IETF Logo Mail Archive

Re: [Gen-art] Genart last call review of draft-wu-l3sm-rfc8049bis-07

Jari Arkko <jari.arkko@piuha.net> Thu, 26 October 2017 08:16 UTC

Return-Path: <jari.arkko@piuha.net>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 54A1513B0F4; Thu, 26 Oct 2017 01:16:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Csnfx5kYs0gw; Thu, 26 Oct 2017 01:16:49 -0700 (PDT)
Received: from p130.piuha.net (p130.piuha.net [193.234.218.130]) by ietfa.amsl.com (Postfix) with ESMTP id 7044513A9F5; Thu, 26 Oct 2017 01:16:48 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by p130.piuha.net (Postfix) with ESMTP id C9D2F2CFB1; Thu, 26 Oct 2017 11:16:46 +0300 (EEST) (envelope-from jari.arkko@piuha.net)
X-Virus-Scanned: amavisd-new at piuha.net
Received: from p130.piuha.net ([127.0.0.1]) by localhost (p130.piuha.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xttXrQeNhhbT; Thu, 26 Oct 2017 11:16:46 +0300 (EEST)
Received: from [127.0.0.1] (p130.piuha.net [IPv6:2001:14b8:1829::130]) by p130.piuha.net (Postfix) with ESMTPS id DA46F2CCC0; Thu, 26 Oct 2017 11:16:45 +0300 (EEST) (envelope-from jari.arkko@piuha.net)
From: Jari Arkko <jari.arkko@piuha.net>
Message-Id: <4C2C391F-0109-49EC-81F4-4F7760C2DACC@piuha.net>
Content-Type: multipart/alternative; boundary="Apple-Mail=_6835F036-CA8E-4DCE-9479-4422BA8AE5B9"
Mime-Version: 1.0 (Mac OS X Mail 10.3 \(3273\))
Date: Thu, 26 Oct 2017 11:16:44 +0300
In-Reply-To: <B8F9A780D330094D99AF023C5877DABA9AC178E0@nkgeml513-mbx.china.huawei.com>
Cc: "gen-art@ietf.org" <gen-art@ietf.org>, "ietf@ietf.org" <ietf@ietf.org>, "draft-wu-l3sm-rfc8049bis.all@ietf.org" <draft-wu-l3sm-rfc8049bis.all@ietf.org>
To: Qin Wu <bill.wu@huawei.com>
References: <150896479290.4890.6282834560661739719@ietfa.amsl.com> <B8F9A780D330094D99AF023C5877DABA9AC178E0@nkgeml513-mbx.china.huawei.com>
X-Mailer: Apple Mail (2.3273)
Archived-At: <https://mailarchive.ietf.org/arch/msg/gen-art/0NgnykgZg2dhbmTjZ4KNvKx_xxs>
Subject: Re: [Gen-art] Genart last call review of draft-wu-l3sm-rfc8049bis-07
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 26 Oct 2017 08:16:51 -0000

Thanks for your response, Qin.

Some further comments:

> [Qin]: Yes, there are implementations, something broken in RFC8049 needs to get right.

Cool..

> I'm not sure I fully understand the need for "SP MUST honour <requirement>"
> language in the document. Are there parts of the described model that they SP is *not* required to honour? Other than the explicit strict true/false settings? And in any case, sizeable networks are likely to have issues that might require negotiation/human involvement.
> 
> [Qin]: Explicit settings are covered by sub-section of section 6.6, such as device constraint, Site Location constraint/parameter, access type.
> Unlike RFC8049, RFC8049bis change "SP SHOULD honor" into "SP MUST honor”. 

OK

> I don't understand how 6.9.1 can say there is no authentication support but then 6.9.2 (encryption) talks about authentication keys. I'd suggest some rethinking or at least clarification might be needed here.
> 
> [Qin]: Authentication provides you access to a resource like a computer or a network. Encryption provides confidentiality and controls whether an object can be read or not.
> Both Authentication and Encryption are site level parameters and applicable to site connection. Pre-share key as encryption parameter can be used, e.g., for routing protocol authentication.
> But pre-share key parameter is not authentication parameter, one example I have for authentication parameter is authentication algorithm which is not specified in the model,
> We will see how to clarify this in the model. thanks.

Please do. I’m not sure the auth/encr distinction is as useful as it may appear initially. You often have to authenticate in order to encrypt. Another possible distinction might be whether you use cryptographic protection for routing protocol or payload traffic protection.

(It could be that when you say “authentication” or “encryption” you mean very specific things that I’m not understanding. Being more specific usually helps. I’m not suggesting you do describe all possible security options that might exist, but being precise would be useful.)

> In the security considerations, I would note that if these models are used not merely for creation of networks, but also their modification, the consequences of inadvertent or malicious modifications can severe and network wide. Perhaps that could be discussed.
> 
> [Qin]:Security consideration section has already considered both creation of networks and but also their modification, see the text in security consideration section as follows:
> "
>   The data nodes defined in the "ietf-l3vpn-svc" YANG module MUST be
>   carefully created, read, updated, or deleted as appropriate.
> “

IMHO, that is not particularly detailed, nor does it tell me useful things that I can do in my implementation or deployment.

Jari

v2.23.0 | Report a Bug | By Email