IETF Logo Mail Archive

Re: [Last-Call] Last Call: <draft-gont-numeric-ids-sec-considerations-06.txt> (Security Considerations for Transient Numeric Identifiers Employed in Network Protocols) to Best Current Practice

Paul Wouters <paul@nohats.ca> Thu, 31 December 2020 17:42 UTC

Return-Path: <paul@nohats.ca>
X-Original-To: last-call@ietfa.amsl.com
Delivered-To: last-call@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 220DE3A0DF9; Thu, 31 Dec 2020 09:42:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nohats.ca
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Y9P9l5qpLfoT; Thu, 31 Dec 2020 09:42:54 -0800 (PST)
Received: from mx.nohats.ca (mx.nohats.ca [IPv6:2a03:6000:1004:1::68]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6BE5E3A0A2C; Thu, 31 Dec 2020 09:42:52 -0800 (PST)
Received: from localhost (localhost [IPv6:::1]) by mx.nohats.ca (Postfix) with ESMTP id 4D6FqG4SFLz45D; Thu, 31 Dec 2020 18:42:50 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nohats.ca; s=default; t=1609436570; bh=Y1V2UFu+g+qOP442B5H3ayEnqWtEgR42XbUpmFaWj/g=; h=Date:From:To:cc:Subject:In-Reply-To:References; b=GlY5/3patOV0b/6a4UzW/5GhM2zATtxuI7yAMu/iRNGcFm7Vo1Xts5xYFO8q62XUk 54ssPq7Lk3hatUP73bqp5lekB5GhEOFqSPyUDW1ZiLMRfMIZzgBVSjz6wFE2ssRaIW 6W0Tu2NKcC0DKkJvpt3ggOpCqJOtnFK13+wZISvk=
X-Virus-Scanned: amavisd-new at mx.nohats.ca
Received: from mx.nohats.ca ([IPv6:::1]) by localhost (mx.nohats.ca [IPv6:::1]) (amavisd-new, port 10024) with ESMTP id XMhOfEfA-TNI; Thu, 31 Dec 2020 18:42:49 +0100 (CET)
Received: from bofh.nohats.ca (bofh.nohats.ca [193.110.157.194]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx.nohats.ca (Postfix) with ESMTPS; Thu, 31 Dec 2020 18:42:48 +0100 (CET)
Received: by bofh.nohats.ca (Postfix, from userid 1000) id A2A476029B54; Thu, 31 Dec 2020 12:42:47 -0500 (EST)
Received: from localhost (localhost [127.0.0.1]) by bofh.nohats.ca (Postfix) with ESMTP id 99ECD669F1; Thu, 31 Dec 2020 12:42:47 -0500 (EST)
Date: Thu, 31 Dec 2020 12:42:47 -0500
From: Paul Wouters <paul@nohats.ca>
To: Fernando Gont <fgont@si6networks.com>
cc: Eric Rescorla <ekr@rtfm.com>, last-call@ietf.org, Benjamin Kaduk <kaduk@mit.edu>, draft-gont-numeric-ids-sec-considerations@ietf.org
In-Reply-To: <c407fe1e-e359-1455-8c25-2ee621def723@si6networks.com>
Message-ID: <782869c9-49c6-8558-f24c-f3c134c1a4c@nohats.ca>
References: <160735373732.25981.15176977559155786235@ietfa.amsl.com> <CABcZeBM636h_XKwbpZb69TWLTq8-5n0=6CRAqhsB+pWzoZ2a7A@mail.gmail.com> <20201214034604.GT64351@kduck.mit.edu> <CABcZeBPgSFL=859oZGqm0V-WG+GQLmPqAX=pPjYbur5qTcgfVg@mail.gmail.com> <c4302926-76b3-3932-f5b6-7093a48ea8@nohats.ca> <c407fe1e-e359-1455-8c25-2ee621def723@si6networks.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"; format="flowed"
Archived-At: <https://mailarchive.ietf.org/arch/msg/last-call/gk0DS8NLbSego4IUjAYHiO2_Yoo>
Subject: Re: [Last-Call] Last Call: <draft-gont-numeric-ids-sec-considerations-06.txt> (Security Considerations for Transient Numeric Identifiers Employed in Network Protocols) to Best Current Practice
X-BeenThere: last-call@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF Last Calls <last-call.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/last-call>, <mailto:last-call-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/last-call/>
List-Post: <mailto:last-call@ietf.org>
List-Help: <mailto:last-call-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/last-call>, <mailto:last-call-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 31 Dec 2020 17:42:56 -0000

