Re: [Gen-art] [tram] Genart last call review of draft-ietf-tram-turnbis-25
Vijay Gurbani <vijay.gurbani@gmail.com> Thu, 06 June 2019 12:39 UTC
Return-Path: <vijay.gurbani@gmail.com>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9506F12011F; Thu, 6 Jun 2019 05:39:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4-gu-y_AIPFh; Thu, 6 Jun 2019 05:39:36 -0700 (PDT)
Received: from mail-it1-x12a.google.com (mail-it1-x12a.google.com [IPv6:2607:f8b0:4864:20::12a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E23A01200B2; Thu, 6 Jun 2019 05:39:35 -0700 (PDT)
Received: by mail-it1-x12a.google.com with SMTP id l21so2890536ita.2; Thu, 06 Jun 2019 05:39:35 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=4OqFoZVrbS9XBtGzWS/R7hv3iamQYzx7kTbK+Ni8OZo=; b=djhwQLm0nC4nNuhzXIGrM9KmY1dyt2YlO2JIao4cBa+8iWMS+6zAWSMpgKk5TP9e6w ZhkfisHCt/OLZd2nhQBvcZMjmLFP2gf8F+CY4s8sy6KrDWlWJNP4k4p62EFrGfA+2U+B Vqv3FUDn4fSO/QNjOv1WBXtMB99sTribNxIWiLpXOgB7wvIDsW8BJIqhR5Mlr3Ueqdfn 5gnA52qWhsBLxCk2w2Eid7bqO8IbqfHuX5jJp9/uM/dOpiNyJaivFPVU6VIOYl0E2Wvw aNuVaqmVM7/+jnL7T/ZPq6bJH4hkcQ+0nfqpsiGq/4LfQxstMhDiXRWgUHgTT0g5Qeve 3kiA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=4OqFoZVrbS9XBtGzWS/R7hv3iamQYzx7kTbK+Ni8OZo=; b=GMnd2vt8JvCschoVa5mswRPK9uibJguapYIDcGfZCdB/Y6prKv9sAgTgyTUYZ0AisO tuK/zUAyNgkEgv57NC5V1M8ZxVMevKr9VBnpV2jAvTv/M0nhdcMCK3FeoNlcyu4T1exi 6CyKxFjIlYJfZnPTflAvy2tND2AE1Zu8NMDB+TFT64KNHt9EVaIgs3WI1Baw3bE40UnX ovN5Sx/uRsfjXbKk7YW4xmxiGxh+Tme/k3ZzyLMzXLmiT4KYV6ee1H6mzMH6R+p9Z2VE rH08CgF0Ray1VclHw7M4ZMwJPB7t1OXvWv37+sPzh3u+TRzJmhdKUX7L1lYe8RlC7SmK 7ynQ==
X-Gm-Message-State: APjAAAVrRHo/zEuw8coslE0rob2A6nTa35jXtODlMX0JuAaZ1TxeXiAS O5BID8zasCsbMgt2JRJ7j8bo3K6x8fH1CJcBnMpkCkv4
X-Google-Smtp-Source: APXvYqwOFM/r/DsZxtNmxeJ4kFaAbiRdW+SIMWT94eCIAIi7+jIadUmPFu1xMn2BGgJ4TTbbP6w+/BfRMkKLiFztev4=
X-Received: by 2002:a05:660c:352:: with SMTP id b18mr29077440itl.20.1559824775057; Thu, 06 Jun 2019 05:39:35 -0700 (PDT)
MIME-Version: 1.0
References: <155931411903.6360.15337432658764941505@ietfa.amsl.com> <DM5PR16MB17053ED6AA91994433095303EA150@DM5PR16MB1705.namprd16.prod.outlook.com> <CAMMTW_Lb0tnUj-iYx-rqvpwJkd7NjWmvu_EMzGr9NHg_fDOjyw@mail.gmail.com> <DM5PR16MB1705B319D090AEA233FBE1E3EA160@DM5PR16MB1705.namprd16.prod.outlook.com>
In-Reply-To: <DM5PR16MB1705B319D090AEA233FBE1E3EA160@DM5PR16MB1705.namprd16.prod.outlook.com>
From: Vijay Gurbani <vijay.gurbani@gmail.com>
Date: Thu, 06 Jun 2019 07:39:20 -0500
Message-ID: <CAMMTW_LNbXXM+vqoj5nd3X+yRqFr9k4ygJ1NMZ_qbBkpgNDdhA@mail.gmail.com>
To: "Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@mcafee.com>
Cc: "gen-art@ietf.org" <gen-art@ietf.org>, "draft-ietf-tram-turnbis.all@ietf.org" <draft-ietf-tram-turnbis.all@ietf.org>, "ietf@ietf.org" <ietf@ietf.org>, "tram@ietf.org" <tram@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000a1173d058aa701ce"
Archived-At: <https://mailarchive.ietf.org/arch/msg/gen-art/n60IEp_xIr3pJ8QCUqhNdqf7SNo>
Subject: Re: [Gen-art] [tram] Genart last call review of draft-ietf-tram-turnbis-25
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 06 Jun 2019 12:39:39 -0000
Dear Tiru, thank you for your response. Please see inline. On Wed, Jun 5, 2019 at 7:21 AM Konda, Tirumaleswar Reddy < TirumaleswarReddy_Konda@mcafee.com> wrote: > > - S 2.4, Figure 3: "To partly mitigate this attack ...", just to be > explicit, [...] > > > If the attacker spoofs the TURN client IP address and sends bogus Send > indication to the server to a peer based on the permission installed by the > TURN client to the peer, this attack cannot be mitigated the server unless > (D)TLS is used. However, if the attacker spoofs the TURN client IP address > and sends bogus Send indication to the server to peer but the client has > not installed permission to the peer, this attack can be mitigated by the > server. The above points are covered in > https://tools.ietf.org/html/draft-ietf-tram-turnbis-25#section-20.1.4. > > > > I think a forward reference to Section 20.1.4 can easily be made in > Section 2.4 so the reader is aware of the what mitigation properties are > being provided by S2.4 and which section is providing the remaining > properties. It will make your document much more complete. > > > > [TR] Okay, added the following line: > > The techniques to fully mitigate the attack are discussed in Section > 20.1.4. > > Great, thanks. > > - S5, second to last paragraph: "...a long sequence of invalid..." > Here, how > > long is "long"? 