cb0347ad7ec921f360ef.camel@rkf-eng.com>
References: <158214318824.17580.11260773545056134421.idtracker@ietfa.amsl.com>
In-Reply-To: <158214318824.17580.11260773545056134421.idtracker@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
user-agent: Evolution 3.32.5 (3.32.5-1.fc30)
authentication-results: spf=none (sender IP is ) smtp.mailfrom=BSipos@rkf-eng.com;
x-originating-ip: [108.18.140.127]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: b831e1ff-eb57-42d9-a266-08d7be17d064
x-ms-traffictypediagnostic: MN2PR13MB3630:
x-microsoft-antispam-prvs: <MN2PR13MB3630742135369EEB14C890A79FE60@MN2PR13MB3630.namprd13.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 0329B15C8A
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(366004)(346002)(136003)(376002)(396003)(39830400003)(199004)(189003)(2616005)(26005)(8936002)(36756003)(6512007)(4326008)(5660300002)(966005)(66616009)(76116006)(508600001)(316002)(66946007)(8676002)(81156014)(81166006)(6486002)(66556008)(186003)(110136005)(6506007)(66476007)(2906002)(71200400001)(64756008)(54906003)(86362001)(66446008); DIR:OUT; SFP:1101; SCL:1; SRVR:MN2PR13MB3630; H:MN2PR13MB3520.namprd13.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: rkf-eng.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: wiU5VrSzE1ZUH7hmtvmXpNHJYPM7NHJyMeaTNlOXYPA4DGNhtjArfv2jh5k/pzNu9eCRVkvp3KvXm1ekO0Vo7oQgDrYpFsjSVXr3dwsyKPLB27nWCr507eA2b9OsoY5xFM+bQ4cw1/q3nAhbQyHKxJqktorzQPtO1Pnc0b4JeOYKbUv0A30xuq2bkipTWNkqrmjZouJtlJrzoTgpP4QUJ7QBZ42lsgei4H47OQdHBadX6btDCONTnlM3R4vnbwNyIsudAqf19hQnPaOHxgaatex5sFNbxJZ3q0d6qHjGCitKUlbxomiEFpAlchFXe04WuJcx8fnOSpyO8cSeH6RZIOUcSLMabjYNGxMI1Yb/1+d7kYkHxMZvxN75p0sF2+oBnGn6j/r4xcITGUcI9NHcce+AFNqxrPyLRe+EbFyXH2c57NXfKPw8m3Ln6YA8VNdix68Ya7mQ8hkQxounM1VFpQFDwBVcukUVTuyER7Qtbub3HJh9HrwLmvLA54W07MPIuI6mj75RILCNfZoOtyIWOw==
x-ms-exchange-antispam-messagedata: 5crJb01Y6xNVhaJhcQY8731wp5jNalRk7EWNaGpSH0M8htJ7C32timEiiOLBGd4ckWk0niwp8Te+27Wp3zT7sx3YHMWQyV7vXuvg3VfcgZvNtn7P30T71/omxj8T9BTZNZe97YuECZBwQYdJo6uMlQ==
x-ms-exchange-transport-forked: True
Content-Type: multipart/signed; micalg="sha-256"; protocol="application/x-pkcs7-signature"; boundary="=-OOd8sx1i/xsto5LLTVFb"
MIME-Version: 1.0
X-OriginatorOrg: rkf-eng.com
X-MS-Exchange-CrossTenant-Network-Message-Id: b831e1ff-eb57-42d9-a266-08d7be17d064
X-MS-Exchange-CrossTenant-originalarrivaltime: 01 Mar 2020 19:36:18.4716 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 4ed8b15b-911f-42bc-8524-d89148858535
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Kw6MFCmjwtRjjmMKbsW5KYtWyzAn0nNF45M3tAzozePxuMPvl1mzFsCEEBkIu/41MxYzynOnXsnp2KUpIbVvOw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR13MB3630
Archived-At: <https://mailarchive.ietf.org/arch/msg/dtn/49MeoLYDa1YOVrCZYFa1ORCuvdc>
Subject: Re: [dtn] Roman Danyliw's No Objection on draft-ietf-dtn-tcpclv4-18: (with COMMENT)
X-BeenThere: dtn@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Delay Tolerant Networking \(DTN\) discussion list at the IETF." <dtn.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dtn>, <mailto:dtn-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dtn/>
List-Post: <mailto:dtn@ietf.org>
List-Help: <mailto:dtn-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dtn>, <mailto:dtn-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 01 Mar 2020 19:40:01 -0000
Roman, I'm including responses below with prefix "BS: " On Wed, 2020-02-19 at 12:13 -0800, Roman Danyliw via Datatracker wrote: > Roman Danyliw has entered the following ballot position for > draft-ietf-dtn-tcpclv4-18: No Objection > > When responding, please keep the subject line intact and reply to all > email addresses included in the To and CC lines. (Feel free to cut this > introductory paragraph, however.) > > > Please refer to > https://www.ietf.org/iesg/statement/discuss-criteria.html > > for more information about IESG DISCUSS and COMMENT positions. > > > The document, along with other ballot positions, can be found here: > https://datatracker.ietf.org/doc/draft-ietf-dtn-tcpclv4/ > > > > > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > Thanks for all of the changes made in response to the LC SECDIR review. Also, > thank you for the LC SECDIR review, Chris (Wood)! > > A reference implementation (as noted in [github-dtn-bpbis-tcpcl]) that > includes > a Wireshark dissector is phenomenal (and a bar we should all strive towards > when making a new protocol) > > ** Section 2.1. In the definition of the TCPCL Session, “there are two > possible transfer streams; one in each direction, with one stream from each > entity being the outbound stream and the other being the inbound stream.”, > what > does this imply about the underlying TCP connections? It would be worth being > clearer on the relationship between a given stream and the TCP connection. > BS: I will add