Re: about violation of standards - security matters relevant to IPWAVE WG and to 6MAN WG
Alexandre Petrescu <alexandre.petrescu@gmail.com> Wed, 24 April 2019 13:56 UTC
Return-Path: <alexandre.petrescu@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8724F12016A for <ipv6@ietfa.amsl.com>; Wed, 24 Apr 2019 06:56:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.632
X-Spam-Level:
X-Spam-Status: No, score=-2.632 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_ADSP_CUSTOM_MED=0.001, FREEMAIL_FROM=0.001, NML_ADSP_CUSTOM_MED=0.9, RCVD_IN_DNSWL_MED=-2.3, SPF_SOFTFAIL=0.665, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6lO8Nd4EZ4F7 for <ipv6@ietfa.amsl.com>; Wed, 24 Apr 2019 06:56:25 -0700 (PDT)
Received: from sainfoin-smtp-out.extra.cea.fr (sainfoin-smtp-out.extra.cea.fr [132.167.192.228]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1012B120020 for <ipv6@ietf.org>; Wed, 24 Apr 2019 06:56:24 -0700 (PDT)
Received: from pisaure.intra.cea.fr (pisaure.intra.cea.fr [132.166.88.21]) by sainfoin-sys.extra.cea.fr (8.14.7/8.14.7/CEAnet-Internet-out-4.0) with ESMTP id x3ODuNkx038440; Wed, 24 Apr 2019 15:56:23 +0200
Received: from pisaure.intra.cea.fr (localhost [127.0.0.1]) by localhost (Postfix) with SMTP id 23192204084; Wed, 24 Apr 2019 15:56:23 +0200 (CEST)
Received: from muguet2-smtp-out.intra.cea.fr (muguet2-smtp-out.intra.cea.fr [132.166.192.13]) by pisaure.intra.cea.fr (Postfix) with ESMTP id 16156203705; Wed, 24 Apr 2019 15:56:23 +0200 (CEST)
Received: from [10.8.35.150] (is154594.intra.cea.fr [10.8.35.150]) by muguet2-sys.intra.cea.fr (8.14.7/8.14.7/CEAnet-Internet-out-4.0) with ESMTP id x3ODuNDr007253; Wed, 24 Apr 2019 15:56:23 +0200
Subject: Re: about violation of standards - security matters relevant to IPWAVE WG and to 6MAN WG
To: 神明達哉 <jinmei@wide.ad.jp>, Fernando Gont <fgont@si6networks.com>
Cc: IPv6 <ipv6@ietf.org>
References: <bb7f7606-2adf-e669-8bcd-e41f17800782@gmail.com> <CAJE_bqd9frqX5-yeVPj8MYXpZ4737HqK1gmfD9cQV3A-Ea5HrQ@mail.gmail.com> <6bd5db47-408a-727e-5c13-f34a3465f986@si6networks.com> <CAJE_bqfTLqRbLp4fLu2ASZuZ+4G5c2G+RXkO92kXfLgPTqBnng@mail.gmail.com>
From: Alexandre Petrescu <alexandre.petrescu@gmail.com>
Message-ID: <de4c64ff-7b0c-554b-2bde-79bf78e99057@gmail.com>
Date: Wed, 24 Apr 2019 15:56:22 +0200
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.6.1
MIME-Version: 1.0
In-Reply-To: <CAJE_bqfTLqRbLp4fLu2ASZuZ+4G5c2G+RXkO92kXfLgPTqBnng@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: fr
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/QDohY9CTs5ImYtk4eDbfemwl-WE>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Apr 2019 13:56:28 -0000
Le 19/04/2019 à 02:50, 神明達哉 a écrit : > At Fri, 19 Apr 2019 02:07:20 +0200, Fernando Gont > <fgont@si6networks.com <mailto:fgont@si6networks.com>> wrote: > >> [....] > Sometimes even a disruptive update can be justified (like an extreme > case of some security matters). [...] I take advantage of your message about security. I am not a security expert. I am not suggesting to use this security matter - it is not extreme - in order to justify the ll discussion. I will not blow whistles. -------------------------------------------------------------- I often listen to packets at 5.9GHz (DSRC, 802.11-OCB, 802.11p, WAVE, ITS-G5), that are emitted by Road-Side Units, that are relevant to IPWAVE WG and to 6MAN WG Rarely - if ever at all - can I hear encrypted packets. Some times they have signatures, but their CAs are not widely ack'ed. The messages that I listen to are IP, CAM, SPAT, MAP and DENM. Sometimes the DENM packets warn of accidents. The DENM packet contains some warning. The DENM packet is in clear. Anyone can fake it. If I remember correctly, I think I saw a DENM containing an accident warning, that was not signed nor encrypted. Anyone can send a fake DENM message with an accident warning which, if taken seriously, may actually provoke some accident. Some times I hear SPAT messages that may contain the status of the traffic lights. I am happy because I can see that status without being there. But I wonder what happens if someone fakes them. There are also IPv6 RA packets, that are not encrypted, not signed. It does not surprise me, because I know how hard is it to secure RAs. I recently (April 2019) encountered one RSU with a dongling (dangling?) Ethernet cable that anyone on the curbside (trottoir) could plug. It is an area under construction but the cars do circulate at 50km/h or so. ----------------------------------------------------------------------- Alex
