IETF Logo Mail Archive

Re: [Idr] [secdir] Secdir early review of draft-ietf-idr-te-pm-bgp-13

John E Drake <jdrake@juniper.net> Fri, 19 October 2018 19:42 UTC

Return-Path: <jdrake@juniper.net>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 036C8130DD1; Fri, 19 Oct 2018 12:42:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.764
X-Spam-Level:
X-Spam-Status: No, score=-0.764 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.064, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, KHOP_DYNAMIC=1.999, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WYIbp5b8-M2t; Fri, 19 Oct 2018 12:42:42 -0700 (PDT)
Received: from mx0b-00273201.pphosted.com (mx0b-00273201.pphosted.com [67.231.152.164]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 00CDE130DF9; Fri, 19 Oct 2018 12:42:41 -0700 (PDT)
Received: from pps.filterd (m0108162.ppops.net [127.0.0.1]) by mx0b-00273201.pphosted.com (8.16.0.22/8.16.0.22) with SMTP id w9JJdJgU030081; Fri, 19 Oct 2018 12:42:39 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : mime-version; s=PPS1017; bh=oHgYdZGE0ltP9z1/zehXSw/MabqhwvY+zdkbfY1ZWgA=; b=wIAWLrqGfgLmh+uDDBNvL375R0PMtF2dam9CiQW26uwSCyS1TZqW0y7R/rqKbScSjxqx NufxO1Thjhh+1mhrVjNHQTNsKpnCMpbCnc5lTxsQsloPww/lu01eyzeOZVIZ558MTjg5 v2/BiPWmu3H78+5mADecEVU7K3+v79z7Q0r0wTWdAMq7X/QguPR00hfKNw/GMVg+ISvH OxEUjQYha/VWUDZf7I+P0jbLQDcSooENmpLov9xiC6fcaspBuQmtX2qrsHooa2y0006C bsl4pn5dYE0lEtNY9dfXXheFSjiAFHu0ykEwtkywlkzl3oB9Oo2xW8SJETvQHqhh/RTl 0w==
Received: from nam05-dm3-obe.outbound.protection.outlook.com (mail-dm3nam05lp0117.outbound.protection.outlook.com [216.32.181.117]) by mx0b-00273201.pphosted.com with ESMTP id 2n7fbp0mnh-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Fri, 19 Oct 2018 12:42:39 -0700
Received: from BN7PR05MB4354.namprd05.prod.outlook.com (52.133.223.33) by BN7PR05MB5699.namprd05.prod.outlook.com (20.176.28.88) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1273.13; Fri, 19 Oct 2018 19:42:35 +0000
Received: from BN7PR05MB4354.namprd05.prod.outlook.com ([fe80::c494:2955:fd6c:4012]) by BN7PR05MB4354.namprd05.prod.outlook.com ([fe80::c494:2955:fd6c:4012%4]) with mapi id 15.20.1250.028; Fri, 19 Oct 2018 19:42:34 +0000
From: John E Drake <jdrake@juniper.net>
To: Robert Raszuk <robert@raszuk.net>, "shares@ndzh.com" <shares@ndzh.com>
CC: "secdir@ietf.org" <secdir@ietf.org>, "kaduk@mit.edu" <kaduk@mit.edu>, Yoav Nir <ynir.ietf@gmail.com>, "idr@ietf.org" <idr@ietf.org>
Thread-Topic: [Idr] [secdir] Secdir early review of draft-ietf-idr-te-pm-bgp-13
Thread-Index: AQHUZwyQN9RQyXdy5EeaDRo0vfHjgKUltrcAgABrlwCAAG4QAIAAGbsAgAAkTACAACGXAIAACWfA
Date: Fri, 19 Oct 2018 19:42:34 +0000
Message-ID: <BN7PR05MB4354CF37F315E746A4E6E5EBC7F90@BN7PR05MB4354.namprd05.prod.outlook.com>
References: <153972468642.9298.14442375581871750001@ietfa.amsl.com> <ec43e712e8024930831a206f8e843cbb@XCH-ALN-001.cisco.com> <7655493D-9EF0-42FF-B2D3-B9CE4E78178D@gmail.com> <feec42a72bd64f31afbcb3b340dad52b@XCH-ALN-001.cisco.com> <1FFA9449-D03C-4EB6-9D08-BA4A1AA93FE3@gmail.com> <92af26fef2da470d853f292c84f026a0@XCH-ALN-001.cisco.com> <20181019002642.GX19309@kduck.kaduk.org> <CAOj+MMH1=SBV=ikiNE6UHEe1mzf5xKLPOZXnnqPEvyFHTC=83A@mail.gmail.com> <00a601d467af$3c4b90f0$b4e2b2d0$@ndzh.com> <b718ffb671c446adb1666ad9f73f4f82@XCH-ALN-001.cisco.com> <028b01d467ce$402b2400$c0816c00$@ndzh.com> <CAOj+MMF-GO6FkLzU4Eh7MDnnOhqKtaSGNVLhGEUQCMKjCXi6qw@mail.gmail.com>
In-Reply-To: <CAOj+MMF-GO6FkLzU4Eh7MDnnOhqKtaSGNVLhGEUQCMKjCXi6qw@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
dlp-product: dlpe-windows
dlp-version: 11.0.400.15
dlp-reaction: no-action