clarification to this, but a single TCPCL session is a single TCP connection and always one-to-one in TCPCL. > ** Section 3.1. Is the list of provided convergence layer services enumerated > in this section unique to the TCPCL, or would it be expected that all CLs > would > implement it? If the latter, then why isn’t it in the draft-ietf-dtn-bpbis? > BS: This was a discussion topic in the WG and it was decided that the various CLs will have unique enough set of BP agent interfaces that there isn't a universal set of services other than "attempt to send this bundle" and "this bundle was just received". Even then some CLs may be unidirectional and only support one of those services (per-instance). > ** Section 3.2. Per “Each transfer is performed by an sequence of logical > segments of data …”, what is the relationship between a “logical segment” and > a > “transfer segment” (defined in Section 2.1)? > BS: I changed the wording on this for clarity to read: Each transfer is performed by segmenting the transfer data into one or more XFER_SEGMENT messages. > ** Section 3.3. Figure 4. What is the state transition from “Established > Session Live” to “Established Session Ending”? Wouldn’t a session go from > live > to idle when the transfer is done (and then session ending)? Is the Session > live to Session ending perhaps due to an interrupt or termination request > while > the transfer is underway? > BS: You are correct that a session can change from Live to Idle when a transfer finishes. The purpose of the Ending state is simply to inhibit start of new transfers. The Ending state is entered solely by sending a SESS_TERM message. I clarified the logic of the Ending state based on earlier comments to read: Once a SESS_TERM message is sent the state of that TCPCL session changes to Ending. While the session is in the Ending state, an entity MAY finish an in-progress transfer in either direction. While the session is in the Ending state, an entity SHALL NOT begin any new outgoing transfer for the remainder of the session. While the session is in the Ending state, an entity SHALL NOT accept any new incoming transfer for the remainder of the session. > ** Section 4.2. Given that this new version of the convergence layer is a > “green field” (judging from the list if implementations), why not require TLS > v1.3 as the minimum (rather than TLS v1.2)? > BS: Based on other review comments and AD comment, I am updating this spec to use TLS 1.3 as the baseline. The only real required compatibility behavior is the ClientHello message which is identical in form between the TLS versions. > ** Section 8.6. (as suggested by Chris in his telechat SECDIR review) This > section isn’t clear on the threat. It seems to cover material relevant to > validation better aligned with Section 4.4.2. In particular, the reference to > RFC5280 and reminder to check CRLs would be needed guidance to added to the > Section 4.4.2 paragraph, “Any certificate received during TLS handshake SHALL > be validated up to one or more trusted certificate authority (CA) certificates > …” > BS: I clarified the threat text with the following statements at the top: Even when TLS itself is operating properly an attacker can attempt to exploit vulnerabilities within certificate check algorithms or configuration to establish a secure TCPCL session using an invalid certificate. A BP agent treats the peer Node ID within a TCPCL session as authoritative and an invalid certificate exploit could lead to bundle data leaking and/or denial of service to the Node ID being impersonated. > ** Editorial > Section 2.1. Typo. s/entitys/entities/ > > Section 2.1. Typo. s/passivley/passively/ > > Section 2.1. Typo. s/trasnfer/transfer/ > > Section 2.1. Typo. s/Inititated/Initiated/g > > Section 3.1. Typo. s/defintion/definition/ > > Section 3.1. Typo. s/reciver/receiver/ > > Section 3.1. Typo. s/transmssion/transmission/ > > Section 3.2. Typo. s/negligable/negligible/ > > Section 3.2. Typo. s/by an sequence/by a sequence/ > > Section 3.3. Typo. s/reeiving/receiving/ > > Section 3.3. Typo. s/Recevied/Received/ > > Section 3.4. Typo. s/polcy/policy/ > > Section 4.2. Typo. s/contanct/contact/ > > Section 4.2. Typo. s/behavor/behavior/ > > Section 4.4.1. Typo. s/assoicated/associated/ > > Section 4.4.2. Typo. s/unauthticate/unauthenticated/ > > Section 4.4.3. s/Connnection/Connection/ > > Section 4.6. Typo. s/ mulitplicity/ multiplicity/ > > Please run a spell-check on the document. Additional typos were found past > Section 4.6 but were not documented here > BS: I did run a spellcheck on the document and hope that I caught all of these and some others.
- [dtn] Roman Danyliw's No Objection on draft-ietf-… Roman Danyliw via Datatracker
- Re: [dtn] Roman Danyliw's No Objection on draft-i… Brian Sipos