- Re: about violation of standards Kerry Lynn
- about violation of standards Alexandre Petrescu
- Re: about violation of standards Suresh Krishnan
- Re: about violation of standards Kerry Lynn
- Re: about violation of standards Alexandre Petrescu
- Re: about violation of standards Alexandre Petrescu
- Re: about violation of standards Kerry Lynn
- Re: about violation of standards Alexandre Petrescu
- Re: about violation of standards 神明達哉
- Re: about violation of standards Alexandre Petrescu
- Re: about violation of standards Mark Smith
- Re: about violation of standards Fernando Gont
- Re: about violation of standards 神明達哉
- Re: about violation of standards Pascal Thubert (pthubert)
- encoding link ID in link-local addrs (Re: about v… 神明達哉
- Re: encoding link ID in link-local addrs (Re: abo… 神明達哉
- Re: encoding link ID in link-local addrs (Re: abo… Gyan Mishra
- Re: encoding link ID in link-local addrs (Re: abo… Gyan Mishra
- Re: about violation of standards Yucel Guven
- Re: about violation of standards 神明達哉
- Re: about violation of standards Alexandre Petrescu
- Re: about violation of standards Nick Hilliard
- Re: about violation of standards Gyan Mishra
- Re: about violation of standards Gyan Mishra
- Re: about violation of standards Gyan Mishra
- Re: about violation of standards Gyan Mishra
- Re: about violation of standards Ole Troan
- Globally Unique Link Local Addresses (Re: about v… Mark Smith
- Re: Globally Unique Link Local Addresses (Re: abo… Mark Smith
- RE: about violation of standards Pascal Thubert (pthubert)
- Re: about violation of standards Ole Troan
- Re: Globally Unique Link Local Addresses (Re: abo… Philip Homburg
- Re: Globally Unique Link Local Addresses (Re: abo… Brian E Carpenter
- Re: about violation of standards Brian E Carpenter
- Re: about violation of standards Gyan Mishra
- Re: Globally Unique Link Local Addresses (Re: abo… Mark Smith
- Re: Globally Unique Link Local Addresses (Re: abo… Gyan Mishra
- Re: Globally Unique Link Local Addresses (Re: abo… 神明達哉
- Re: about violation of standards Mikael Abrahamsson
- Re: Globally Unique Link Local Addresses (Re: abo… Mark Smith
- Re: Globally Unique Link Local Addresses (Re: abo… Mark Andrews
- Re: Globally Unique Link Local Addresses (Re: abo… Mark Smith
- Re: about violation of standards - security matte… Alexandre Petrescu
- Re: encoding link ID in link-local addrs (Re: abo… Alexandre Petrescu
- Re: about violation of standards - fe80::1/128 Alexandre Petrescu
- Re: about violation of standards Alexandre Petrescu
- Re: about violation of standards Alexandre Petrescu
- Re: about violation of standards Alexandre Petrescu
- Re: encoding link ID in link-local addrs (Re: abo… Alexandre Petrescu
- Re: about violation of standards - fe80::1/128 神明達哉
- Re: encoding link ID in link-local addrs (Re: abo… Alexandre Petrescu
- Re: encoding link ID in link-local addrs (Re: abo… Ole Troan
- Re: about violation of standards Nick Hilliard
- Re: about violation of standards Yucel Guven
- Re: Globally Unique Link Local Addresses (Re: abo… 神明達哉
- Re: Globally Unique Link Local Addresses (Re: abo… Brian E Carpenter
- Re: encoding link ID in link-local addrs (Re: abo… 神明達哉
- Re: about violation of standards Alexandre Petrescu
- Re: encoding link ID in link-local addrs (Re: abo… Alexandre Petrescu
- Re: encoding link ID in link-local addrs (Re: abo… Alexandre Petrescu
- Re: Globally Unique Link Local Addresses (Re: abo… Alexandre Petrescu
- Re: encoding link ID in link-local addrs (Re: abo… Philip Homburg
