IETF Logo Mail Archive

Re: 6MAN WG Last Call: draft-ietf-6man-predictable-fragment-id-01

Brian Haberman <brian@innovationslab.net> Tue, 09 December 2014 02:48 UTC

Return-Path: <brian@innovationslab.net>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1E73F1A0143 for <ipv6@ietfa.amsl.com>; Mon, 8 Dec 2014 18:48:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WC4CTD9DyNRX for <ipv6@ietfa.amsl.com>; Mon, 8 Dec 2014 18:48:36 -0800 (PST)
Received: from uillean.fuaim.com (uillean.fuaim.com [206.197.161.140]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4CD4B1A006E for <ipv6@ietf.org>; Mon, 8 Dec 2014 18:48:36 -0800 (PST)
Received: from clairseach.fuaim.com (clairseach-high.fuaim.com [206.197.161.158]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by uillean.fuaim.com (Postfix) with ESMTP id 2825188127; Mon, 8 Dec 2014 18:48:36 -0800 (PST)
Received: from [192.168.1.7] (unknown [76.21.129.88]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by clairseach.fuaim.com (Postfix) with ESMTP id DF13B71C0002; Mon, 8 Dec 2014 18:48:35 -0800 (PST)
References: <5485C0AF.5040708@innovationslab.net> <1126971815.6970452.1418084075254.JavaMail.yahoo@jws10612.mail.bf1.yahoo.com>
Mime-Version: 1.0 (1.0)
In-Reply-To: <1126971815.6970452.1418084075254.JavaMail.yahoo@jws10612.mail.bf1.yahoo.com>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Message-Id: <D4FE16E0-6F0F-4141-B004-E537E2463ECC@innovationslab.net>
X-Mailer: iPad Mail (12B435)
From: Brian Haberman <brian@innovationslab.net>
Subject: Re: 6MAN WG Last Call: draft-ietf-6man-predictable-fragment-id-01
Date: Mon, 08 Dec 2014 21:48:34 -0500
To: Mark ZZZ Smith <markzzzsmith@yahoo.com.au>
Archived-At: http://mailarchive.ietf.org/arch/msg/ipv6/Y8fCJuIwp6cn_1SW3OVky2Qx258
Cc: "ipv6@ietf.org" <ipv6@ietf.org>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Dec 2014 02:48:38 -0000




> On Dec 8, 2014, at 7:14 PM, Mark ZZZ Smith <markzzzsmith@yahoo.com.au> wrote:
> 
> 
> 
> 
> 
> ----- Original Message -----
>> From: Brian Haberman <brian@innovationslab.net>
>> To: ipv6@ietf.org
>> Cc: 
>> Sent: Tuesday, 9 December 2014, 2:15
>> Subject: Re: 6MAN WG Last Call: draft-ietf-6man-predictable-fragment-id-01
>> 
>> Actually, this document should not be a BCP at all.
> 
> I was thinking that there are a number of RFCs/drafts recommending unpredictable or less predictable field values, with probably more coming because of RFC7258, "Pervasive Monitoring Is an Attack" (I think I've come across two different drafts recommending similar for DHCPv6 field values). So perhaps there should be a more general IAB BCP advising that "Initial and Ongoing Field Values Should Be Unpredictable By Default".

I had asked for such a document when I saw a similar draft discussing the TCP sequence number.

Brian

> 
> More specific ones such as this would then be PS.
> 
>> This document does
>> two things:
>> 
>> 1. Updates 2460 to not use predictable IDs
>> 
>> 2. Provides implementation guidance on generating those fragment IDs.
>> 
>> Both of the above should be done in standards track documents.  I would
>> suggest changing the draft from BCP to PS.
>> 
>> Regards,
>> Brian
>> 
>> 
>> 
>>> On 12/5/14 3:09 PM, Ronald Bonica wrote:
>>> Folks,
>>> 
>>> In general, I support the concept, but have a procedural question:
>>> 
>>> 1) Can a BCP UPDATE a Standards Track document?
>>> 2) If not, we have two options. These are 
>>>     a) publish this draft as PS
>>>                 b) publish this draft as BCP and change the text in Section
>> 4 to be more of a recommendation than an UPDATE to RFC 2460 with a MUST 
>> statement.
>>> 
>>> Personally, I think that the latter is more palatable. If we did the
>> former, many existing IPv6 implementations would become non-compliant with the 
>> IPv6 standard. If we did the latter, many existing IPv6 implementations would be 
>> non-compliant with the BCP, while remaining compliant with the IPv6 standard.
>>                                   Ron
>>> 
>>>> -----Original Message-----
>>>> From: ipv6 [mailto:ipv6-bounces@ietf.org] On Behalf Of Ole Troan
>>>> Sent: Thursday, December 04, 2014 3:07 AM
>>>> To: 6man WG
>>>> Cc: 6man Chairs
>>>> Subject: 6MAN WG Last Call: draft-ietf-6man-predictable-fragment-id-01
>>>> 
>>>> This message starts a two week 6MAN Working Group Last Call on
>> advancing:
>>>> 
>>>>      Title           : Security Implications of Predictable Fragment
>> Identification
>>>> Values
>>>>      Authors     : Fernando Gont
>>>>      Filename   : draft-ietf-6man-predictable-fragment-id-01.txt
>>>>      Pages        : 16
>>>>      Date           : 2014-04-30
>> http://tools.ietf.org/html/draft-ietf-6man-predictable-fragment-id-01
>>>> 
>>>> as a Best Current Practice Document.  Substantive comments and
>> statements
>>>> of support for publishing this document should be directed to the
>> mailing list.
>>>> Editorial suggestions can be sent to the authors.  This last call will
>> end on
>>>> December 18, 2014.
>>>> 
>>>> Note: While the document has expired, we didn't consider it
>> necessary to
>>>> refresh it purely for the sake of initiating the working group last
>> call.
>>>> 
>>>> Regards,
>>>> 
>>>> Bob Hinden & Ole Trøan
>>>> --------------------------------------------------------------------
>>>> IETF IPv6 working group mailing list
>>>> ipv6@ietf.org
>>>> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
>>>> --------------------------------------------------------------------
>>> --------------------------------------------------------------------
>>> IETF IPv6 working group mailing list
>>> ipv6@ietf.org
>>> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
>>> --------------------------------------------------------------------
>> 
>> 
>> --------------------------------------------------------------------
>> IETF IPv6 working group mailing list
>> ipv6@ietf.org
>> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
>> --------------------------------------------------------------------
>>

v2.23.0 | Report a Bug | By Email