IETF Logo Mail Archive

Re: [Idr] WG Adoption call for draft-snijders-idr-shutdown (11/16 to 11/30)

jim deleskie <deleskie@gmail.com> Mon, 21 November 2016 18:03 UTC

Return-Path: <deleskie@gmail.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A8DEA129672 for <idr@ietfa.amsl.com>; Mon, 21 Nov 2016 10:03:59 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AY4Mlyuwq3Jc for <idr@ietfa.amsl.com>; Mon, 21 Nov 2016 10:03:56 -0800 (PST)
Received: from mail-wm0-x22c.google.com (mail-wm0-x22c.google.com [IPv6:2a00:1450:400c:c09::22c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 57031129465 for <idr@ietf.org>; Mon, 21 Nov 2016 10:03:56 -0800 (PST)
Received: by mail-wm0-x22c.google.com with SMTP id t79so158834612wmt.0 for <idr@ietf.org>; Mon, 21 Nov 2016 10:03:56 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=qR3jK4Dxiv1U9/kG7fYl92FIao4VCPfFchJNfw6a1d4=; b=IXZ+e6acX3L/MDqObMLGlBRJl/pI0+0Rkq4/7sr42wAufLEWWwnrvfsqHnjo9ywIXZ Nngo5kDhHbLj3K8Aho/wu3WnpFzmnWYs/JoYMwIOl6Iyn/42uMhQC/hjVS1Qu5xFNM58 Cjhu8/J98j2i7qImN/fj+Vp0ZKtvSG59OOiLhnjPdFnieVf/WjTGBcdJO8FxsJelQM8q hZyj0reuST909mN4h22+oZxJROE0krA2JBFYwwg2C/zNZsTSzRq3PH/iwVIHnzgD/9zm PPtDd8t1Jj86y790wuErRclaWH0exsxaH2CSqS/lrvVdoC9Rb5ekXpywXMLSe+nCiGUk 7KcA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=qR3jK4Dxiv1U9/kG7fYl92FIao4VCPfFchJNfw6a1d4=; b=SeLWtlQKQWO/tyBohhtZFSGo7kVlwjkeeGhkgCRvDu32qBctMBusKEZMHKz43cgG9N kMVGVP/uDkVyafYyR0CaK+kZBFOCRvMZBqF0dMLdLbPvqXyp5HESTEnR+lddvVe5+vB0 9jb7AbBEodVreO6zrI6vlGsKSBCeeoursr2Tk8AW7rQs/5ocMQF+CJBpVmrKX/RyUu7F rx8mBiBvWRz26lAzyxBFo0KnHN9gs4JMU36gXeZVM0SZLLqOl61sX4acHNvjgc54qJV1 tIF39S63czPeTjAwyKjCeWPFSK454Pr1eD0rI9Mnk075/SL5AC48S3M/gxd0m4sjdt8C LNBg==
X-Gm-Message-State: AKaTC02jKkc4Ge0IWgSmHA7CSSAQGdoDyQx6AxYK0tQ0ePcygRS7cSlo85ipmIWk94wWbWeinvj85SqE5RPBEQ==
X-Received: by 10.28.130.66 with SMTP id e63mr16287098wmd.39.1479751434876; Mon, 21 Nov 2016 10:03:54 -0800 (PST)
MIME-Version: 1.0
Received: by 10.28.69.4 with HTTP; Mon, 21 Nov 2016 10:03:53 -0800 (PST)
In-Reply-To: <20161121165418.GI1236@Hanna.local>
References: <013f01d2404d$3dfff610$b9ffe230$@ndzh.com> <39991BB5-28C6-414F-A1BE-F5132DE2E012@microsoft.com> <20161121165418.GI1236@Hanna.local>
From: jim deleskie <deleskie@gmail.com>
Date: Mon, 21 Nov 2016 14:03:53 -0400
Message-ID: <CAJL_ZMPTLUNLo6MVLM8Gtu4k+KvPJwzKWE7P6YPmuzUax3a2tA@mail.gmail.com>
To: Job Snijders <job@ntt.net>
Content-Type: multipart/alternative; boundary="001a1144364ca1bde80541d37a8f"
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/EY5_2B8mUNvNeO4IgJBAq1Zks_Q>
Cc: idr wg <idr@ietf.org>
Subject: Re: [Idr] WG Adoption call for draft-snijders-idr-shutdown (11/16 to 11/30)
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Nov 2016 18:04:00 -0000

I understand people may want the characters in their language, but is there
a technical reason for UTF-8, like many of you I've worked with many
engineers, in ehe past 20 years,for who english is not their native
language. I suspect many of those of you that know me have questioned if it
is mine :)  However  these engineers typically, while thinking in their
first language, "work" in english, as its the defacto standard, much like
with air travel.


-jim

On Mon, Nov 21, 2016 at 12:54 PM, Job Snijders <job@ntt.net> wrote:

> On Sun, Nov 20, 2016 at 08:04:54PM +0000, Martin Hannigan wrote:
> > This is useful. On the security considerations, I’m having a little
> > bit of a fail grokking what visual spoofing means in this case? Is
> > there way to spoof a cease message from a third party and create a
> > message like “tear down, gone forever” in an unsecured (not MD5 or
> > other secured mechanism) or is the reference to UTR36 more perfunctory
> > and along the lines of “don’t send money to someone sending a request
> > in this message including example@sample.com as a target address?
>
> Visual spoofing exists in (at least) two forms, one is on the character
> level: where innocuous characters are replaced with variants for
> nefarious purposes, for example the following look alike but are
> different: Greek Ο, Latin O, and Cyrillic О. The other variant is where
> somehow a newline, newpage, feedpage or enough spaces to wrap the line
> are inserted, and the receiving side might incorrectly think there are
> more than 1 syslog messages where in reality its just 1 message,
> containing a communication + syslog-like content.
>
> To counter this the length of the string is limited to be very brief. If
> one is allowed to insert say 4000 bytes worth of Shutdown Communication,
> you could easily 'visually spoof' half a page worth of fake-syslog. The
> receiving side might think his/her router is in big trouble and perform
> an emergency reboot or upgrade based on false information.
>
> Further reading: (search bing.com for 'visual spoofing')
>
>     https://en.wikipedia.org/wiki/IDN_homograph_attack
>     http://unicode.org/reports/tr36/#visual_spoofing
>
> Another defense is to squash likely garbage and not print that. So one
> should replace the garbage with U+FFFD "replacement character" so that
> "drã©op table XXX;" becomes "dr�op table XXX;" and not "drop table
> XXX;". The next version of the draft will provide more guidance on that.
>
> This draft is breaking a lance for IDR in that it is the first draft (as
> far as I know) to carefully consider the security aspects of using UTF-8
> at this level.
>
> I think UTF-8 is the right choice, it can be done (many industries have
> gone before us), there is more than Roman script in this world, but
> we'll need to make implementors aware.
>
> > Any real concern over buffer overflows?
>
> The clearly defined upperbound length of the BGP PDU, the Cease
> NOTIFICATION and the length marker for the Shutdown Communication itself
> can help mitigate these. I don't think there are any real new
> considerations here. Normal printf, strlcpy, strlcat recommendations
> apply. It was an explicit choice to not use a NUL-termination.
>
> I welcome feedback from others, I wouldn't dare to proclaim I'm anything
> close to an expert.
>
> Kind regards,
>
> Job
>
> _______________________________________________
> Idr mailing list
> Idr@ietf.org
> https://www.ietf.org/mailman/listinfo/idr
>

v2.23.0 | Report a Bug | By Email