IETF Logo Mail Archive

Re: [dtn] BPbis - BPSec requirement

Brian Sipos <BSipos@rkf-eng.com> Tue, 28 July 2020 11:52 UTC

Return-Path: <BSipos@rkf-eng.com>
X-Original-To: dtn@ietfa.amsl.com
Delivered-To: dtn@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 129C83A0B87 for <dtn@ietfa.amsl.com>; Tue, 28 Jul 2020 04:52:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=rkfeng.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5OLVSL34Ercd for <dtn@ietfa.amsl.com>; Tue, 28 Jul 2020 04:52:35 -0700 (PDT)
Received: from NAM11-BN8-obe.outbound.protection.outlook.com (mail-bn8nam11on2081.outbound.protection.outlook.com [40.107.236.81]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8C1163A0B85 for <dtn@ietf.org>; Tue, 28 Jul 2020 04:52:35 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=gvWTWVcAE0bgqWWlQMHUbkUiHY3SO8iwbI8NaXgxhRdq5kd480GELD9+9X/8hJJ0kt0SVvXOIp0dM2y+Qtm9Fm1OgCprsWm4eO3cy2vOf4/HHNb5wKIuMFx9aoDkTsZz/bgc8WCh9Oobd5Mgwz4JJhZmAqZ2As0Xn8+yzKM3m/ejWM0aTJXgV21PrMO3B+esXVyboj5gVq1MTxFQ7PoqbIKrCum1HYKXMkaxVbwKKq/d6HLBs0vR0xHlV4fBakLHmfQ9rXabD0dMwb+1AA2q6nAOmY3A1+SYlIKFpq30zo8D4Z5PhG0y1r/g187tKAAOnoO1AnasnA9zS1pm8+IUTw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=A2AIfZb8hTyCzk3o/Lpag4B5ceZNbuAoGISWf8HgWCM=; b=Up2GRPsiHBj9dFHqbQJcXOHX/lMIcy21yQADz0/odzCAOPnnwKJhWP038+8lKGLune3RVzmkSPwxGwVAuLWAjvOha++X3ZpxAAW2XfL38aW1y4DSd9C97KUARzrUptJZNxPWEoS+NBLHISeFD2uQ73Zb8hscYY4BmowftQ17X5LUkGRpgDzeBDlscXE+UV+AOPak7O9n9Thr6Sf9F2UVQwUDNeMV7gZVxHw52p9lPsXxMNi0K07iJ5X7pIuU3LQWzxMbQkPScadLbAInH9QknArRCiD+RAZZ3G2JV/IU///K+xGFczI8Y/r+L3M1r3kN7eedhrjmlr9WWx2BEhV8bQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=rkf-eng.com; dmarc=pass action=none header.from=rkf-eng.com; dkim=pass header.d=rkf-eng.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rkfeng.onmicrosoft.com; s=selector2-rkfeng-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=A2AIfZb8hTyCzk3o/Lpag4B5ceZNbuAoGISWf8HgWCM=; b=vAKl18tuhjAE4isUXMVa+xGjshf2Vjm9sZbE6NtxBLIDjhYVz8vtEBxOCOmMOHxixISYqeJ4vHO4MlKg7HG6gPnSNcHu3Xlua7oHQ+QKwLhL/MgpB3XptKJmLTWgVSZ8hjP2zOGlYW18oQQ7S/tUnLQTIelxNU99318r0igqNWg=
Received: from DM6PR13MB3562.namprd13.prod.outlook.com (2603:10b6:5:1c4::33) by DM6PR13MB3691.namprd13.prod.outlook.com (2603:10b6:5:243::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3239.10; Tue, 28 Jul 2020 11:52:33 +0000
Received: from DM6PR13MB3562.namprd13.prod.outlook.com ([fe80::b513:b4c3:9625:8b5e]) by DM6PR13MB3562.namprd13.prod.outlook.com ([fe80::b513:b4c3:9625:8b5e%6]) with mapi id 15.20.3239.015; Tue, 28 Jul 2020 11:52:33 +0000
From: Brian Sipos <BSipos@rkf-eng.com>
To: Rick Taylor <rick@tropicalstormsoftware.com>, "dtn@ietf.org" <dtn@ietf.org>
Thread-Topic: BPbis - BPSec requirement
Thread-Index: AdZkCmA3UPp4cISXQ0W3R8JTCdlwYwADRc3b
Date: Tue, 28 Jul 2020 11:52:33 +0000
Message-ID: <MN2PR13MB3567A3CF5746A6B6B88392229F720@MN2PR13MB3567.namprd13.prod.outlook.com>
References: <38A5475DE83986499AEACD2CFAFC3F9801F585E9E8@tss-server1.home.tropicalstormsoftware.com>
In-Reply-To: <38A5475DE83986499AEACD2CFAFC3F9801F585E9E8@tss-server1.home.tropicalstormsoftware.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: tropicalstormsoftware.com; dkim=none (message not signed) header.d=none;tropicalstormsoftware.com; dmarc=none action=none header.from=rkf-eng.com;
