IETF Logo Mail Archive

Re: [Homenet-babel-sec] Security Design Team - July is coming!

Ted Lemon <mellon@fugue.com> Tue, 23 May 2017 19:06 UTC

Return-Path: <mellon@fugue.com>
X-Original-To: homenet-babel-sec@ietfa.amsl.com
Delivered-To: homenet-babel-sec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A8B4112ACAF for <homenet-babel-sec@ietfa.amsl.com>; Tue, 23 May 2017 12:06:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QaTUhT4jTHU8 for <homenet-babel-sec@ietfa.amsl.com>; Tue, 23 May 2017 12:06:56 -0700 (PDT)
Received: from mail-qt0-x236.google.com (mail-qt0-x236.google.com [IPv6:2607:f8b0:400d:c0d::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4843A12EA54 for <homenet-babel-sec@ietf.org>; Tue, 23 May 2017 12:06:56 -0700 (PDT)
Received: by mail-qt0-x236.google.com with SMTP id v27so136683923qtg.2 for <homenet-babel-sec@ietf.org>; Tue, 23 May 2017 12:06:56 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20150623.gappssmtp.com; s=20150623; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=8GDRO10daeX6waRO005thPcIR872thS6kDG1WrXWeTQ=; b=qiVXhZUDGPswR34O+yenKQVP1boK+P0KXRhdtGg/NhpMeT7Zzuf0MeTObkLwMHSQ1E 5EQyMGsRNINcCIqJyWordCvFFSVjVOKyVrgoyV0bRtJlkqaqvRxhOQXgZn3BYM1JRXwS fF02y4gLa6csoXmFA5JgnzlBLQsqR94bW0ivROnZV/60kBEL1CeZC8C+bOa/ZLld5cwF y9+MqhLmGk5P5YMyTpzN1NNxZPUOmzP13cPrkkQHKq1rRumPrRSMMJo4Ws6d3UdzekHq MOv99E4DXYMJOjThPBsvPUaBvXwaa3UTl5a+eFfn1AFslsjMzWVW+O84O/YIW8Nc24kp oiOQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=8GDRO10daeX6waRO005thPcIR872thS6kDG1WrXWeTQ=; b=dpumJdsWcjEs7uz7K+9+JRkonGfD8P2bKIzB2drrsI9252LLxPNYOXaMpjBWZsG5TP i4h/hGg/BT6wjlC+6yh9kn7lL0ZRRQxxjKbdI76KAMQsDUH1rHCFIZSoXMMngZMBp3G9 1lGLvGJzN+r2HPpHZzqEGTKsmOHCoZQrXTvr32BRkbXjtBR0vFncEIwdYUGcxpGsOTFZ TCgoUZ3ljDy7extLoxPQlsXcx7QMkW0tvxoVPge1bISkY5Yf0WwxzKxifHIbWpFySiaQ qzuHNQhDoFDTt/cUBiXXZy5geAPc/CvKYdci1rwnSkGfKn1qzVahDwMJn0yzAa2lUGwQ 1yVg==
X-Gm-Message-State: AODbwcAhQqgqOq2jljGXcL3AkGdVSs+2GpRM6FBR7AFta+Ib5OkT484V zxdJKZCyiSKKwg1x
X-Received: by 10.200.42.166 with SMTP id b35mr31658843qta.239.1495566415403; Tue, 23 May 2017 12:06:55 -0700 (PDT)
Received: from [10.0.30.228] (c-73-167-64-188.hsd1.ma.comcast.net. [73.167.64.188]) by smtp.gmail.com with ESMTPSA id q34sm1029362qte.44.2017.05.23.12.06.53 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Tue, 23 May 2017 12:06:54 -0700 (PDT)
From: Ted Lemon <mellon@fugue.com>
Message-Id: <246CDF99-F236-44FD-9C9D-7C7E4B63D12A@fugue.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_CDA4C15C-EAB4-4F18-9DBA-DBA51C75AECC"
Mime-Version: 1.0 (Mac OS X Mail 10.3 \(3273\))
Date: Tue, 23 May 2017 15:06:51 -0400
In-Reply-To: <CABG_PfQ77XKSHyYrxWcadqOnrbvnO6VgiL6SWbxB2fdjyZOyxg@mail.gmail.com>
Cc: Juliusz Chroboczek <jch@irif.fr>, David Schinazi <dschinazi@apple.com>, Mark Townsley <mark@townsley.net>, homenet-babel-sec@ietf.org, babel@ietf.org
To: Jehan Tremback <jehan.tremback@gmail.com>
References: <5255AA16-3DA8-418B-8533-B87F1CA78A72@townsley.net> <168E460A-29A7-4AA1-9232-6A777F8F93DE@fugue.com> <A1A2DC72-FAB0-4E9E-826A-7F15A4110D70@apple.com> <7i4lwb33gq.wl-jch@irif.fr> <CABG_PfQ77XKSHyYrxWcadqOnrbvnO6VgiL6SWbxB2fdjyZOyxg@mail.gmail.com>
X-Mailer: Apple Mail (2.3273)
Archived-At: <https://mailarchive.ietf.org/arch/msg/homenet-babel-sec/gZbI3ZVJcSkfxRCj8rlHQuN8DOY>
Subject: Re: [Homenet-babel-sec] Security Design Team - July is coming!
X-BeenThere: homenet-babel-sec@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Homenet Babel Security <homenet-babel-sec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/homenet-babel-sec>, <mailto:homenet-babel-sec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/homenet-babel-sec/>
List-Post: <mailto:homenet-babel-sec@ietf.org>
List-Help: <mailto:homenet-babel-sec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/homenet-babel-sec>, <mailto:homenet-babel-sec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 23 May 2017 19:06:59 -0000

On May 23, 2017, at 2:55 PM, Jehan Tremback <jehan.tremback@gmail.com> wrote:
> Hey, I just read through the minutes, wondering if someone has a concise definition of the threat model we are trying to guard against. I assume it's to prevent attackers from showing up and sending out bogus routing messages to bork or DOS the network?


Here are the notes that we took in the break-out session after the main meeting:

https://github.com/bhstark2/babel-security/blob/master/chicago-notes.md <https://github.com/bhstark2/babel-security/blob/master/chicago-notes.md>

There's also a file there where we were going to put in our thoughts about the threat model, so that we could try to come up with an idea of what we are all talking about.   However, it looks like nobody's actually done anything to that document.

v2.23.0 | Report a Bug | By Email