[ippm] Re: Deb Cooley's Discuss on draft-ietf-ippm-encrypted-pdmv2-09: (with DISCUSS and COMMENT)

"nalini.elkins@insidethestack.com" <nalini.elkins@insidethestack.com> Fri, 25 October 2024 18:09 UTC

Return-Path: <nalini.elkins@insidethestack.com>
X-Original-To: ippm@ietfa.amsl.com
Delivered-To: ippm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 460C3C1CAE6F for <ippm@ietfa.amsl.com>; Fri, 25 Oct 2024 11:09:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.904
X-Spam-Level:
X-Spam-Status: No, score=-1.904 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=yahoo.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4fOm50LIncmI for <ippm@ietfa.amsl.com>; Fri, 25 Oct 2024 11:09:13 -0700 (PDT)
Received: from sonic304-27.consmr.mail.ne1.yahoo.com (sonic304-27.consmr.mail.ne1.yahoo.com [66.163.191.153]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 406F7C157927 for <ippm@ietf.org>; Fri, 25 Oct 2024 11:09:13 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1729879752; bh=D7wOJj6GuhHURQS9hfljpoN5/dKogz6sIozeZVbeqV8=; h=Date:From:To:Cc:In-Reply-To:References:Subject:From:Subject:Reply-To; b=Edf2VNpbkKySNz1qp14AllEXGRD0VtAu/ROYGmS5TtxQ3+TR9Ud7hjhSWUQjzBD5h0UDkue+EhoK+YxmRDkgKV7CsH0zGc6Sm+yqfr7LBFxSo9HfrFmgv4/JdaFasLD3IPbnlGSayPY+/6Z5zT6k6/zj1I7JEhtpPvIPVW0S40Ft9etpNkOQ9iNoYQerce/P5qxr6hHP6snJ717ctcbeEBictwqxYYWqbp4WCNR06sFII8AqSxfCFjxjPEMgb1lDIBfXm3DIIEBFmN9CLNyekT2XTRyYP7Yr0wEk2us/VYvIZNJtIvjPQza8yxWLZ/bOYgMHRZ2tgikXoiI7XIwK9Q==
X-SONIC-DKIM-SIGN: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1729879752; bh=qPJedBva5yzb/TrXgkkgNLC6VCK7BTz1+4+ISL2xNOR=; h=X-Sonic-MF:Date:From:To:Subject:From:Subject; b=o4oT034e8zVj/sfvLmNJ7Er0Mv5i28iIMaH/x4JJp08rHL87LaB6QRP6AXiWGmpGYvRvNqefDBPNTUZr8ZNil6yPOCyhIPv5Nu8SBuR1mNVgG0S0QbySlVoPLZrIwZwMt4bqKGw66zG2x3l2wr1XIYhmkZi/m2h1o5Rf5pQdYXmbWuHZMQuuPDbqq9vLiLHSI2GOp/hcrP+MrnMETRaP8FrtMe4Rc4+eQhOYQKkE5upu3bW7h9rQAV/un4Py8IsZXE70aPOf+tLF/1sZshDG8BYVJnJxjlSQTMmc1t8Z/Q4oVgMqzrAG0sdMipUoHlVLJ9oy+5aJnH6dTD/cyo5m/A==
X-YMail-OSG: raF.72gVM1lpCMnFvbG6p1_ufk2q14M.nL0q1uHeD78bOYwLYgVISDNKbvPZ9Jr N1VPzGtEdImdWLuNlId3pDJiKLquOt_wIa81yw2FNaXIUuVENUYwrDYBPSDKbZV7TFrFDGN9rwpN fGwvwqWG6CjiSh.GCu.6HuMeX4NGPlAsfDZ396qGzvW5uliNp8yH3NKYzpGx0.oBV3L64fSJnpaa JiEXwfy91JY.cQ_uZTdPTJtO0UO_u8DYeq7npPXjdoRFY5ORgzUDt6PX9wB5pxC6LZqL0HSWqNPR x56rnzkVPIdJihvr7_NQR1ngRr1wmszahUCa7YR5MkjGvovtGhOa_Mx6LjyTPxBPh_mEkx0i6qCG q5fHHrBYkGx1Rpy3PPCLtZqY_DU3DUFBXFw2TY3o5dxGdyvVpVWnBy_zuTF0AggC7aDlZ1X0igDp pHSG6tQ_zgI5BiVDxww..2fWSD73hCTQlhQwyi8z1Cx_u3LA2qgNWH2SRVMpZO8GYpZGsb5goJaZ oTiMv5.g1h6Bq7VaIHccV2zifEc5XNu8Cet47fF8poKIiKnN5lx4MS8heYPWa7sl99i1x.N53gAf NkCya5KasolJM27aEpqHOBgxokoWFwiR6HTQQrpBqx6cqlxsK.7b1v_Andedtz6ihR4cjNh5a4cm c0GPX_C5HEV21MiEwkuZY68ihQUV708r1UPH9CZhJoo9b1PBE.g50RbQQFd9mBR2_V0xFqyG31Qw MRlhCfNAWNtq2Squvm1Q6KS0cyC1SXitgJOHynZ163foIqk0NH58U0Gb6qnxlplq5dH0xVRHEnRw TuCGJPzTpKb6t33rWsWFHyX0sdfqBt2.esCoVH0AbXnGhshJarguw_iWyL0_bclPWLWeOPAm9cxS reZU4Q3GFuWt0sMJD3Ku83XU6_Rno48C_aiUdoAMdILq9w8y9uI.n4F7QozAA4JbxRxNUzwcX7f6 lUT1kJQ_k.3erZYBfzA.nmqKoDX.91ntx.FgXBhMQSD8KnTXAEHBdGbj6dc5o2a.4OjhQYBxzFkD 