x-originating-ip: [108.18.140.127]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 5ddc7f54-ba26-41b1-4540-08d832ecb6de
x-ms-traffictypediagnostic: DM6PR13MB3691:
x-microsoft-antispam-prvs: <DM6PR13MB36913AE980AD6BDED47EDDEA9F730@DM6PR13MB3691.namprd13.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: HWYoljO6BIf/k4HmM8AxBAVSh/KGnBXoB+BOkKdwBV/nYxNXJ6iYmWj1lrOQ8OIHBHbqqMW49zGaMGBa/ZI3RG3JG+o4fKwHmiTTG4hyxONUUzD5l/sQnss4gjhXU/YKQ3xoxivo2mx8OA21EKSurJfT/NIQ0XoiMpD/Xo9kce/hzHf0alnBlQlwUUJ9svTPLo8yEQtUuhx+RY2A2gxzwWCMxlfcK7PZVcAFpkDCRMQI2Ev7SC2h4LmefrXZ0NQ0AoIUsTfsi51fpsLUcCNZIV8/7Q87sYilekkD7/h86OkNAbSBxvyrWR0bfhDZk9gR
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM6PR13MB3562.namprd13.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(346002)(396003)(366004)(39830400003)(136003)(376002)(53546011)(8676002)(5660300002)(66556008)(66476007)(52536014)(86362001)(66446008)(64756008)(186003)(9686003)(8936002)(26005)(6512007)(6506007)(66946007)(508600001)(71200400001)(316002)(2906002)(4744005)(33656002)(110136005)(76116006)(91956017)(19627405001)(83380400001)(6486002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_MN2PR13MB3567A3CF5746A6B6B88392229F720MN2PR13MB3567namp_"
MIME-Version: 1.0
X-OriginatorOrg: rkf-eng.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DM6PR13MB3562.namprd13.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 5ddc7f54-ba26-41b1-4540-08d832ecb6de
X-MS-Exchange-CrossTenant-originalarrivaltime: 28 Jul 2020 11:52:33.1377 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 4ed8b15b-911f-42bc-8524-d89148858535
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: CyuGHa0klSnHsfdsdLvjBf74nlHtOgPa3llaDfrQBgTTp2NZsee2FLOSdAPqWWetR9jabZrk2a5AmpwCAKQdjQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR13MB3691
Archived-At: <https://mailarchive.ietf.org/arch/msg/dtn/_QYX4NiWuOMDuMpjdoTtCZPySFA>
Subject: Re: [dtn] BPbis - BPSec requirement
X-BeenThere: dtn@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Delay Tolerant Networking \(DTN\) discussion list at the IETF." <dtn.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dtn>, <mailto:dtn-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dtn/>
List-Post: <mailto:dtn@ietf.org>
List-Help: <mailto:dtn-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dtn>, <mailto:dtn-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Jul 2020 11:52:39 -0000

All,
My opinion is that BPSec should be required in the sense of: When bundle-level security is needed, you must use BPSec instead of some other mechanism with the same or similar scope.
This is the same type of qualified requirement used for TLS in TCPCLv4.
This requirement steers implementations away from private encodings/behaviors, which is desirable as Rick mentioned in the Monday meeting.

________________________________
From: dtn <dtn-bounces@ietf.org> on behalf of Rick Taylor <rick@tropicalstormsoftware.com>
Sent: Monday, July 27, 2020 09:05
To: dtn@ietf.org <dtn@ietf.org>
Subject: [dtn] BPbis - BPSec requirement


All,



At IETF-108 there was discussion on whether BPbis should require BPSec, and the chairs are interested in discovering the WG consensus on this matter.



Please use this thread for your comments.



Cheers,



Rick & Marc

v2.23.0 | Report a Bug | By Email