IETF Logo Mail Archive

Re: [homenet] Kathleen Moriarty's Discuss on draft-ietf-homenet-dot-12: (with DISCUSS and COMMENT)

Ted Lemon <mellon@fugue.com> Tue, 29 August 2017 20:19 UTC

Return-Path: <mellon@fugue.com>
X-Original-To: homenet@ietfa.amsl.com
Delivered-To: homenet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0E990132D91 for <homenet@ietfa.amsl.com>; Tue, 29 Aug 2017 13:19:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id D5L1RZg_kbZt for <homenet@ietfa.amsl.com>; Tue, 29 Aug 2017 13:19:29 -0700 (PDT)
Received: from mail-qt0-x234.google.com (mail-qt0-x234.google.com [IPv6:2607:f8b0:400d:c0d::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 90E1B132D95 for <homenet@ietf.org>; Tue, 29 Aug 2017 13:19:26 -0700 (PDT)
Received: by mail-qt0-x234.google.com with SMTP id w42so19579961qtg.5 for <homenet@ietf.org>; Tue, 29 Aug 2017 13:19:26 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20150623.gappssmtp.com; s=20150623; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=qWIduuDuYGt5EdgFuLdz0Y3AGSVNNdJaUdHvcx2EJBs=; b=m+NE/8Ordoy9LVYV8n39U+f+c1toS279Tp3H3DtyU+QdasLLFRUA/BvKbpjxJ4fnD0 5FG1OCsylMvrwe2OPjDSViUfV9hcOodYVZpOCM0ep3DX4o8cwEehL+qNZdSPfnnjNL6L e+8eDiFWOvOiZ78CYt9NIxqdWu94EfaaCAuvKO+ij2m3vwf0+sXih6q2l3ZVaIyUTEdc sksGbLX/xdtf3y02qBjsrjuPQ5/qyoxHl4clpmQf2s5PT5a4XPp8pwQpdpFqSNZdQdkT 6fhGQbN1QIxPW6fHvjrtl5q6z+X4gmUhj9DyCcr6FSIVjfYHNatWY12jGyasXL8Vx4Cj 8QAA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=qWIduuDuYGt5EdgFuLdz0Y3AGSVNNdJaUdHvcx2EJBs=; b=c3y5jxfKSUCR4BE/ys5lsSVgIuaHKoDEJ+TYB6CE5DKolrHNYN75dXWDSiKno5urEu Nss16VtUSi0HXv3UroXokbBxV9kdzcYDbQLU9DIt2tFNyzKh07nabLLmtQWOhd0eODN3 hZW4acSn+x4/J59fpJIaSvqnvn4YGNSgqI7W656UDqfKVu/DlSfjQP1HOxYp7Ukewohx u246CNN3aE11sE5X896Tm2k7JdAz3joRkYVmX/A1hEjeafvBBq2ZQzyHz0wi9/u7UDuI RUF1l699B9BMr/iUWsHFeo7oz7dh3pxrV095VcYxylY2z7cD+OsmsquIvfZ8cjt2wZV0 BCYw==
X-Gm-Message-State: AHYfb5gkZGNAU1NaS1+YCDAqYmImJAIZTMVBqduslAX8fM1Z24qaKZW1 B3DX2y195/t0JaED
X-Received: by 10.200.8.234 with SMTP id y39mr7347877qth.275.1504037965557; Tue, 29 Aug 2017 13:19:25 -0700 (PDT)
Received: from cavall.ether.lede.home (c-24-60-163-103.hsd1.nh.comcast.net. [24.60.163.103]) by smtp.gmail.com with ESMTPSA id a12sm2455533qta.90.2017.08.29.13.19.24 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Tue, 29 Aug 2017 13:19:24 -0700 (PDT)
From: Ted Lemon <mellon@fugue.com>
Message-Id: <91A4FB6F-3782-4807-B828-5F65DF841831@fugue.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_B3433182-592E-462C-BA46-D79FA1DAB0D1"
Mime-Version: 1.0 (Mac OS X Mail 10.3 \(3273\))
Date: Tue, 29 Aug 2017 16:19:23 -0400
In-Reply-To: <150403602253.32177.6734059019373307193.idtracker@ietfa.amsl.com>
Cc: The IESG <iesg@ietf.org>, draft-ietf-homenet-dot@ietf.org, homenet-chairs@ietf.org, homenet@ietf.org, ray@bellis.me.uk
To: Kathleen Moriarty <Kathleen.Moriarty.ietf@gmail.com>
References: <150403602253.32177.6734059019373307193.idtracker@ietfa.amsl.com>
X-Mailer: Apple Mail (2.3273)
Archived-At: <https://mailarchive.ietf.org/arch/msg/homenet/zV68eUEVUGBWr5uLMk0VaYfU0eQ>
Subject: Re: [homenet] Kathleen Moriarty's Discuss on draft-ietf-homenet-dot-12: (with DISCUSS and COMMENT)
X-BeenThere: homenet@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF Homenet WG mailing list <homenet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/homenet>, <mailto:homenet-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/homenet/>
List-Post: <mailto:homenet@ietf.org>
List-Help: <mailto:homenet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/homenet>, <mailto:homenet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 29 Aug 2017 20:19:32 -0000

I think these secdir comments are actually out of scope for this work (I'll comment in detail inline).   In order to mitigate the problems described, we would have to do work that is already being done in other working group documents (e.g. draft-tldm-simple-homenet-naming-01).   If you are interested in where this work is going, it would be better to wait a week or two and read the working group draft, which has been adopted and is due for a -00 submission.

