IETF Logo Mail Archive

Re: 6MAN WG Last Call: draft-ietf-6man-predictable-fragment-id-01

神明達哉 <jinmei@wide.ad.jp> Tue, 09 December 2014 17:23 UTC

Return-Path: <jinmei.tatuya@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 90C481A1BD1 for <ipv6@ietfa.amsl.com>; Tue, 9 Dec 2014 09:23:46 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.978
X-Spam-Level:
X-Spam-Status: No, score=-0.978 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, FREEMAIL_FROM=0.001, MIME_8BIT_HEADER=0.3, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LLSSArqPuo8b for <ipv6@ietfa.amsl.com>; Tue, 9 Dec 2014 09:23:45 -0800 (PST)
Received: from mail-wi0-x22b.google.com (mail-wi0-x22b.google.com [IPv6:2a00:1450:400c:c05::22b]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 245BC1A019B for <ipv6@ietf.org>; Tue, 9 Dec 2014 09:23:45 -0800 (PST)
Received: by mail-wi0-f171.google.com with SMTP id bs8so8630371wib.4 for <ipv6@ietf.org>; Tue, 09 Dec 2014 09:23:44 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:cc:content-type; bh=J5Ekrb/Zm1si29vc9dXk608C5QB2Yk0dqmKuJ1yaXtM=; b=ufOWMVg2ci0v8YAWRr/l1+jUsZe5dL5QRhWJWKGc1mDSRY4k/QR+L0BQCDEV6Wx041 XmdNFPzDp7XrGqNWVDzRby0gq70vEaRGQmconOZ3oyLrrFbxGFTIolmXuuZwOd6+shZR Rv4B1q5zCC2hhJWAkXdUK07XSMTrEQkYu4AHAaAR0Dby7oogcX22Eul+ZepA7YnESq5A nP+yhF49F2/zZs5WOwMILuSPv6zboulFCgY7mTvkNRwcfbvIfUT6WJOsMIeUk1ZG0JQq tMVoDqT5Twws9sfCWMX4eOj9iYoCRki1cGx4kS9+gF26yAkTC7+tZVNVTtwzDxyMYygD C6GQ==
MIME-Version: 1.0
X-Received: by 10.180.76.231 with SMTP id n7mr5966035wiw.80.1418145823908; Tue, 09 Dec 2014 09:23:43 -0800 (PST)
Sender: jinmei.tatuya@gmail.com
Received: by 10.194.19.136 with HTTP; Tue, 9 Dec 2014 09:23:43 -0800 (PST)
In-Reply-To: <5486BF69.4020606@gont.com.ar>
References: <CC2EE99E-475C-4DB5-9E7F-ED00B4D48561@employees.org> <CAJE_bqdwrG6nGvJCQG4gpYR6hSpVBe-Pi=+XozCv4L-RJ1=URg@mail.gmail.com> <5486BF69.4020606@gont.com.ar>
Date: Tue, 09 Dec 2014 09:23:43 -0800
X-Google-Sender-Auth: 689VPPme2WpBM1s9Q5aZm_hQkoE
Message-ID: <CAJE_bqf0mtB-5BGddMnTgJ5Gr3xTXy3NRdvXHa4xOkHr9-5=VA@mail.gmail.com>
Subject: Re: 6MAN WG Last Call: draft-ietf-6man-predictable-fragment-id-01
From: 神明達哉 <jinmei@wide.ad.jp>
To: Fernando Gont <fernando@gont.com.ar>
Content-Type: text/plain; charset="UTF-8"
Archived-At: http://mailarchive.ietf.org/arch/msg/ipv6/MCt1Xx6aYOGGxo73Lekg3dKtqiE
Cc: 6man WG <ipv6@ietf.org>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Dec 2014 17:23:46 -0000

At Tue, 09 Dec 2014 06:22:49 -0300,
Fernando Gont <fernando@gont.com.ar> wrote:

> > - Section 4:
> >
> >    The Identification value of the Fragment Header MUST NOT be
> >    predictable by an off-path attacker.
> >
> >   'MUST NOT be predictable' sounds vague to me, especially with the
> >   RFC2119 keyword.  I'm not sure if there's a precedent of the use of
> >   this word with a normative keyword, but even if there's, I would
> >   personally still like to see a clearer term here.
>
> FWIW, RFC6056 (port randomization) says:
>
>    Ephemeral port selection algorithms SHOULD obfuscate the selection of
>    their ephemeral ports, since this helps to mitigate a number of
>    attacks that depend on the attacker's ability to guess or know the
>    five-tuple that identifies the transport-protocol instance to be
>    attacked.
>
>
> OTOH, RFC6528 (TCP SEQ randomization) says:
>
>    F() MUST NOT be computable from
>    the outside, or an attacker could still guess at sequence numbers
>    from the ISN used for some other connection.
>
> where F() is essentially the TCP SEQ generator..

By referring to these, do you mean you think the current text of the
draft is good enough? (asking simply because I'm not sure about the
intent).

--
JINMEI, Tatuya

v2.23.0 | Report a Bug | By Email