Re: [dtn] new BIBE I-D
lloyd.wood@yahoo.co.uk Tue, 22 May 2018 20:02 UTC
Return-Path: <lloyd.wood@yahoo.co.uk>
X-Original-To: dtn@ietfa.amsl.com
Delivered-To: dtn@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9DAB412D871 for <dtn@ietfa.amsl.com>; Tue, 22 May 2018 13:02:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.597
X-Spam-Level:
X-Spam-Status: No, score=-2.597 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.599, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=yahoo.co.uk
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Hlmm9Ki4rOT2 for <dtn@ietfa.amsl.com>; Tue, 22 May 2018 13:02:14 -0700 (PDT)
Received: from sonic303-21.consmr.mail.ir2.yahoo.com (sonic303-21.consmr.mail.ir2.yahoo.com [77.238.178.202]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B7FDD12D80E for <dtn@ietf.org>; Tue, 22 May 2018 13:02:13 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.co.uk; s=s2048; t=1527019332; bh=kmyAaxyv0iSFw+TnTo5P7xWPX05WLZd7OUj5DWaz6eM=; h=Date:From:To:In-Reply-To:References:Subject:From:Subject; b=uKslrXkJjWcTgbvN6mJkDlLVGePc8ovlhbXCogQfKnXNkQKAGb2dMI4hMYCrQsiaucYDk5jLtsHij1bedIq76qCfPqevbBrBIwFGeHwy7pEH1LQa94+9P81STRyfpkVmKEp0Z/xq4+OBecZuVQJZ/+Vk/+Ui7Sk0usFtEqXp5KGPuW8SFEpZCGDqsZnWVYGq/jVTbBKZslR/pqN7UfKh1Hi4aGd9eJGCZfT15VurHxR42fsTKpohmZhyYpaySEEI35AcwoPSs7PiP8wdMDUGUDrnORxYVaDvUnVEODJWZVnoux7srWNVx1nMbwEzlrpa7wEfGKcshq1NNvPIoX8aEA==
X-YMail-OSG: RTwBzb8VM1lIA6ocHCTHkfxewHIN4KwrfhqxvLCUfwo9E.VJpoTDbwmOxOdGGFe .RJSrRWV6uC1sks14hKsZ_7rR3IuA_BMLUlqyAGo.aF73XT4QKCB8VrgbLG5JzksplJJMqlaeB3G nddPC7ftK_LtNzb3ClMxETa3FJG0msXA6N46l.tDR56ZZf7MJJsAEBFkm9UNauAlLk2yimN.kqMP AJ4UE.ghHA.J1arvrKwOcfSLAn9ORXidP12h7f_Kt.czDAD1FWzpGMZdcCMslPYO4RIIZJ.QixA9 V0aix9gadxvkwbQ5FQDH4XIZgi2wqC3Rn1MDkVZxiLVDEdaGW02LOFhUecZKz_TmFOypeIHZizeS 7hSt6BIucdQppA597wzCVCaRshgY7tD7MvW.D0wnwGxv89HCrM1ypJ64IHsaYFTAGQevr61mOD27 3PGB3HzHiCDB29gv8Yr3tG_MEU6nNhw4t0AIXDCYNcmyYVjkjfanRGMNWh1xNFN1jljdb5FuVkP8 CQQR0liMT51qIq3Ti37wnO.nU3Q4YSXHfdZUUIMlcToQ.jXBroYiprpPXDnIanNkQlIF9ensNA4a VGaGl3cbfsur.ESYa2Cvqgli3ViBDoz1svoq_hbKaY5_Mckk7x_LZL7a_1Q--
Received: from sonic.gate.mail.ne1.yahoo.com by sonic303.consmr.mail.ir2.yahoo.com with HTTP; Tue, 22 May 2018 20:02:12 +0000
Date: Tue, 22 May 2018 20:02:03 +0000
From: lloyd.wood@yahoo.co.uk
To: "Burleigh, Scott C (312B)" <scott.c.burleigh@jpl.nasa.gov>, "dtn@ietf.org" <dtn@ietf.org>
Message-ID: <1878732688.7218879.1527019323250@mail.yahoo.com>
In-Reply-To: <709e892baaea48898f9c795a94aa5729@jpl.nasa.gov>
References: <734a179fe593429ca1c38f4e20ab954c@jpl.nasa.gov> <1738164354.6006651.1526896612434@mail.yahoo.com> <709e892baaea48898f9c795a94aa5729@jpl.nasa.gov>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_Part_7218878_1974879608.1527019323247"
X-Mailer: WebService/1.1.11871 YahooMailIosMobile Raven/42102 CFNetwork/811.5.4 Darwin/16.7.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/dtn/4jqXlmPn47Aav4lFVBmP-u7KEx0>
Subject: Re: [dtn] new BIBE I-D
X-BeenThere: dtn@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Delay Tolerant Networking \(DTN\) discussion list at the IETF." <dtn.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dtn>, <mailto:dtn-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dtn/>
List-Post: <mailto:dtn@ietf.org>
List-Help: <mailto:dtn-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dtn>, <mailto:dtn-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 22 May 2018 20:02:17 -0000