Suggestions to use DTLS don't make sense, because we aren't allowed to require changes on the hosts.   Hosts currently do MDNS and spew private information all over the place; that problem is actually already being addressed by vendors.   The printer security problem is significant and is being discussed in the working group.   Again, DTLS doesn't really address this, because there is no PKI solution.

It might make sense to have a presentation on this next month when we meet in Boston—I'd be curious to get feedback from you and some of the other security folks on what we've been talking about.   I'm preparing a presentation for NIST in two weeks that will cover this topic as well, so I may be able to use some of that in Boston, if it makes sense to give me time on the agenda (I've presented quite a few times, so it might be too soon for me to present again).

Anyway, the point is that I don't think I can answer this discuss by making substantive changes to the document.

> On Aug 29, 2017, at 3:47 PM, Kathleen Moriarty <Kathleen.Moriarty.ietf@gmail.com> wrote:
> ----------------------------------------------------------------------
> DISCUSS:
> ----------------------------------------------------------------------
> 
> There are also some privacy issues associated to leaking names outside the
> homenet boundaries. For example daniel_smith.home.arpa reveal the identity of
> the member of the homenet, my_ipad.home.arpa reveals the devices you own, the
> application.
> 
> home.arpa may also used in larger environment such as corporate / private.
> going from one to the other may also leak such information.
> 
> The leak can be from the homenet to the outside world in which case one neeed
> to control the queries sent. But in intruder (or guest) may also access the
> homenet and proceed to discovery of the names. As a result even though homenet
> is believe to be a trusted environment, care should be considered while
> publishing under the home.arpa. as well as whose the information is accessible
> to.

The only sense in which the homenet is considered to be a trusted environment is that we have no choice but to treat it as if it were in some sense isolated from the global internet.   It is absolutely true that any device that gains access to the homenet can enumerate all published names.   The cure, which is well known, is to not publish names that expose private information.   The dnssd working group has developed a solution to this problem: https://tools.ietf.org/html/draft-ietf-dnssd-privacy-02 <https://tools.ietf.org/html/draft-ietf-dnssd-privacy-02>

This doesn't work for printers.

Use of home.arpa in environments other than home networks is not being recommended in this document, and hence the mention of that as an issue seems like a non sequitur.

> They might be collision as well. myprinter.home.arpa may be found in various
> environments, and upon discovery you may also - in this example - print
> confidential information to that printer. In some case you may not even be
> aware, for example, if your printing information failed home, and is
> re-activated once you are in another environment.

I think what is meant here is that if you are at home and have a printer named "myprinter.home.arpa." and then later on you are at someone else's home, or at a malicious coffee shop, there might be a printer there also named "myprinter.home.arpa.", that there is no way to detect this problem.   This is true, but by no means a new problem.   This problem is already explicitly called out in the security considerations section, so I don't think additional text is needed.   If you think that example text is needed, I can add that.

This is a problem we very much want to solve.   If you look at  https://datatracker.ietf.org/doc/draft-sctl-service-registration/?include_text=1 <https://datatracker.ietf.org/doc/draft-sctl-service-registration/?include_text=1> you can see that we are working on this.   A device that does service registration generates a public/private key pair and uses the public key to defend its ownership of the name; what is important about this is that you can tell the difference between two printers with the same name by looking up their public key, and you can in principle use that key to authenticate the printer when you connect with it via TLS.   So if you roam to a home that has a printer with the same name as your printer, an API that understands the registration protocol will not mistakenly connect to that printer as if it were the same printer.

Unfortunately this is not current practice, and it will probably be years before it _becomes_ current practice, but we are doing our best to create the infrastructure that will allow this to happen.   Making non-actionable statements about it in this document doesn't seem like a good idea when we are doing real work to actually solve the problem.   The purpose of this document is simply to allocate the name and document its use under RFC 6761, not to exhaustively define the architecture in which that name will be used.

> As information may be sensitive it may be encrypted using IPsec DTLS as
> described by dprive for both authentication and confidentiality.

This is an example of what I mean by a "non-actionable statement."   There is no way to establish authentication using a PKI trust anchor under home.arpa, so this statement is not in any way actionable at present; recommending that readers do this is simply telling them to go on a wild goose chase.

> When the trust anchor is configured in the resolver, these must be able to
> roll-over the key and should follows the requirements for DNSSEC validators. if
> it is impossible for a resolver to see the difference between an attack and a
> re-key we are in trouble.

This statement is similarly not actionable (in this document).   There is at present no trust anchor.   There can't be.   We are talking about an extension to validating resolvers that know about home.arpa that will make it possible to tell which homenet you are on in much the same way that the registration protocol I referenced earlier.   Making sure that we correctly handle the re-keying problem is definitely a good idea, and one that I hadn't thought of yet, but it's not something we could possibly address in _this_ document.

v2.23.0 | Report a Bug | By Email