Re: [lisp] Roman Danyliw's Block on charter-ietf-lisp-04-06: (with BLOCK and COMMENT)
Roman Danyliw <rdd@cert.org> Thu, 25 January 2024 15:40 UTC
Return-Path: <rdd@cert.org>
X-Original-To: lisp@ietfa.amsl.com
Delivered-To: lisp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2E903C14CE24; Thu, 25 Jan 2024 07:40:29 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.106
X-Spam-Level:
X-Spam-Status: No, score=-2.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cert.org
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 03rs27F5C-Cx; Thu, 25 Jan 2024 07:40:24 -0800 (PST)
Received: from USG02-CY1-obe.outbound.protection.office365.us (mail-cy1usg02on0132.outbound.protection.office365.us [23.103.209.132]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7FE94C151065; Thu, 25 Jan 2024 07:40:23 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector5401; d=microsoft.com; cv=none; b=a0BXUkDzy037OkPp3ToBTJzJZIPlPajy3OZliqITqfWqOGDd9G1DxSKFerQwS0pDtY+s9tXC6EXhmeHMLWcRf1ZbjKrUR6YZ2k89CId/0rEqD5DWiplbYWmSmraGPgmVtD641GU7DzyuwdqwDLScPdNkXX6HIr/57Zkv5+zjR69lbUkvZKMafnCv00NX9labZosK35c5al4vrqSTOio8n3QcVkJC5KRB3LMtqZd9Wk6P5mpKworsvxqPKPlDQv7Yg+i8socBjos+81pvvEm3Kv7uwedARyO3zOyKIBKax+KKQ9cgRDI5nVNMpt323EytDM2SrzGYkkkxPxlv+TU6oA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector5401; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=gadc+Jnk/YGZdqrHYh77Yqr/r1X0B3eaNLhDLzHzR6M=; b=oSUrErWtFhcw92bGmKzlWIaL1Ve4qojjJ7O1V6u3MmL1bPj6ZILMuX4XU5tmqZmrB67BjW11mLBbKVUhGlShvSOGEJ/g+q8d3gGqdH9uGHEsnq4B5bFiKEQeUqaROqbEPLLEWmFsSWrHe98kKlfxV0h4QDfi+sG4w7p3HWVUd9k0MVsUwfl8Huo+/RBxh0kRq97LQf7aU8SIHvddS7CJDfqaGH5oLswO2iuDsizk0dA0vGuy73kOim2QMWXkJ5wmRRoMdmg67c8KkCFWE1gLQAcZO3CCTpV3ccKuIoOJmwOBJjvv+5nDKTx+t835JYXiLoSW+hTyxkfBK4Ope1vOHw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cert.org; dmarc=pass action=none header.from=cert.org; dkim=pass header.d=cert.org; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cert.org; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=gadc+Jnk/YGZdqrHYh77Yqr/r1X0B3eaNLhDLzHzR6M=; b=GBPPWZvxVQOcS71HMPD/3WK+tH6mwtlCc8TY8e1JcDpYEsX241iO7Npy3ZI1CyLbehnNWqt0sirRPQ6PXOdN4127vhDBzbsK/2epnnUBSgrAHbUJzKrqWTgOnz5KqqrjaQfpkTo72+neaJtvJi+CMuclkAQGqi5uVw7XjgLIEq4=
Received: from BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM (2001:489a:200:168::11) by BN2P110MB1493.NAMP110.PROD.OUTLOOK.COM (2001:489a:200:17b::5) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7228.26; Thu, 25 Jan 2024 15:40:20 +0000
Received: from BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM ([fe80::364:96fe:e2d6:b29f]) by BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM ([fe80::364:96fe:e2d6:b29f%4]) with mapi id 15.20.7228.020; Thu, 25 Jan 2024 15:40:20 +0000
From: Roman Danyliw <rdd@cert.org>
To: Luigi Iannone <ggx@gigix.net>
CC: The IESG <iesg@ietf.org>, "lisp-chairs@ietf.org" <lisp-chairs@ietf.org>, LISP mailing list list <lisp@ietf.org>
Thread-Topic: Roman Danyliw's Block on charter-ietf-lisp-04-06: (with BLOCK and COMMENT)
Thread-Index: AQHaPon0+WxLpHBxwEGAn2XHqmNra7DJ3WqAgBvQR4CABR6ocA==
Date: Thu, 25 Jan 2024 15:40:20 +0000
Message-ID: <BN2P110MB110733E8BBC622BF1CB41F32DC7AA@BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM>
References: <170431647814.62985.15974782567928382830@ietfa.amsl.com> <CAG-CQxqE0Wit+WZ29_0Y_n-7yJreuCt9kxPPN26ZjNchFkU1qg@mail.gmail.com> <FB780027-6B48-4985-95F2-E7EBE7354162@gigix.net>
In-Reply-To: <FB780027-6B48-4985-95F2-E7EBE7354162@gigix.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cert.org;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: BN2P110MB1107:EE_|BN2P110MB1493:EE_
x-ms-office365-filtering-correlation-id: 42ee7b80-3ff2-4b2c-0d8c-08dc1dbbf033
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230031)(39830400003)(136003)(396003)(366004)(230273577357003)(230173577357003)(230922051799003)(451199024)(186009)(64100799003)(1800799012)(66899024)(76116006)(41320700001)(6916009)(66946007)(66476007)(66446008)(66556008)(64756008)(54906003)(7696005)(6506007)(508600001)(9686003)(71200400001)(26005)(53546011)(33656002)(38070700009)(966005)(86362001)(41300700001)(122000001)(38100700002)(166002)(83380400001)(82960400001)(4326008)(8676002)(8936002)(55016003)(5660300002)(2906002)(52536014); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_BN2P110MB110733E8BBC622BF1CB41F32DC7AABN2P110MB1107NAMP_"