Scott, if that's your belief, please put some text in the document about it, so we can tell you where it's wrong. I haven't discussed routing. I have said that this will cause the same issues that source routing causes - and more. Understanding the comparison requires an understanding of what source routing is and does. That BIBE apparently requires the invention of bundle firewalls says much about BIBE... Lloyd WoodLloyd Wood - Delay-Tolerant Networking work | | | | | | | | | | | Lloyd Wood - Delay-Tolerant Networking work | | | | On Tuesday, May 22, 2018, 08:22, Burleigh, Scott C (312B) <scott.c.burleigh@jpl.nasa.gov> wrote: I remember this conversation. Now as then, I think it's better policy to rely on authentication and firewall configuration, rather than routing, to address these kinds of security issues. Scott -----Original Message----- From: Lloyd Wood <lloyd.wood@yahoo.co.uk> Sent: Monday, May 21, 2018 2:57 AM To: Burleigh, Scott C (312B) <scott.c.burleigh@jpl.nasa.gov>; dtn@ietf.org Subject: Re: [dtn] new BIBE I-D https://tools.ietf.org/html/draft-burleigh-dtn-bibect-01 " . Moreover, in the event that no single point of egress from an insecure region of network topology can be determined at the moment a bundle is to be encapsulated, multiple copies of the bundle may be encapsulated individually and forwarded to all candidate points of egress." I've previously raised the issue of multiple tunnel encaps effectively recapitulating source routing, with all the problems that source routing entails. That concern still stands. (June 2017 on this list) generating BIBE-in-BIBE-in-BIBE... that DoSses and crashes bundle nodes (multiple nodes! with copying!) and allows spoofing of traffic from nodes is inevitable, and the draft needs to address that, by discussion recursion and source routing, and any introduced limits to same. I don't have a view on whether ACS is a mistake; I see larger errors. Lloyd Wood http://sat-net.com/L.Wood/dtn ________________________________ From: "Burleigh, Scott C (312B)" <scott.c.burleigh@jpl.nasa.gov> To: "dtn@ietf.org" <dtn@ietf.org> Sent: Monday, 21 May 2018, 12:39 Subject: [dtn] new BIBE I-D Hi. I just now posted a new edition of the Bundle-in-Bundle Encapsulation draft. It differs from the initial edition mainly in the Custody Transfer mechanism it defines. Some years of experience with the prototype Aggregate Custody Signal in ION on the International Space Station have convinced the ISS guys that ACS is important and is superior to the baseline custody transfer system originally defined in BIBE, lifted from RFC 5050. My original thought was simply to add ACS as an option in BIBE, but on closer examination I couldn't spot any scenario in which the original custody transfer mechanism would be more efficient than the aggregated variant. So the custody transfer procedures in this BIBE draft are now very similar to those of that ACS prototype. Please speak up if you think this is a mistake. Scott _______________________________________________ dtn mailing list dtn@ietf.org https://www.ietf.org/mailman/listinfo/dtn _______________________________________________ dtn mailing list dtn@ietf.org https://www.ietf.org/mailman/listinfo/dtn
- [dtn] new BIBE I-D Burleigh, Scott C (312B)
- Re: [dtn] new BIBE I-D Lloyd Wood
- Re: [dtn] new BIBE I-D Burleigh, Scott C (312B)
- Re: [dtn] new BIBE I-D lloyd.wood