2 messages? 3 messages? 4 messages? I think an > explicit > > guideline may help make the error handling more robust. > > The threshold for long sequence of invalid TURN messages looks > implementation specific to me, it was not specified in the base TURN spec > (see https://tools.ietf.org/html/rfc5766#section-4). > > > > If it was not specified in the base TURN specification, then it may make > sense to tighten up the behaviour in the bis specification, no? This would > be our chance to add a behaviour that can be measured and test cases > created against it for protocol resiliency, no? Or am I missing something > on why the bis specification does not want to tighten this behaviour? > > > > [TR] The threshold values for long sequence of invalid TURN messages is > not discussed in the TRAM WG, and I don’t have information on the typical > values used in the field. Anyways, not documenting the threshold values > would not cause any interoperable issues for a really low probability > scenario. > > Since the WG has not addressed a threshold for invalid TURN messages, I suspect that there is nothing more to be done here from a process point of view. However, despite this being a low probability scenario, it will be encountered and I suspect that it has been already but just not documented. So from a completeness point of view, it may make sense to bring this to the attention of the TRAM WG and if they have decided, for good reasons, to punt on this, then the issue is closed. I can send an email to the TRAM WG chairs, just to close the loop. > > - S7.3, third paragraph: "...before trying to request any more ..." > Here, how > > many times should a client retry the request upon the receipt of a 508? > > Again, an explicit guideline will help interoperability; otherwise, > some > > clients will retry only once, other more than once, and so on. > > The number of attempts the client would retry is implementation specific. > For example, if other TURN servers are available, the client can try to get > the relayed transport address from the other TURN servers and need not > retry the request (see https://tools.ietf.org/html/rfc8445#section-5.1.1.2). > > > Same feedback as above; if the number of attempts were not specified in > rfc5766, could we not do better now? Any reason not to? > > > > [TR] The number of attempts depends on the context, For instance (1) If > other TURN servers are available, and the client gets the relayed transport > address from at least one other TURN server, the client need not retry the > request (2) if the client is using ICE ( > https://tools.ietf.org/html/rfc8445), the client can keep retrying till > the candidate gathering phase expires (please note ICE specification does > not specify the candidate gathering phase timeout). > Okay, sounds good. Thank you for attending to my comments. I appreciate it. - vijay >
- [Gen-art] Genart last call review of draft-ietf-t… Vijay Gurbani via Datatracker
- Re: [Gen-art] [tram] Genart last call review of d… Konda, Tirumaleswar Reddy
- Re: [Gen-art] [tram] Genart last call review of d… Vijay Gurbani
- Re: [Gen-art] [tram] Genart last call review of d… Konda, Tirumaleswar Reddy
- Re: [Gen-art] [tram] Genart last call review of d… Vijay Gurbani
- Re: [Gen-art] [tram] Genart last call review of d… Konda, Tirumaleswar Reddy