Re: [ippm] Fw: New Version Notification for draft-elkins-ippm-encrypted-pdmv2-00.txt

"nalini.elkins@insidethestack.com" <nalini.elkins@insidethestack.com> Thu, 01 July 2021 17:44 UTC

Return-Path: <nalini.elkins@insidethestack.com>
X-Original-To: ippm@ietfa.amsl.com
Delivered-To: ippm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 30B503A10AA for <ippm@ietfa.amsl.com>; Thu, 1 Jul 2021 10:44:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=yahoo.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Vs6e9iOcBHwa for <ippm@ietfa.amsl.com>; Thu, 1 Jul 2021 10:44:43 -0700 (PDT)
Received: from sonic306-27.consmr.mail.ne1.yahoo.com (sonic306-27.consmr.mail.ne1.yahoo.com [66.163.189.89]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 842613A10A9 for <ippm@ietf.org>; Thu, 1 Jul 2021 10:44:43 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1625161482; bh=RoV1WuUvtSYOhiVbxKW76S9WDZXCHc9o2W/XG9QuB5k=; h=Date:From:To:Cc:In-Reply-To:References:Subject:From:Subject:Reply-To; b=oqaJSVc10tsQtgUn1pK0/b+e43v034gKOlH+LRu1RhzDGjGviHfDokAycUMzThERftGn1KJNzLPLU5DH4FhvS4nPl9tUtQ2d7RnFx7zMPBxDygibvHJnDzcrTYRu9qAK6sClcPk0+a880bMhm2F2shmfa/9WiwVqwTv0GgW56AzAtaSb/TaCarbwA9lKNKn6F/Smm3siaQlfAxCcC6DUUiI8dH8clSLYANfBySU6U/9gtovShvaAc9spJT3P1Vvu8lcc1s/0xDyiMtlnQaIiGvXVpG/vu5ToOu2PjlTPOMp//BK8HPtfvDLgKAhDsbuhzDucOdC/Q5YQEmLM+zookg==
X-SONIC-DKIM-SIGN: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1625161482; bh=N9QUb63D07HpxOCv39UcxFWYt3RGjhxO7knn5CjHmpC=; h=X-Sonic-MF:Date:From:To:Subject:From:Subject; b=hrq2dRZ9ZsRSaHmYyh6GOXvFwhjdlldp2lSVpnN3yeKU9tB3C+qduAwWUUKlmaoCV3BpHN700Sd1TKzmIYXCVyp2I0CC93IinblIl5Eegbpdxi5WNM1nxp+4eK4S9FyuFkaDlMxru7hEb99R07cUCCLf7Yu0o6BqjsH+VAhZYMx+ZpO+pEeCn6Ak/TlxK3yw0WJ1C8fBAqCoeWWiKW7lmuJRdXbFLpvkmGbndwDMShsPt/No9wdWgm69vRwms1HtTgU+SMI4X1wVxETv3VnOVwBGjSTBYuimRrgCfwaqYj5RYqNdwzzX+6cNDsxhDhRlGXCWzKRi1RiEf+DDvLP1wQ==
X-YMail-OSG: hpu7De0VM1mCVHmhlK3HzAvFZTKy5hyDRfGQuUqnPguT1sBzlbp0ta6sh6uxaoE aYLYDbkM5o0J_lZkR1J5dluZ1XTtgf1pUxG6jpLFKFI8w9lplr4nvgTEqFYZBswbar6asjU7laL6 JJTzL9u.0BMJ1muAGJh0bt3QTGekNjxgzIloi82G.aEaQJGbuXdub27qM3k_mTR5iafFyaKbdLY9 HjG8SRbsmsMGTtTbe5xDTM6BKk3KBpH.ZLXufNLn5lauI_hwkcJAOuEWyLaqXcsjZr0aFrHSl5KB DCEzuStCD3e8DwCn3.2nI9_Qrcw20ehjqjeKPphnNYiEdrc.yphikhXNZ5VznPvGZ19dBO5_XmKO pKprF2lMWBevbywYii1_1obmubwUH7vD06RhQ8STib.ib8YwgMNH1HxfYEs.eFcSwoZZwQN4z4mv zjTBC4mJDjrWZ7EowXpyVuUXiekqejiRYsNFidWVruApFZ.u.oiZJl13ZpmPYuH2xMVMQF337CI. jjoEjMbQliyEojtdwFqpqkOA2VPutq08oMVsfEQqRVj3htDQgfm2shcOeEvFciQtz5Xoevqy7sjV WNrmCzw7ApeqFth.4kOOw3HXz85oDVvXy4k.jK6z5rhEJV8tr.2mBpo3T3ZJ89Pmy8Im9PHqjIjT QCzHusM4MWTGotLzmWmYR8Ci.X4JgjipF5_qia23JFXHzJ8eBCEjTWJQ4inSHK7Cmc9AAdRKQ5dv 1AKtHST2_FhgNHEVE2tHs25LGBWeu.yMLcww9Z87aYiWcMu3Q8s.E2KX_6fxRrZtPDAOZdSJ4PAO UGylGsz3tCDNiURXP5yFcxd2tuAFuL.4ecj_oIwOLuzCjB10.0T8cMOT_SL3JmM5psBAkmQikN_i 4FgygHc7wS_mZrwM8g0XKYfWqe06XU2ZbnxpPH7PtwEj38uhoynyur8RN9qsdm7R3N9H0v.Tj99z YWDyEu1EIdsBi11IpQ0zwgJCjIEcsNw0aS.U3powu3OMm5k7QIBYDqwlpfTNHoxOWBYodFOH1itD