Re: [lisp] Last Call SECDIR Review of draft-ietf-lisp-6834bis-11
Alvaro Retana <aretana.ietf@gmail.com> Wed, 01 June 2022 13:29 UTC
Return-Path: <aretana.ietf@gmail.com>
X-Original-To: lisp@ietfa.amsl.com
Delivered-To: lisp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EDF68C14CF09; Wed, 1 Jun 2022 06:29:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9rXH7-ogXgut; Wed, 1 Jun 2022 06:29:39 -0700 (PDT)
Received: from mail-wm1-x32c.google.com (mail-wm1-x32c.google.com [IPv6:2a00:1450:4864:20::32c]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 07A72C14CF04; Wed, 1 Jun 2022 06:29:39 -0700 (PDT)
Received: by mail-wm1-x32c.google.com with SMTP id r129so974870wmr.3; Wed, 01 Jun 2022 06:29:38 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=from:in-reply-to:references:mime-version:date:message-id:subject:to :cc:content-transfer-encoding; bh=E3F5+jv654snvV49vpY+d8gAd0i1P+WNQXZakAPmo/Q=; b=qMwSY2CII/iXHT1yL9rU6g8TvX/lBiJbj2xASb1Zxpm2/MaPDyM/yj6YY7XJ+kTmgY RWcRTLXwLXJOJSf4TZUnI2VFlf+j2qg4jrunUSnioe2EZNJDWr26dfdVlXKYE+l0vrr2 V0zqBgLoGfeKpAxXK4nS6yBKRqO4YPhGJ6P1+jl/HwqMR7cJawE3D/Cd9dv/ktF4Tnk5 8voaphAa/3jKWu5bvXByBhDV/c5V9+MB/pOgelFpOsvrzX9ddeQkTtNGgZF8GtGYk+na fQOVFC38nDOjZpkhIHPa9ALr7D6NR13YRZPV5rTd2caxp1ODaGtcOeuHKGkRIy3CfDUn qnIQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:from:in-reply-to:references:mime-version:date :message-id:subject:to:cc:content-transfer-encoding; bh=E3F5+jv654snvV49vpY+d8gAd0i1P+WNQXZakAPmo/Q=; b=pzX2OgLhJeupl8qksZMhDUoqUFez+2jkrfsuLNhTY6FOtbZnN64A3huFKvcVdl1dR4 dB8/wWdy8/4/1juzttAPI6sfLwSzSo4u1+jK0ubVktlzIMqyKxLjwy5iC0bWejfWBwHk WPmUKBEMPdHaM4wwK0mUORp8aiz946gIuJ2ef7LmVhfG82PVvs2R+pMqN+/D8mQi+qGl MzMW/SMeI0oEfQTK7JHfT6chgH3g90Yiiq50Fe8pKHLCWcimsi4bK/waMlIZSnbwMg6C fkOptopDtjaHSJe0WQrbOL00ilnY0B3I+9J1vwyN+sl1YsaBJvCCGqDd7zucomm/y+/U teQQ==
X-Gm-Message-State: AOAM532q0P023FbRXOZ4x1OJMm0xyi2nGHQkg38TQEeAGdzaBcscYdTw AqXiAV1i31CS08W1x9DLLEo6a2fbz+KEigTQMQvJyUUW
X-Google-Smtp-Source: ABdhPJxV1jU/AAi4gnnynXahTQ1zZDOu83+1Qgmvx6l0BDNAmrfzgXbpUc5wIPplrQgelkNE82rMZzRZJHfiQeKOndw=
X-Received: by 2002:a05:600c:a41:b0:39c:1512:98bd with SMTP id c1-20020a05600c0a4100b0039c151298bdmr11852871wmq.88.1654090177460; Wed, 01 Jun 2022 06:29:37 -0700 (PDT)
Received: from 1058052472880 named unknown by gmailapi.google.com with HTTPREST; Wed, 1 Jun 2022 06:29:36 -0700
From: Alvaro Retana <aretana.ietf@gmail.com>
In-Reply-To: <D37B519F-D27B-4584-ADF9-3414968E657A@gigix.net>
References: <CAF4+nEE0UrAhSkUzbWbaoZKvHE_LFs6zmbda3nie=M-EN-XDeg@mail.gmail.com> <542A2E95-C536-43A3-B500-A85D76A62579@gigix.net> <CAF4+nEFHzKCgLBWMT2-WTO0T0vgxpYV1bndsz4HofNKvpYt-2w@mail.gmail.com> <D37B519F-D27B-4584-ADF9-3414968E657A@gigix.net>
MIME-Version: 1.0
Date: Wed, 01 Jun 2022 06:29:36 -0700
Message-ID: <CAMMESsxV1RtNebENfx=fkxkz3cCPjK_SbzO6_SzZRtkPFjBuxA@mail.gmail.com>
To: Luigi Iannone <ggx@gigix.net>, Donald Eastlake <d3e3e3@gmail.com>
Cc: secdir <secdir@ietf.org>, Last Call <last-call@ietf.org>, "iesg@ietf.org" <iesg@ietf.org>, draft-ietf-lisp-6834bis.all@ietf.org, "lisp@ietf.org list" <lisp@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/lisp/f8vz0aUq-Y8Zam5GD5s2tG5N_A8>