MIME-Version: 1.0
X-OriginatorOrg: cert.org
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 42ee7b80-3ff2-4b2c-0d8c-08dc1dbbf033
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Jan 2024 15:40:20.5285 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 95a9dce2-04f2-4043-995d-1ec3861911c6
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN2P110MB1493
Archived-At: <https://mailarchive.ietf.org/arch/msg/lisp/vGTtWeZ0hJrptG1btbHDChCY7QA>
Subject: Re: [lisp] Roman Danyliw's Block on charter-ietf-lisp-04-06: (with BLOCK and COMMENT)
X-BeenThere: lisp@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: List for the discussion of the Locator/ID Separation Protocol <lisp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lisp>, <mailto:lisp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lisp/>
List-Post: <mailto:lisp@ietf.org>
List-Help: <mailto:lisp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lisp>, <mailto:lisp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Jan 2024 15:40:29 -0000
Hi Luigi! Thanks for the explanation below. I cleared my ballot. Sorry for taking so long to turn this around. Roman From: Luigi Iannone <ggx@gigix.net> Sent: Monday, January 22, 2024 4:29 AM To: Roman Danyliw <rdd@cert.org> Cc: The IESG <iesg@ietf.org>; lisp-chairs@ietf.org; LISP mailing list list <lisp@ietf.org> Subject: Re: Roman Danyliw's Block on charter-ietf-lisp-04-06: (with BLOCK and COMMENT) Warning: External Sender - do not click links or open attachments unless you recognize the sender and know the content is safe. Hi Roman, Congrats for your appointment as new IETF Chair and also thanks for taking this responsibility. I know that your days are now busier but I want to ping you whether you get a chance to review the suggestions Padma made to solve your block on the LISP Charter. Thanks Ciao L. On Jan 4, 2024, at 17:44, Padma Pillay-Esnault <padma.ietf@gmail.com<mailto:padma.ietf@gmail.com>> wrote: Hi Roman Please see PPE for my comments inline On Wed, Jan 3, 2024 at 1:14 PM Roman Danyliw via Datatracker <noreply@ietf.org<mailto:noreply@ietf.org>> wrote: Roman Danyliw has entered the following ballot position for charter-ietf-lisp-04-06: Block When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/charter-ietf-lisp/ ---------------------------------------------------------------------- BLOCK: ---------------------------------------------------------------------- Per the following set of work "Privacy and Security: The WG will work on EID anonymity, VPN segmentation leveraging on the Instance ID, and traffic anonymization. The reuse of existing mechanisms will be prioritized.": -- What is the threat model assumed for "traffic anonymization" and "EID anonymity"? Could the desired security properties be clarified? PPE - LISP has an (EID, Routing Location) pair, it is possible to learn of a specific long lived EID and then poll the mapping system to know its new bindings over time. It would be therefore possible to record and track long lived EIDs and identify the traffic specifically for that endpoint. Some desired security properties would be to have short lived EIDs as well as secured and restricted access to binding of an EID and locator for privacy. ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- Per the following set of work "Privacy and Security: The WG will work on EID anonymity, VPN segmentation leveraging on the Instance ID, and traffic anonymization. The reuse of existing mechanisms will be prioritized.": -- What will the output of this work look like? Which milestone is it associated with? PPE - There are currently 2 WG drafts and the milestone is March 2025 Submit LISP Privacy and Security document(s) to the IESG for consideration (Privacy and Security) [EXPERIMENTAL] Thanks Padma
- [lisp] Roman Danyliw's Block on charter-ietf-lisp… Roman Danyliw via Datatracker
- Re: [lisp] Roman Danyliw's Block on charter-ietf-… Padma Pillay-Esnault
- Re: [lisp] Roman Danyliw's Block on charter-ietf-… Luigi Iannone
- Re: [lisp] Roman Danyliw's Block on charter-ietf-… Roman Danyliw