xTOsRJA5IxorimQpIZkwx9zA5nOCHlKHT1RxJDy4dngiPgaBEkWFjKoa9MiQp86KUVnQK5xdhebg eWssYLVsJn5KQhBgvnacAt.B_DJq5_J2p7EAkFoyPfgh4VKMUK04PjlBzgcEyPcyP9u1bHp3iEZ8 CrWu1bAuf_xHfi3R6A2HTbJDRFDOQfWUmMHLt8zL9vjsHIBoUkV1cnL7tuAjOHGL8XWyGjQQ0gxQ ERAmuHlJgmX9SCpsXMxfGE33aagGb8k8e9IFlKDCoHgHdMhv1m.gzn71CkrDaZDIhqI3CnmQkReh RKuzDz6yh2lgriMPVY_HfOzIludnO_bOvYZkGQXurMHEJWwGLHe2kz1q94cuF6zhbHc3Njl9DLCW B7rS5ml0ZDATzcIgF7IDQJyPav0uie6ZeqEDkcdU8WvQ.pckPFeXfY1YcR4K1mT8K0dbGX1.Q4Cn z0w9yw.jzqfd3kKWqkNC7AvdlFaEhniU0voAgk2v4KYrtXiLpuu8KmuAi.QQlJjNycJOlEWF3mgc eEXWZ_NGNFCkqQQIB_TUj0MNtsc3qLiyebGzNd6MHKmYhXzXy00AmbOLBhQPilDvzMxyD.z8xaRF ADahVS2ptTfWCXu9XLxpcbGlv.CYRk8INF9i372cNmS4AaFJUuQysklR7DHCA_AuJUrWcPj7a0Nn WPGARO_N8nYsLVIZUBHI0bR2nUifU42nqkIKDhCr1GFib6DzXEuxq0ZHoKOSFU99Yr63IJUZBlUU mQdqgqq9PxjxkQRiQFV0eCmErvWCMy04sqWXAc2xULUSl8ZL8aniDmeI2VPFYk8wsys5RCW8.9Ao SNJ1zhcD8qBpKCj4SPjodz0_eIX86pmiX3kqWpZxceZ4nrbiu6OzHLAbZbju0a.YjqRymOeZcUB. QYyksT0V21Nr6LpOY06nGudI.zo16PON_6CNF5dGnR7rD.sE3NFtr1eq2E9BRm_SmpSt12ryvq4W hItwAE0UzqHc5y_8vvqOxmBAIGdCbVl0KDFmsMtxhIwRFoHR7YSYA.zJ9d2tdcZsCVRm42E.BHvA Mq8cRf6qOkGv1dZBdNHHUYFhTlZMDG1OMC0eKZ6UVA2n.r5zuok8nOAtHvx3Ml1Yz.Lef7UTaNcj k9DXlIMAMWaOfN2bKgrTPpW2W8nwI8qhTR8FEHX16J3wCMpDLL_w08O7buMUFEazlgf4U2.G2xi_ pX.Ydh7oqWhaglhf6BND8w7IoWFBmuGxn7NeMZfXzASUQk7l6yUVNaLV3VL2SrPdDzA6HmHtOWBw PHigsZnnpBXStXdYMliy3BKooe2_GJiPm3.fyW6AGaDRN70XZVyy7SRUvfydGjxE70vn_AZVQczy mfjCab3ODqpeBx1UUcxz8mn3.N7TEjXsDMmnlmzWg5VpZ10PiOczM7DhKZ6056l_LT9ZM.hhvaqD EaS2nDjUPmD.ApGBZf6NxXYfTsvGCTFL1SOlXQVpOKM3Y0W5oMprvPWUJYg0yb40wNoYU647BMp6 WmhK7hkswPHljqEFY4gY7BeiwVK0_uVXTW_puf2Qgn3PonXD_zmvEuZmyzWZBdTvQHiJDLaKipj_ ciImIhCs-
X-Sonic-MF: <nalini.elkins@insidethestack.com>
Received: from sonic.gate.mail.ne1.yahoo.com by sonic306.consmr.mail.ne1.yahoo.com with HTTP; Thu, 1 Jul 2021 17:44:42 +0000
Date: Thu, 1 Jul 2021 17:44:39 +0000 (UTC)
From: "nalini.elkins@insidethestack.com" <nalini.elkins@insidethestack.com>
To: IETF IPPM WG <ippm@ietf.org>
Cc: "draft-elkins-ippm-encrypted-pdmv2@ietf.org" <draft-elkins-ippm-encrypted-pdmv2@ietf.org>
Message-ID: <721002155.671981.1625161479360@mail.yahoo.com>
In-Reply-To: <28584824.2341925.1622563579715@mail.yahoo.com>
References: <162256330634.19677.3885804345914692467@ietfa.amsl.com> <28584824.2341925.1622563579715@mail.yahoo.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
X-Mailer: WebService/1.1.18469 YMailNorrin
Archived-At: <https://mailarchive.ietf.org/arch/msg/ippm/SJ3FKOMvANkqNaY0g-cWVqQlrCc>
Subject: Re: [ippm] Fw: New Version Notification for draft-elkins-ippm-encrypted-pdmv2-00.txt
X-BeenThere: ippm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF IP Performance Metrics Working Group <ippm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ippm>, <mailto:ippm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ippm/>
List-Post: <mailto:ippm@ietf.org>
List-Help: <mailto:ippm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ippm>, <mailto:ippm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 01 Jul 2021 17:44:48 -0000