On Tue, 29 Dec 2020, Fernando Gont wrote:

> So I certainly agree that this is "a really low bar that we  should be 
> already meeting at the IETF in general at this point", and probably also that 
> "It is obvious to those who care".
>
> But then, may I ask:
>
> 1) How you explain the timelines in 
> https://tools.ietf.org/html/draft-irtf-pearg-numeric-ids-history-04 ?


It seems the tail of the last 15 years all refer to IPv6, so perhaps
that area needs to write up a specific document that allows implementors
to verify their implementation's use of numeric identifiers. That is,
explicitly list the fields and how to safely generate them.

> 2) How do you explain that a preliminar inspection of the core QUIC spec also 
> fails in this regard? (e.g., connection-IDs)

Do you think publishing this document will change how the QUIC working
group will act in the future? I am sceptical.

> 3) What the "controversy" is all about?

That I'm a little confused about too. I don't follow Theo de Raadt's
reasoning of the end of the world. Before I read the draft, I was
expecting people to object to certain avoiding of random fields because
those are abused for privacy reasons (eg user tracking) but I found
none of that in the actual draft documents.

> Is it that nobody cares? Is it that the topic is not that obvious? Anything 
> else?

I can only speak for myself. I found the document in question to
basically say the equivalent of "please be careful", and that is not
very useful to me as implementor. I cannot go and check my code after
reading the draft, and I dont really feel that writing new drafts would
be affected by having read this document. That is why I say that this
low bar is kind of already met. If we are not meeting this low bar,
adding a new draft document isn't going to change this either.

>>  Section 5 bullet 3 points to another document. It is almost as if bullet
>>  point 1 and 2 could be part of the introduction there.
>>
>>  Once you do these two things, this draft is basically scaffolding
>>  without content.
>
> Please do read the document.

I had :P I might have confused reading the mentioning of hash algorithms
between the three related documents. I had read all three.

> And, indeed, many flaws have to do with protocol specs over-specifying their 
> transient numeric IDs. And the reader/reviewer somehow needs to assume that 
> there's a reason for which the spec specifies the IDs in the way it does, 
> instead of quickly realizing that the spec is over-specifying its transient 
> numeric IDs.

I find the word over-specifying a bit strange. If it is specified in the
RFC, you have to do it to interop or to get the at-the-time deemed
required security. Implementors should not think "Is this over-specified?"
If there is an error in the spec, a new RFC should update the current
RFC and fix it. If everyone starts second guessing over-specification,
then we are doing more harm than good by ending up with non-compliant
and non-interoperating implementations.

> And item #3 *of course* points to another document! -- Because we don't 
> require you to pick any of the algorithms in 
> https://tools.ietf.org/html/draft-irtf-pearg-numeric-ids-generation

Sure. I am not saying it is wrong. I am just saying there isn't much
content in this draft compared to all the boilerplate. Which makes me
think this document's little content could be better split over the
other two documents.

> It's puzzles me that you portray this document as doing lot of handwaving. 
> Because what's in this document is essentially the process that I followed to 
> improve e.g. IPv6 stable IIDs (RFC7217), TCP sequence numbers (RFC6528), 
> transport protocol ephemeral ports (RFC6056), IPv6 Frag IDs (RFC7739), and 
> IPv6 temporary IIDs (rfc4941bis).

I guess we have a difference audience in mind. You seem to be targetting
IETF draft authors, while I'm thinking of implementors.

Paul

v2.46.0 | Report a Bug | By Email | System Status