IETF Logo Mail Archive

Re: [IPsec] NUDGE: Starting discussion of failure detection proposals

Yaron Sheffer <yaronf.ietf@gmail.com> Tue, 13 July 2010 11:46 UTC

Return-Path: <yaronf.ietf@gmail.com>
X-Original-To: ipsec@core3.amsl.com
Delivered-To: ipsec@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 6E8CC3A69C5 for <ipsec@core3.amsl.com>; Tue, 13 Jul 2010 04:46:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.732
X-Spam-Level:
X-Spam-Status: No, score=-1.732 tagged_above=-999 required=5 tests=[AWL=0.867, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id r5D+dJlYIkXL for <ipsec@core3.amsl.com>; Tue, 13 Jul 2010 04:46:48 -0700 (PDT)
Received: from mail-ww0-f44.google.com (mail-ww0-f44.google.com [74.125.82.44]) by core3.amsl.com (Postfix) with ESMTP id 0B2593A657C for <ipsec@ietf.org>; Tue, 13 Jul 2010 04:46:47 -0700 (PDT)
Received: by wwi17 with SMTP id 17so755196wwi.13 for <ipsec@ietf.org>; Tue, 13 Jul 2010 04:46:53 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:subject:references:in-reply-to :content-type:content-transfer-encoding; bh=HIWBnBDTGqC/uQ1Dlz/AiVnT0h59GyjVNprswsAPVE8=; b=ZubnVI3keqLGn1y6a5ZqUVrmg5TGXbK1Q8nnv1TxQjSNygDQPYJLdqeHE5Kxo8CBSN H9gWnN3lmsamhR2BCXqRb7vVAQ1t0wHVaGxhLt/KxydJsAT/MlCqAyzrIJn0Ub3tr8l7 OH4L8m5vSpaL3Sjh06mAaw9zxMRfY8VlMbh8Y=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; b=TMzD6v7JlD1nKwIJxhb68Xax6OfgRUxm4JyGUNrkP41OAdT9/SX6HHivd70f8VEgqO b7TXSXXSz0Pk2EG8SC88KD1zELbz6XM4ZgLNyMFR519sXNtZLDG1JaRJ4ImXyHG3sSIm SfTtOb/VIuV671N4gW4Au+fqM73c0tyc59a7w=
Received: by 10.227.135.71 with SMTP id m7mr10665399wbt.11.1279021612655; Tue, 13 Jul 2010 04:46:52 -0700 (PDT)
Received: from [10.0.0.1] (bzq-109-67-45-226.red.bezeqint.net [109.67.45.226]) by mx.google.com with ESMTPS id i25sm38920702wbi.10.2010.07.13.04.46.51 (version=SSLv3 cipher=RC4-MD5); Tue, 13 Jul 2010 04:46:52 -0700 (PDT)
Message-ID: <4C3C5229.4080606@gmail.com>
Date: Tue, 13 Jul 2010 14:46:49 +0300
From: Yaron Sheffer <yaronf.ietf@gmail.com>
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.10) Gecko/20100527 Lightning/1.0b1 Thunderbird/3.0.5
MIME-Version: 1.0
To: Paul Hoffman <paul.hoffman@vpnc.org>, IPsecme WG <ipsec@ietf.org>
References: <p06240822c85a639e75c8@[10.20.30.158]>
In-Reply-To: <p06240822c85a639e75c8@[10.20.30.158]>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Content-Transfer-Encoding: 7bit
Subject: Re: [IPsec] NUDGE: Starting discussion of failure detection proposals
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 13 Jul 2010 11:46:49 -0000

Hi everyone,

we intend to have a thorough discussion of failure detection in 
Maastricht. Please make sure to read the two drafts in advance of the WG 
meeting (which is Monday morning!) so we can get this thing going at last.

Email comments *before* the meeting would be very useful, of course.

