IETF Logo Mail Archive

Re: [GROW] Ben Campbell's Yes on draft-ietf-grow-bgp-gshut-12: (with COMMENT)

"Smith, Donald" <Donald.Smith@CenturyLink.com> Thu, 14 December 2017 20:55 UTC

Return-Path: <Donald.Smith@CenturyLink.com>
X-Original-To: grow@ietfa.amsl.com
Delivered-To: grow@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D0839126D45; Thu, 14 Dec 2017 12:55:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.7
X-Spam-Level:
X-Spam-Status: No, score=-4.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-2.8, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CepUg1KDkCMg; Thu, 14 Dec 2017 12:55:23 -0800 (PST)
Received: from lxomp52w.centurylink.com (lxomp52w.centurylink.com [155.70.50.76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 006E21200C1; Thu, 14 Dec 2017 12:55:22 -0800 (PST)
Received: from lxomp90v.corp.intranet (lxomp90v.corp.intranet [151.117.203.59]) by lxomp52w.centurylink.com (8.14.8/8.14.8) with ESMTP id vBEKtLnd027616 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=FAIL); Thu, 14 Dec 2017 14:55:22 -0600
Received: from lxomp90v.corp.intranet (localhost [127.0.0.1]) by lxomp90v.corp.intranet (8.14.8/8.14.8) with ESMTP id vBEKtG3p047415; Thu, 14 Dec 2017 14:55:16 -0600
Received: from lxomp07u.corp.intranet (lxomp81v.corp.intranet [151.117.18.14]) by lxomp90v.corp.intranet (8.14.8/8.14.8) with ESMTP id vBEKtGqJ047412 (version=TLSv1/SSLv3 cipher=AES256-SHA256 bits=256 verify=NO); Thu, 14 Dec 2017 14:55:16 -0600
Received: from lxomp07u.corp.intranet (localhost [127.0.0.1]) by lxomp07u.corp.intranet (8.14.8/8.14.8) with ESMTP id vBEKtGjU008146; Thu, 14 Dec 2017 14:55:16 -0600
Received: from vddcwhubex501.ctl.intranet (vddcwhubex501.ctl.intranet [151.119.128.28]) by lxomp07u.corp.intranet (8.14.8/8.14.8) with ESMTP id vBEKtGZ4008143 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Thu, 14 Dec 2017 14:55:16 -0600
Received: from PDDCWMBXEX503.ctl.intranet ([fe80::9033:ef22:df02:32a9]) by vddcwhubex501.ctl.intranet ([151.119.128.28]) with mapi id 14.03.0339.000; Thu, 14 Dec 2017 13:55:15 -0700
From: "Smith, Donald" <Donald.Smith@CenturyLink.com>
To: Job Snijders <job@ntt.net>, "bruno.decraene@orange.com" <bruno.decraene@orange.com>
CC: "grow-chairs@ietf.org" <grow-chairs@ietf.org>, Ben Campbell <ben@nostrum.com>, "draft-ietf-grow-bgp-gshut@ietf.org" <draft-ietf-grow-bgp-gshut@ietf.org>, "grow@ietf.org" <grow@ietf.org>, The IESG <iesg@ietf.org>
Thread-Topic: [GROW] Ben Campbell's Yes on draft-ietf-grow-bgp-gshut-12: (with COMMENT)
Thread-Index: AQHTdOnn/WOAcmwiYU2OFCSyCkLtgqNDEXB/gACF1QCAABpvgP//nuVq
Date: Thu, 14 Dec 2017 20:55:15 +0000
Message-ID: <68EFACB32CF4464298EA2779B058889D53D3961F@PDDCWMBXEX503.ctl.intranet>
References: <151322570465.6210.17202569330170241275.idtracker@ietfa.amsl.com> <15461_1513262548_5A328DD4_15461_64_1_53C29892C857584299CBF5D05346208A47920D36@OPEXCLILM21.corporate.adroot.infra.ftgroup> <68EFACB32CF4464298EA2779B058889D53D3936E@PDDCWMBXEX503.ctl.intranet> <5142_1513274623_5A32BCFF_5142_246_1_53C29892C857584299CBF5D05346208A4792151C@OPEXCLILM21.corporate.adroot.infra.ftgroup>, <20171214193819.GS95845@vurt.meerval.net>
In-Reply-To: <20171214193819.GS95845@vurt.meerval.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [151.119.128.8]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-TM-AS-MML: disable
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/grow/glA6JVWnnFYTS-1a9djLi2ZCttM>
Subject: Re: [GROW] Ben Campbell's Yes on draft-ietf-grow-bgp-gshut-12: (with COMMENT)
X-BeenThere: grow@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Grow Working Group Mailing List <grow.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/grow>, <mailto:grow-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/grow/>
List-Post: <mailto:grow@ietf.org>
List-Help: <mailto:grow-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/grow>, <mailto:grow-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 14 Dec 2017 20:55:25 -0000

