IETF Logo Mail Archive

Re: about violation of standards - security matters relevant to IPWAVE WG and to 6MAN WG

Alexandre Petrescu <alexandre.petrescu@gmail.com> Wed, 24 April 2019 13:56 UTC

Return-Path: <alexandre.petrescu@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8724F12016A for <ipv6@ietfa.amsl.com>; Wed, 24 Apr 2019 06:56:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.632
X-Spam-Level:
X-Spam-Status: No, score=-2.632 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_ADSP_CUSTOM_MED=0.001, FREEMAIL_FROM=0.001, NML_ADSP_CUSTOM_MED=0.9, RCVD_IN_DNSWL_MED=-2.3, SPF_SOFTFAIL=0.665, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6lO8Nd4EZ4F7 for <ipv6@ietfa.amsl.com>; Wed, 24 Apr 2019 06:56:25 -0700 (PDT)
Received: from sainfoin-smtp-out.extra.cea.fr (sainfoin-smtp-out.extra.cea.fr [132.167.192.228]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1012B120020 for <ipv6@ietf.org>; Wed, 24 Apr 2019 06:56:24 -0700 (PDT)
Received: from pisaure.intra.cea.fr (pisaure.intra.cea.fr [132.166.88.21]) by sainfoin-sys.extra.cea.fr (8.14.7/8.14.7/CEAnet-Internet-out-4.0) with ESMTP id x3ODuNkx038440; Wed, 24 Apr 2019 15:56:23 +0200
Received: from pisaure.intra.cea.fr (localhost [127.0.0.1]) by localhost (Postfix) with SMTP id 23192204084; Wed, 24 Apr 2019 15:56:23 +0200 (CEST)
Received: from muguet2-smtp-out.intra.cea.fr (muguet2-smtp-out.intra.cea.fr [132.166.192.13]) by pisaure.intra.cea.fr (Postfix) with ESMTP id 16156203705; Wed, 24 Apr 2019 15:56:23 +0200 (CEST)
Received: from [10.8.35.150] (is154594.intra.cea.fr [10.8.35.150]) by muguet2-sys.intra.cea.fr (8.14.7/8.14.7/CEAnet-Internet-out-4.0) with ESMTP id x3ODuNDr007253; Wed, 24 Apr 2019 15:56:23 +0200
Subject: Re: about violation of standards - security matters relevant to IPWAVE WG and to 6MAN WG
To: 神明達哉 <jinmei@wide.ad.jp>, Fernando Gont <fgont@si6networks.com>
Cc: IPv6 <ipv6@ietf.org>
References: <bb7f7606-2adf-e669-8bcd-e41f17800782@gmail.com> <CAJE_bqd9frqX5-yeVPj8MYXpZ4737HqK1gmfD9cQV3A-Ea5HrQ@mail.gmail.com> <6bd5db47-408a-727e-5c13-f34a3465f986@si6networks.com> <CAJE_bqfTLqRbLp4fLu2ASZuZ+4G5c2G+RXkO92kXfLgPTqBnng@mail.gmail.com>
From: Alexandre Petrescu <alexandre.petrescu@gmail.com>
Message-ID: <de4c64ff-7b0c-554b-2bde-79bf78e99057@gmail.com>
Date: Wed, 24 Apr 2019 15:56:22 +0200
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.6.1
MIME-Version: 1.0
In-Reply-To: <CAJE_bqfTLqRbLp4fLu2ASZuZ+4G5c2G+RXkO92kXfLgPTqBnng@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: fr
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/QDohY9CTs5ImYtk4eDbfemwl-WE>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Apr 2019 13:56:28 -0000


Le 19/04/2019 à 02:50, 神明達哉 a écrit :
> At Fri, 19 Apr 2019 02:07:20 +0200, Fernando Gont 
> <fgont@si6networks.com <mailto:fgont@si6networks.com>> wrote:
> 
>> [....]
> Sometimes even a disruptive update can be justified (like an extreme
>  case of some security matters). [...]

I take advantage of your message about security.

I am not a security expert.

I am not suggesting to use this security matter - it is not extreme - in 
order to justify the ll discussion.

I will not blow whistles.

--------------------------------------------------------------
I often listen to packets at 5.9GHz (DSRC, 802.11-OCB, 802.11p, WAVE,
ITS-G5), that are emitted by Road-Side Units, that are relevant to
IPWAVE WG and to 6MAN WG

Rarely - if ever at all - can I hear encrypted packets.
Some times they have signatures, but their CAs are not widely ack'ed.

The messages that I listen to are IP, CAM, SPAT, MAP and DENM.
Sometimes the DENM packets warn of accidents.  The DENM packet contains
some warning.  The DENM packet is in clear.  Anyone can fake it.  If I
remember correctly, I think I saw a DENM containing an accident warning,
that was not signed nor encrypted.  Anyone can send a fake DENM message
with an accident warning which, if taken seriously, may actually provoke
some accident.

Some times I hear SPAT messages that may contain the status of the
traffic lights.  I am happy because I can see that status without being
there.  But I wonder what happens if someone fakes them.

There are also IPv6 RA packets, that are not encrypted, not signed.  It
does not surprise me, because I know how hard is it to secure RAs.

I recently (April 2019) encountered one RSU with a dongling (dangling?)
Ethernet cable that anyone on the curbside (trottoir) could plug.  It is 
an area under construction but the cars do circulate at 50km/h or so.
-----------------------------------------------------------------------

Alex

v2.23.0 | Report a Bug | By Email