Thanks,
	Yaron

On 07/07/2010 08:02 PM, Paul Hoffman wrote:
> [[ This topic generated a fair amount of discussion in the past; are folks still interested? ]]
>
> Greetings again. The WG has one item on our charter that we have barely discussed, namely failure detection. The charter item says that the work item is:
>
>> - A standards-track IKEv2 extension that allows an IKE peer to quickly and securely detect that its opposite peer, while currently reachable, has lost its IKEv2/IPsec state. Changes to how the peers recover from this situation are beyond the scope of this work item, as is improving the detection of an unreachable or dead peer. Ideas from draft-nir-ike-qcd-05 and draft-detienne-ikev2-recovery-03 can be used as starting points.
>
> I gave a brief presentation on failure detection at the last IETF meeting in Anaheim. The slides are at<http://www.ietf.org/proceedings/77/slides/ipsecme-4.pdf>, and the following is directly derived from them.
>
> The basic problem being covered by the new extension is:
> -  Alice and Bob have SAs up and ESP traffic is flowing, but then Bob crashes
> -  Alice keeps sending ESP to Bob
> -  When Bob finally comes back up, he replies to Alice's ESP with INVALID_SPI notifications
> -  Alice starts sending IKE liveness checks until she is "sure" that the INVALID_SPI responses are not a DoS attack; this could be "several minutes"
> -  Then Alice rekeys
>
> Some other problem cases include:
> -  Bob has two gateways in some failover architecture. One gateway goes down, the other gateway detects this and wants to tell Alice to rekey
> -  Bob has a bunch of gateways in some load-balancing or cluster architecture. One gateway is taken down on purpose, and the system wants to tell Alice to rekey
> -  Protocol robustness:  Bob's gateway loses the SA without going down
>
> Our primary goal is that, as soon as Bob starts sending INVALID_SPI responses to Alice's ESP traffic, Bob and Alice should be able to quickly determine that this is not an attack and therefore they probably want to rekey right away. Note that if Bob and Alice are also using session resumption, they can use that instead of rekeying; however, in the discussion here, we always use "rekey" to mean "rekey or, if appropriate, resume". The proposed extension does not include the actual rekeying, just the context for them to do it now.
>
> The WG has seen two proposed solutions, QCD and SIR. The following are brief summaries of the two proposals.
>
> In QCD (<http://tools.ietf.org/html/draft-nir-ike-qcd>), Bob gives Alice a secret token in the AUTH exchange, and then puts the token in his INVALID_SPI response as a way to say "this SPI is gone". Bob must remember his tokens across reboots, or derive tokens from a master token that he memorizes across reboots, and Alice must remember the token (or a hash of it) for each SA.
>
> In SIR (<http://tools.ietf.org/html/draft-ditienne-ikev2-recovery>), Alice sends a new Check_SPI query with a stateless cookie, essentially asking "do you really not know about this
> SPI?"; Bob responds by saying "I'm sure I don't know that SPI". Nothing is stored on either side, so a man-in-the-middle can attack this to cause an unnecessary rekey just as they can normal IKE.
>
> The first task for the WG is to decide which of these two quite different approaches to take. After we have done that, we can then hone the chosen proposal. During earlier discussion of the proposals, the following criteria were mentioned as ones that the WG should consider when thinking about the approaches:
>
> -  Support for different scenarios (load balancers, active clusters, failover)
> -  Security from man-in-the-middle DoS attacks
> -  Resources used
> -  Intellectual property rights
>
> So: please start discussing the two proposals with respect to these criteria or other criteria that are important to you. In a few weeks (hopefully well before the Maastricht meeting), I make a call for consensus and see where it leads us.
>
> --Paul Hoffman, Director
> --VPN Consortium
> _______________________________________________
> IPsec mailing list
> IPsec@ietf.org
> https://www.ietf.org/mailman/listinfo/ipsec
>
> --Paul Hoffman, Director
> --VPN Consortium
> _______________________________________________
> IPsec mailing list
> IPsec@ietf.org
> https://www.ietf.org/mailman/listinfo/ipsec

v2.23.0 | Report a Bug | By Email