if (initial_ttl!=255) then (rfc5082_compliant==0)
Donald.Smith@centurylink.com

>       ________________________________________
>       From: Job Snijders [job@ntt.net]
>       Sent: Thursday, December 14, 2017 12:38 PM
>       To: bruno.decraene@orange.com
>       Cc: Smith, Donald; grow-chairs@ietf.org; Ben Campbell; draft-ietf-grow-bgp-gshut@ietf.org; grow@ietf.org; The IESG
>       Subject: Re: [GROW] Ben Campbell's Yes on draft-ietf-grow-bgp-gshut-12: (with COMMENT)
>
>       On Thu, Dec 14, 2017 at 06:03:42PM +0000, bruno.decraene@orange.com wrote:
>       > > From: Smith, Donald [mailto:Donald.Smith@CenturyLink.com]
>       >  > Sent: Thursday, December 14, 2017 6:13 PM
>       > >
>       >  > I don't see anything around MD5/TCPAO authentication.
>       >
>       > This is correct, but this is really not specific to this document and
>       > the comment would apply to any information sent over BGP session, and
>       > probably to most of IDR document extending the protocol with
>       > additional field or usage.  If there is a need to discuss this all
>       > IETF document related to BGP, we can indeed add some text. Would the
>       > following text be ok with you?
>       >
>       > "This document does not change any underlying security issues
>       > associated with any other BGP Communities mechanism.  Unless a
>       > transport that provides integrity is used for the BGP session, the
>       > GRACEFUL_SHUTDOWN community may be added or removed by a man in the
>       > middle. However, the harm would be lower than adding or removing an
>       > NLRI, or adding a NO_EXPORT or NO_ADVERTISE community. Hence this does
>       > not constitute a new attack vector. Protection of the TCP session used
>       > by BGP is discussed in section 5.1 of RFC 7454,  security section of
>       > [RFC4271] and [RFC4272]."
>
>       I think the above is mostly good, but can be trimmed a little bit. The
>       following is on point and covers aspects relevant to GRACEFUL_SHUTDOWN.
>
>           "This document does not change any underlying security issues
>           associated with any other BGP Communities mechanism. Unless a
>           transport that provides integrity is used for the BGP session, the
>           GRACEFUL_SHUTDOWN community may be added or removed by a man in the
>           middle."
>
>       Kind regards,
>
>       Job

Since in theory you could do this blindly (tcp slipping in the window), I would remove the MITM and say by "unauthorized 3rd parties" or something like that.

Otherwise this is better than putting all the other security recommendations from other rfcs [4271, 4272] so I support referencing them instead.


This communication is the property of CenturyLink and may contain confidential or privileged information. Unauthorized use of this communication is strictly prohibited and may be unlawful. If you have received this communication in error, please immediately notify the sender by reply e-mail and destroy all copies of the communication and any attachments.

v2.23.0 | Report a Bug | By Email