x-originating-ip: [66.129.241.13]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; BN7PR05MB5699; 6:584PRl8/V31v6hPYV5wQZqfXQzhe1fAvr+iGhtEYPk58N0oeWAwcx1rrTl0ASBIM8FiZhNx5Utzyv+ZWYIzFCGqY65M/VQYsx8xrcgkGllSlNWvRMtr5gp+Vp4YWfXNVnn6xtBm/3ZVBBZ+Es7rUcMB0MnqG3UY4saU4CIwHXM3N0GM1Y5DBM7Ooktymao4rhEbt8UyAJhWw4AB4TcfETzb/cj/X5uLq5rraCZneIedOb6jKAecxlSls57nMsL+srs+WB9ewRptOkxJTCg+Bk+UoqzSJOZ3Pt/7AyUSv5tGaHMEGb0LakSPnAgN808+WhgrFCpo0sRw2Q0kqjozDSWs+MHanFHagT8O0gDrj1rYv7tdsYm8RdLIfvvsl2heUw0HACv2ymAvup/HOyT0AgGugABnuoW2GFKxA3WS19PCG00tc0dbjrFspZbE0i+ypCc+6JbQRk6kTl1lXCzWFbw==; 5:HGw1mm9HhzR6qpaeVAdZtscvStq7XQmGIAk0yb/QDlY3J6zNePqRuX/WkQMR7wQCzTz90CUCiCkKhCRhbnoF6LbVDU23pDBJqb18x+4qC8EdJsW5ebTpJlFEFNvhZET2Hm6kDrN1lxLBW3hnKwxEIPaOAcqDWPT4iu4c+9AhpYQ=; 7:IZGcJPPBtXTTj3ld7MkngzjxlzcpQsfuA92YEaNRwlJsZvSprbzfZ03KEUnav3Xfq3FZlLoJcmN2Xemd9FYctQIcVbicTd+g3+JEg/wJEmo+Yqz504iytojAiA2EIlcrFLoJ8AkMgTpcyNpNPljvAg==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: 7481fcf0-ac8f-47fc-5a8a-08d635fb047f
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989299)(5600074)(711020)(4618075)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7153060)(7193020); SRVR:BN7PR05MB5699;
x-ms-traffictypediagnostic: BN7PR05MB5699:
x-microsoft-antispam-prvs: <BN7PR05MB56997DD23789A37567AAC976C7F90@BN7PR05MB5699.namprd05.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(240460790083961)(85827821059158)(278428928389397)(192374486261705)(21748063052155)(28532068793085)(190501279198761)(227612066756510);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(5005006)(8121501046)(93006095)(93001095)(10201501046)(3002001)(3231355)(944501410)(52105095)(6055026)(148016)(149066)(150057)(6041310)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123558120)(20161123562045)(20161123564045)(20161123560045)(201708071742011)(7699051)(76991095); SRVR:BN7PR05MB5699; BCL:0; PCL:0; RULEID:; SRVR:BN7PR05MB5699;
x-forefront-prvs: 0830866D19
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(396003)(376002)(346002)(39860400002)(136003)(366004)(199004)(189003)(4326008)(6436002)(25786009)(39060400002)(55016002)(9686003)(256004)(7736002)(478600001)(6306002)(74316002)(54896002)(236005)(14444005)(53936002)(316002)(7696005)(66066001)(76176011)(106356001)(105586002)(99286004)(6246003)(54906003)(110136005)(97736004)(229853002)(14454004)(53546011)(6506007)(81156014)(8676002)(102836004)(81166006)(71190400001)(71200400001)(186003)(26005)(33656002)(68736007)(8936002)(19609705001)(9326002)(486006)(2501003)(2900100001)(11346002)(476003)(446003)(2906002)(5660300001)(93886005)(86362001)(6116002)(790700001)(3846002)(5250100002); DIR:OUT; SFP:1102; SCL:1; SRVR:BN7PR05MB5699; H:BN7PR05MB4354.namprd05.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
x-microsoft-antispam-message-info: z8GuY+sl+dR1tWI5HNh/YYn0iweJZpN147h6KLtH1R24y1mfLUiAIMWXjSHqC+qM81k2oWhtuGbuDiQsTw6L0/2cnuAt0anRf9XxIglcIlmAy44Wb7Oyo4mX1ToPlYvJAUlCJOkRRvuis1J685JTtdZ84+xw8veEaRJJhm4P2BMDbldCgkM5MHb404MKGKa4Ea9Mu2da6U9nxHhb1/izwesqgUCSl0qV5bP/xbdm+1I52YeLBYBQoz+9OAkXRKkMci0LqQzHVSXl5RA+irBMofPLY94xLje1s8AC5hUmVCsGPwx2Ii5E2OjhyGSGdzl0q3qMguHqwyqEhgOwbvFOnGFB8OcvNmvUQ11jVYHWi/k=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_BN7PR05MB4354CF37F315E746A4E6E5EBC7F90BN7PR05MB4354namp_"
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: 7481fcf0-ac8f-47fc-5a8a-08d635fb047f
X-MS-Exchange-CrossTenant-originalarrivaltime: 19 Oct 2018 19:42:34.7111 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN7PR05MB5699
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2018-10-19_09:, , signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1015 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1807170000 definitions=main-1810190174
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/dyY-7TsDpKqcCtilCcZMWqPFddM>
Subject: Re: [Idr] [secdir] Secdir early review of draft-ietf-idr-te-pm-bgp-13
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 19 Oct 2018 19:42:44 -0000

