IETF Logo Mail Archive

Re: [ippm] Kathleen Moriarty's Discuss on draft-ietf-ippm-2680-bis-04: (with DISCUSS)

Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com> Wed, 19 August 2015 19:12 UTC

Return-Path: <kathleen.moriarty.ietf@gmail.com>
X-Original-To: ippm@ietfa.amsl.com
Delivered-To: ippm@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 70E911A8841; Wed, 19 Aug 2015 12:12:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gevi3NGDpr5e; Wed, 19 Aug 2015 12:12:48 -0700 (PDT)
Received: from mail-wi0-x22e.google.com (mail-wi0-x22e.google.com [IPv6:2a00:1450:400c:c05::22e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 849FA1A7D82; Wed, 19 Aug 2015 12:12:48 -0700 (PDT)
Received: by wijp15 with SMTP id p15so134774031wij.0; Wed, 19 Aug 2015 12:12:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=bHBqpcAoazmA7QzTCvjMlijLa0L9vWr1QdN4hOfHxh0=; b=Mu4iO7D8lEY/mjXK3HyCmj5v5GN8O5Hv4oRrB/bRc7W1OOn3Q/NUqz3g+rbScg+fJL gyBaTk4Op5E1Qm1UrC3iD8mwDA0fKjBMjDaDcrvSd6llti6eGxuiBPoWJzZAoz4B97Oe y4mAAjLI/uCyQAHLvY5bWQ5fvmfaRtVeXURG3XiDR09XrJ69M3akb7ugRoUVvbGs7LEP 7IleaM1Ql2WNKgjyDJZz7ZnT4FP8frnNQDdCtJa5QAljNokcrCIjdpHXzBOOpWDMJVv9 qXU7ztnRue9KlUuCv6revfL5JoKMtyErIGe2fMoFKXsr4Te575hdJ6zT0pBEO78cBo1u VG3w==
MIME-Version: 1.0
X-Received: by 10.180.82.230 with SMTP id l6mr54944915wiy.61.1440011567305; Wed, 19 Aug 2015 12:12:47 -0700 (PDT)
Received: by 10.28.157.84 with HTTP; Wed, 19 Aug 2015 12:12:47 -0700 (PDT)
In-Reply-To: <4AF73AA205019A4C8A1DDD32C034631D09A00FBB97@NJFPSRVEXG0.research.att.com>
References: <20150819183410.31333.40680.idtracker@ietfa.amsl.com> <4AF73AA205019A4C8A1DDD32C034631D09A00FBB97@NJFPSRVEXG0.research.att.com>
Date: Wed, 19 Aug 2015 15:12:47 -0400
Message-ID: <CAHbuEH5sU-B_csvgtwfNbZpzpMMaD5=6KKffah0EOnqpXTd85g@mail.gmail.com>
From: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
To: "MORTON, ALFRED C (AL)" <acmorton@att.com>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <http://mailarchive.ietf.org/arch/msg/ippm/ZZ2X5ZgAB9bFpSPaeNifF2KdZEU>
X-Mailman-Approved-At: Thu, 20 Aug 2015 03:23:27 -0700
Cc: Bill Cerveny <ietf@wjcerveny.com>, "ippm-chairs@ietf.org" <ippm-chairs@ietf.org>, "draft-ietf-ippm-2680-bis@ietf.org" <draft-ietf-ippm-2680-bis@ietf.org>, The IESG <iesg@ietf.org>, "ippm@ietf.org" <ippm@ietf.org>
Subject: Re: [ippm] Kathleen Moriarty's Discuss on draft-ietf-ippm-2680-bis-04: (with DISCUSS)
X-BeenThere: ippm@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF IP Performance Metrics Working Group <ippm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ippm>, <mailto:ippm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ippm/>
List-Post: <mailto:ippm@ietf.org>
List-Help: <mailto:ippm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ippm>, <mailto:ippm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Aug 2015 19:12:50 -0000

Hi Al,

My concern isn't privacy related.  I took a look at the security
considerations from RFC7312 and this doesn't cover using the metrics
for reconnaissance activity for later use in attacks.  Is that covered
and referenced somewhere else?

Thanks,
Kathleen

On Wed, Aug 19, 2015 at 3:01 PM, MORTON, ALFRED C (AL) <acmorton@att.com> wrote:
> Hi Kathleen,
>
> In resolving Alissa's Comment, we will add a full paragraph from RFC 7312,
> including the reference to the LMAP Framework. I believe we covered
> network operator's sensitive information in sections 7 and 8 of the
> Framework.
>
> RFC 2679 and RFC 2680 both depend on the original IPPM framework,
> RFC 2330, which is limited to active measurement.
>
> hope this helps,
> Al
> ________________________________________
> From: Kathleen Moriarty [Kathleen.Moriarty.ietf@gmail.com]
> Sent: Wednesday, August 19, 2015 2:34 PM
> To: The IESG
> Cc: Bill Cerveny; ippm-chairs@ietf.org; draft-ietf-ippm-2680-bis@ietf.org; ippm@ietf.org
> Subject: Kathleen Moriarty's Discuss on draft-ietf-ippm-2680-bis-04: (with DISCUSS)
>
> Kathleen Moriarty has entered the following ballot position for
> draft-ietf-ippm-2680-bis-04: Discuss
>
> When responding, please keep the subject line intact and reply to all
> email addresses included in the To and CC lines. (Feel free to cut this
> introductory paragraph, however.)
>
>
> Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
> for more information about IESG DISCUSS and COMMENT positions.
>
>
> The document, along with other ballot positions, can be found here:
> https://datatracker.ietf.org/doc/draft-ietf-ippm-2680-bis/
>
>
>
> ----------------------------------------------------------------------
> DISCUSS:
> ----------------------------------------------------------------------
>
> For the most part, this draft looks good, but the security considerations
> haven't been updated from the previous release.  An important
> consideration for traffic measurement is that it could be used for
> reconnaissance activity.  By colecting results (passively or actively) of
> measurement data, you learn more about the network and that can be used
> in subsequent attacks.  Can you add this consideration into the text?
>
> Thank you!
>
>
>
>



-- 

Best regards,
Kathleen

v2.23.0 | Report a Bug | By Email