- Re: encoding link ID in link-local addrs (Re: abo… Ole Troan
- Re: encoding link ID in link-local addrs (Re: abo… Mudric, Dusan (Dusan)
- Re: about violation of standards Yucel Guven
- Re: encoding link ID in link-local addrs (Re: abo… 神明達哉
- Re: Globally Unique Link Local Addresses (Re: abo… Mark Andrews
- Re: Globally Unique Link Local Addresses (Re: abo… Mark Smith
- Re: about violation of standards - fe80::1/128 Gyan Mishra
- Re: encoding link ID in link-local addrs (Re: abo… Brian E Carpenter
- Re: Globally Unique Link Local Addresses (Re: abo… Mark Smith
- Re: about violation of standards - fe80::1/128 Pascal Thubert (pthubert)
- Re: Globally Unique Link Local Addresses (Re: abo… Mark Andrews
- Re: encoding Subnet ID in link-local addrs (Re: a… Alexandre Petrescu
- Re: disagreement on which OS should change Alexandre Petrescu
- Re: about violation of standards Alexandre Petrescu
- Re: easy to remember addresses and /etc/hosts and… Alexandre Petrescu
- Re: encoding Subnet ID in link-local addrs - prob… Alexandre Petrescu
- Re: easy to remember addresses and /etc/hosts and… Mark Smith
- Re: easy to remember addresses and /etc/hosts and… Alexandre Petrescu
- Re: easy to remember addresses and /etc/hosts and… Mark Smith
- Re: easy to remember addresses and /etc/hosts and… Alexandre Petrescu
- Re: about violation of standards Yucel Guven
- Re: easy to remember addresses and /etc/hosts and… Kerry Lynn
- RE: encoding Subnet ID in link-local addrs (Re: a… Mudric, Dusan (Dusan)
- Re: about violation of standards Erik Kline
- RE: encoding Subnet ID in link-local addrs (Re: a… Manfredi (US), Albert E
- Re: Globally Unique Link Local Addresses (Re: abo… Gyan Mishra
- Reinventing Site-Locals (Re: easy to remember add… Mark Smith
- Re: Reinventing Site-Locals (Re: easy to remember… Mark Smith
- Re: Reinventing Site-Locals (Re: easy to remember… Brian E Carpenter
- Re: disagreement on which OS should change Gyan Mishra
- Re: about violation of standards Fernando Gont
- Re: disagreement on which OS should change Brian Carpenter
- Re: disagreement on which OS should change Ole Troan
- Re: disagreement on which OS should change Fernando Gont
- Re: disagreement on which OS should change Alexandre Petrescu
- Re: easy to remember addresses and /etc/hosts and… Alexandre Petrescu
- Re: encoding Subnet ID in link-local addrs (Re: a… Alexandre Petrescu
- Re: disagreement on which OS should change Gyan Mishra
- Re: disagreement on which OS should change 神明達哉
- Re: disagreement on which OS should change Bob Hinden
- Re: disagreement on which OS should change Gyan Mishra
- Re: encoding Subnet ID in link-local addrs (Re: a… Alexandre Petrescu
- Re: disagreement on which OS should change Bob Hinden
- Re: Reinventing Site-Locals Alexandre Petrescu
- Re: disagreement on which OS should change Alexandre Petrescu
- Re: disagreement on which OS should change Alexandre Petrescu
- Re: disagreement on which OS should change Alexandre Petrescu
- Re: disagreement on which OS should change Tim Chown
- Re: disagreement on which OS should change Bob Hinden
- Wireless ND was: about violation of standards Pascal Thubert (pthubert)
- Re: Wireless ND was: about violation of standards Philip Homburg
- Re: Wireless ND was: about violation of standards Ole Troan
- RE: Wireless ND was: about violation of standards Pascal Thubert (pthubert)
- RE: Wireless ND was: about violation of standards Pascal Thubert (pthubert)
- Re: Wireless ND was: about violation of standards Ole Troan
- RE: Wireless ND was: about violation of standards Pascal Thubert (pthubert)
- Re: Wireless ND was: about violation of standards Philip Homburg
- RE: encoding Subnet ID in link-local addrs (Re: a… Mudric, Dusan (Dusan)
- Re: encoding Subnet ID in link-local addrs (Re: a… Alexandre Petrescu
- RE: encoding Subnet ID in link-local addrs (Re: a… Mudric, Dusan (Dusan)
- Re: encoding Subnet ID in link-local addrs (Re: a… Alexandre Petrescu
- Re: about violation of standards Erik Kline
- Re: about violation of standards Erik Kline