Hi,

What he said.

Yours Irrespectively,

John

From: Idr <idr-bounces@ietf.org> On Behalf Of Robert Raszuk
Sent: Friday, October 19, 2018 3:08 PM
To: shares@ndzh.com
Cc: secdir@ietf.org; kaduk@mit.edu; Yoav Nir <ynir.ietf@gmail.com>; idr@ietf.org
Subject: Re: [Idr] [secdir] Secdir early review of draft-ietf-idr-te-pm-bgp-13

Hi Sue,

It seems that we have arrived here at a point that indeed further discussion and clarification is needed.

Yes RFC7752 has issues in the way it is designed ... those issues are there since day one.

Just to name a few:

* Point to multipoint protocol is used as a container to distribute point to point information.
* Fate sharing separation is not enforced in any way and various address families are send via the same BGP infrastructure
* The growth of the amount of information being carried by BGP-LS can impact bgp processing (ex: update generation) of other types of SAFIs
* More and more applications want have a free ride on this transport - othen only because it is already there.

We should discuss those in a separate thread if RFC7752bis is needed or perhaps other work can offer alternate transport for BGP-LS be it
an enforced different TCP session or in general for link state type of data (BMP analogy for IGP).

However IMO non of the above is about security.

SAFIs just do not get advertised automagically to attackers. For further scoping tools like local BGP policy is already in place today. As mentioned
use of NO-EXPORT can be applied today with no new draft needed.

So to proceed I would like to see a list of valid security issues of RFC7752. If none will be produced all companion work should be progressed
with their current security sections just referencing RFC7752 or RFC4271.

Kind regards,
Robert



On Fri, Oct 19, 2018 at 7:07 PM Susan Hares <shares@ndzh.com<mailto:shares@ndzh.com>> wrote:
Les:

I apologize if my email message was unclear.   We both agree that your draft is not related to SR routing.   SR routing is related to BGP-LS as a transport mechanism for information.

I agree that RFC7752 had traffic engineering information.  However, that traffic engineering information almost got that draft rejected by the IESG at the time.  As my previous message to this list indicated, we got agreement on RFC7752 based on limiting that information and the assurance that BGP-LS nodes were deployed on a separate set of nodes.  Expanding the traffic engineering information beyond RFC7752 re-opens all the security issues and questions from RFC7752’s original review.

The security directorate reviewer is asking these security questions.  The security directorate does have people with both routing and security experts.

SR routing is also expanding the information past the original RFC7752.   The expansions requested by SR routing also re-open those original security questions and issues.

One way to answer these questions is to provide a  RFC7752bis with an updated security section.  If you agree with this approach, I suggest simply referring to a RFC7752bis that in your security section.   If you disagree that an update to the RFC7752bis is required, we can start a thread on that point.

Did this message clarify my earlier brief message?  Do you want to continue to discuss the need for RFC7752bis?

Cheerily, Sue

v2.23.0 | Report a Bug | By Email