IPPM,

Please do take a look at this draft.

I think that iOAM will need encryption as well.   We have spent quite a bit of time thinking over these issues.  We even have 2 cryptographers from Italy involved as co-authors.   I want to do a side meeting where we can have quite a bit more time to discuss this but would love to have comments from the group on the list.

I am very reluctant to push PDM out to the wider world without encryption.  I feel that we will become the attacker's best friend.
We have modified the Linux kernel to include PDM but as I say, without encryption, we do not wish to release.


Thanks,

Nalini Elkins
CEO and Founder
Inside Products, Inc.
www.insidethestack.com
(831) 659-8360






On Tuesday, June 1, 2021, 09:06:39 AM PDT, nalini.elkins@insidethestack.com <nalini.elkins@insidethestack.com> wrote: 





Hello IPPMers!

We have just posted a new draft to encrypt PDM data.   We feel that this is an important feature to add before promoting widespread adoption of PDM.

We would appreciate any thoughts or comments from the group.

Thanks,

Nalini Elkins
CEO and Founder
Inside Products, Inc.
www.insidethestack.com
(831) 659-8360






----- Forwarded Message -----

From: "internet-drafts@ietf.org" <internet-drafts@ietf.org>
To: mackermann@bcbsm.com <mackermann@bcbsm.com>om>; Adnan Rashid <adnan.rashid@unifi.it>it>; Ameya Deshpande <ameyanrd@gmail.com>om>; Michael Ackermann <mackermann@bcbsm.com>om>; Nalini Elkins <nalini.elkins@insidethestack.com>om>; Tommaso Pecorella <tommaso.pecorella@unifi.it>
Sent: Tuesday, June 1, 2021, 12:01:47 PM EDT
Subject: New Version Notification for draft-elkins-ippm-encrypted-pdmv2-00.txt



A new version of I-D, draft-elkins-ippm-encrypted-pdmv2-00.txt
has been successfully submitted by Nalini Elkins and posted to the
IETF repository.

Name:        draft-elkins-ippm-encrypted-pdmv2
Revision:    00
Title:        Encrypted IPv6 Performance and Diagnostic Metrics Version 2 (EPDMv2) Destination Option
Document date:    2021-06-01
Group:        Individual Submission
Pages:        16
URL:            https://www.ietf.org/archive/id/draft-elkins-ippm-encrypted-pdmv2-00.txt
Status:        https://datatracker.ietf.org/doc/draft-elkins-ippm-encrypted-pdmv2/
Htmlized:      https://datatracker.ietf.org/doc/html/draft-elkins-ippm-encrypted-pdmv2


Abstract:
  RFC8250 describes an optional Destination Option (DO) header embedded
  in each packet to provide sequence numbers and timing information as
  a basis for measurements.  As this data is sent in clear- text, this
  may create an opportunity for malicious actors to get information for
  subsequent attacks.  This document defines PDMv2 which has a
  lightweight handshake (registration procedure) and encryption to
  secure this data.  Additional performance metrics which may be of use
  are also defined.

                                                                                  


The IETF Secretariat




_______________________________________________
ippm mailing list
ippm@ietf.org
https://www.ietf.org/mailman/listinfo/ippm