Subject: Re: [lisp] Last Call SECDIR Review of draft-ietf-lisp-6834bis-11
X-BeenThere: lisp@ietf.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: List for the discussion of the Locator/ID Separation Protocol <lisp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lisp>, <mailto:lisp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lisp/>
List-Post: <mailto:lisp@ietf.org>
List-Help: <mailto:lisp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lisp>, <mailto:lisp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 01 Jun 2022 13:29:40 -0000
On June 1, 2022 at 4:45:15 AM, Luigi Iannone wrote: > > On 1 Jun 2022, at 05:29, Donald Eastlake wrote: > > > > ... > > > > > SECURITY > > > > > This draft appears to completely ignore the issue of Map Version > > > > > Number advancing so far so quickly that an old version number is > > > > > encountered that appears to be newer than or equal to the current > > > > > version number. Why can't this happen? Or if it can, why doesn't that > > > > > hurt? > > > > > > > This is more of an operational point. If you update a mapping, the best > > > would be to give sufficient time so that everybody updates and there is > > > no such a risk. > > > What about adding in section 7 “dealing with Map-Version Numbers” the > > > following sentence. > > > > > > It is an operational question to make sure that Map-Version numbers are > > > not updated so frequently as to create the risk that very old version > > > numbers appear newer (because of the circular space). > > > > > > Would that address your issue? > > > > Not really. (1) I think the document needs to say what happens if the > > numbers wrap around and overlap. (2) Assuming the answer to 1 is as bad as > > I think, then it is not "an operational question" to avoid this but rather > > "an operational requirement". That is, there should be a statement > > something like "Map Version Number incrementing and TTL MUST be managed so > > that an old Version Numbers will not be confused as a new Version Number. > > > > This last sentence is great. I will put it in section 7. Nice sentence, but what does it mean? What action should the implementation take to satisfy "MUST be managed"? From Luigi's initial response (above), it sounds like the time between changes (TTL ?) has to be long enough... Please spell some of this out. Thanks! Alvaro.
- Re: [lisp] Last Call SECDIR Review of draft-ietf-… Luigi Iannone
- Re: [lisp] Last Call SECDIR Review of draft-ietf-… Donald Eastlake
- Re: [lisp] Last Call SECDIR Review of draft-ietf-… Luigi Iannone
- Re: [lisp] Last Call SECDIR Review of draft-ietf-… Luigi Iannone
- Re: [lisp] Last Call SECDIR Review of draft-ietf-… Alvaro Retana
- Re: [lisp] Last Call SECDIR Review of draft-ietf-… Luigi Iannone
- Re: [lisp] Last Call SECDIR Review of draft-ietf-… Luigi Iannone
- Re: [lisp] Last Call SECDIR Review of draft-ietf-… Alvaro Retana
- Re: [lisp] Last Call SECDIR Review of draft-ietf-… Donald Eastlake
- Re: [lisp] Last Call SECDIR Review of draft-ietf-… Donald Eastlake
- Re: [lisp] Last Call SECDIR Review of draft-ietf-… Luigi Iannone
- Re: [lisp] Last Call SECDIR Review of draft-ietf-… Donald Eastlake