7Yd8sKxfoMqVBQOI9cZL4pYINOPJc31RAxyE.IGmppt8JuH6BsaND4QMul7zRqEmTOOuQZHvcZSJ hyck0TacYHeWG1Fzu3NuZZsR6pUtA05Sfve7wCBkKn9qnyG_v4sErgvrvjGkV2KnrulZe3Gh8C2X gHQO9oEuxhnEdml7BvLcFLVUlTE1jJEnIQgGP0Sq2JJhJmQIo7o0.Ma32TERzQuL6kkQzB3uM6FT N12uHajSBPASpD6Om3MnwefSflxEXV1TkEaaHh428NTrZWjutT4dAbE.SGwQNgEq8AGMAXt3ea2s Jl5k.iQipzoT8NZDvjTOTPqzxLDyb0Y0jWJh8900AluRHb9XrMZsyC7TvQzlVoeZq182cEd.x6gn VSs.VWV8x6qdAFMu6r8O2YVRRNpwgeg.XENRxSal_TNh6wpOHxe7rmE.F3MZNHa.mOnFi8Heqp68 S_qhhKH_OUgVBE7PCLgatVQiL1F09xalThKYVZtjdU2nKLKlQZ3I8Mf9XSUZyDLatQHvvB.XN9hV p4qKtlALStqY3LBOrIVW7kIsbdQTO0AKvUVfsGEAf6uxHHhTdR_9KJdW65NegZA8QCVI7TC0XsYB pjMn1aHPFdercDuqJkcCNifO58Zd2rW3DtPFo3B1A31p1kCY15a85f6v.bTpZ.CJpS5FCiJp9Vkk cWZdb7pph.Gog7l.nhQAZLBDpG8pPLcVss9JnkvFDaJzn8ICTFLLtA2__guVMf66SjnYmCLJzAFy rKKzZO9raVEEybrE8yZKfg31eYAJaNFyLVe8juv2nZ0FPCwBgFQ6KXPPeM1dVY5P8KDeeZW7fu_n rZnuWLQ2zhVYSsgB8VsBuWba2PSCgZs9972yJMPVDktt3X_l364Kvey9_sqCuAq8VyUwMWA0dPkr 2dZlTqFIWp6UK2vy2BP4gt_ZyBpbKjqvs5NSSGdXiwGXXaAjJ19uRP4FsYHrD97qazmeSQVPbsEV uPRv8enYxMiwAOX6KWaKW7LbmpGRu07.pgPJ8hMzri63G.NGeuFPSJYXJoKYLJR5UFCaniu3.sgv kjXab.Yi1ttBa0FSrCU.5OQoVjo2St9tjOKdIxH.kqguJSPdu6HN5n.gPpk1HfytCjoSd62LufDp gLReLpx2Zvrjjex1MwCa9j0ohd39SEntniCpcdleudbNbIFj.VOk45GdBK1.2Xe9gU4FRAr5p1MQ ADtgA2OygM2dtkstOdduNHkKpWS7v3lU6JzzvI6LDjXNqNiJa729bemwh3mI-
X-Sonic-MF: <nalini.elkins@insidethestack.com>
X-Sonic-ID: 54ab077f-73f1-4cdb-a051-65a10583e376
Received: from sonic.gate.mail.ne1.yahoo.com by sonic304.consmr.mail.ne1.yahoo.com with HTTP; Fri, 25 Oct 2024 18:09:12 +0000
Date: Fri, 25 Oct 2024 18:09:08 +0000
From: "nalini.elkins@insidethestack.com" <nalini.elkins@insidethestack.com>
To: The IESG <iesg@ietf.org>, Deb Cooley <debcooley1@gmail.com>
Message-ID: <195195209.6276113.1729879748086@mail.yahoo.com>
In-Reply-To: <172977091056.2532087.1761482690757094215@dt-datatracker-78dc5ccf94-w8wgc>
References: <172977091056.2532087.1761482690757094215@dt-datatracker-78dc5ccf94-w8wgc>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_Part_6276112_1161157651.1729879748085"
X-Mailer: WebService/1.1.22806 YMailNorrin
Message-ID-Hash: HH6SHQBRLKKSTYZRLH45CR7A5ZZS2OJO
X-Message-ID-Hash: HH6SHQBRLKKSTYZRLH45CR7A5ZZS2OJO
X-MailFrom: nalini.elkins@insidethestack.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-ippm.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "draft-ietf-ippm-encrypted-pdmv2@ietf.org" <draft-ietf-ippm-encrypted-pdmv2@ietf.org>, "ippm-chairs@ietf.org" <ippm-chairs@ietf.org>, "ippm@ietf.org" <ippm@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [ippm] Re: Deb Cooley's Discuss on draft-ietf-ippm-encrypted-pdmv2-09: (with DISCUSS and COMMENT)
List-Id: IETF IP Performance Metrics Working Group <ippm.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ippm/ieYyh55jVpZYmRFegBTKHsGv0Oo>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ippm>
List-Help: <mailto:ippm-request@ietf.org?subject=help>
List-Owner: <mailto:ippm-owner@ietf.org>
List-Post: <mailto:ippm@ietf.org>
List-Subscribe: <mailto:ippm-join@ietf.org>
List-Unsubscribe: <mailto:ippm-leave@ietf.org>

