[lisp] Please read draft-bagnulo-lisp-threat-01.txt
Sam Hartman <hartmans-ietf@mit.edu> Mon, 12 October 2009 18:34 UTC
Return-Path: <hartmans@mit.edu>
X-Original-To: lisp@core3.amsl.com
Delivered-To: lisp@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id CEF8028C2A1 for <lisp@core3.amsl.com>; Mon, 12 Oct 2009 11:34:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.335
X-Spam-Level:
X-Spam-Status: No, score=0.335 tagged_above=-999 required=5 tests=[BAYES_50=0.001, IP_NOT_FRIENDLY=0.334]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rknGc9rIsF0G for <lisp@core3.amsl.com>; Mon, 12 Oct 2009 11:34:56 -0700 (PDT)
Received: from mail.suchdamage.org (permutation-city.suchdamage.org [69.25.196.28]) by core3.amsl.com (Postfix) with ESMTP id B39C628C2A0 for <lisp@ietf.org>; Mon, 12 Oct 2009 11:34:54 -0700 (PDT)
Received: from carter-zimmerman.suchdamage.org (carter-zimmerman.suchdamage.org [69.25.196.178]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client CN "laptop", Issuer "laptop" (not verified)) by mail.suchdamage.org (Postfix) with ESMTPS id DC0BA20356; Mon, 12 Oct 2009 14:34:54 -0400 (EDT)
Received: by carter-zimmerman.suchdamage.org (Postfix, from userid 8042) id D677B445B; Mon, 12 Oct 2009 14:34:53 -0400 (EDT)
To: lisp@ietf.org
From: Sam Hartman <hartmans-ietf@mit.edu>
Date: Mon, 12 Oct 2009 14:34:53 -0400
Message-ID: <tslaazwpik2.fsf@mit.edu>
User-Agent: Gnus/5.11 (Gnus v5.11) Emacs/22.2 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Cc: marcelo@it.uc3m.es
Subject: [lisp] Please read draft-bagnulo-lisp-threat-01.txt
X-BeenThere: lisp@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: List for the discussion of the Locator/ID Separation Protocol <lisp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/lisp>, <mailto:lisp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/lisp>
List-Post: <mailto:lisp@ietf.org>
List-Help: <mailto:lisp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lisp>, <mailto:lisp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 12 Oct 2009 18:34:56 -0000
Luigi's security draft contained a reference to Marcelo's earlier threat analysis which I at least had never run across. It's excellent work and I'd strongly encourage everyone in the WG to read it. Stylistically it does a good job of motiving the attack and providing enough detail to explain why the attack is realistic/when the attack is realistic. The draft is somewhat dated. It analyzes LISP 1 (routable EIDs) not LISP 1.5 (what we're doing, I think). Also, several of the attacks described there have been fixed. For example, we have much stronger wording about the problems of gleaning and I think we may even have a consensus that data gleaning is inappropriate for Internet contexts. Also, some of the details have changed. However some of the attacks described seem alive and well against current LISP and definitely seem like the sorts of things we'll need to fix. So, between be an excellent example of how to go about this sort of analysis and containing still-important information for today's LISP, I think it is well worth the read if you have not done so. However, before drawing conclusions, make sure they are still accurate for the LISP of 2009 instead of the LISP of 2007.