Deb,
Thanks for your comments.  There is quite a bit of work needed to respond to you adequately.  I believe we will be able to address your questions but I need to discuss with my co-authors.   I do not want to rush a response so I appreciate your patience while we sort ourselves out.

Thanks,
Nalini Elkins
CEO and Founder
Inside Products, Inc.
https://www.insidethestack.com
PresidentIndustry Network Technology Councilhttps://www.industrynetcouncil.org 

    On Thursday, October 24, 2024 at 01:55:12 PM GMT+2, Deb Cooley via Datatracker <noreply@ietf.org> wrote:  
 
 Deb Cooley has entered the following ballot position for
draft-ietf-ippm-encrypted-pdmv2-09: Discuss

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)


Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ 
for more information about how to handle DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://datatracker.ietf.org/doc/draft-ietf-ippm-encrypted-pdmv2/



----------------------------------------------------------------------
DISCUSS:
----------------------------------------------------------------------

This is interesting work, but it currently reads as if it is a guidance
(informational) draft.  There are many missing details and significant issues
with the crypt parts of the draft:

Section 3.3, encrypted PDMv2 header:  If AES GCM is used, then there will be
data expansion for the IV and integrity mechanisms.  The encrypted PDM Data
cannot possibly be the same size as the unencrypted header.

Section 5.1:  Please reference a normative source for how this should be done. 
Using the TLS handshake is a good option.  Referencing it would take care of
many missing details.  Currently, there are not enough details here to make it
possible to implement securely.

Section 6.4:  Again recommend a normative reference that will handle all of
these details.  Currently this section is not sufficient for implementation.


----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------

Section 3.3, Epoch:  please state that this value starts at 0, and is
incremented every time a new SessionTemporaryKey is updated.

Section 3.3, Global Pointer:  Agree w/ John Scudder's comment on this
(including the privacy section comment).  It is not a pointer.  If the name
isn't entrenched, it should be changed.

Section 3.3, reserved bits:  Classically, these should be verified to be
correct (i.e. all 0) and then ignored.  Given this is inside the encrypted
header, it should not cause a DOS.  Please add the 'verify to be all 0'
requirement.

Section 5.2:  Why is this so far down in the draft?  Recommend moving it up
closer to the top of the draft.