IETF Logo Mail Archive

Re: [manet] draft-ietf-manet-smf-sec-threads-01

Jiazi YI <ietf@jiaziyi.com> Tue, 24 March 2015 07:55 UTC

Return-Path: <yi.jiazi@gmail.com>
X-Original-To: manet@ietfa.amsl.com
Delivered-To: manet@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A88021B2CD3 for <manet@ietfa.amsl.com>; Tue, 24 Mar 2015 00:55:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.277
X-Spam-Level:
X-Spam-Status: No, score=-1.277 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AHnhZ7YoqEcS for <manet@ietfa.amsl.com>; Tue, 24 Mar 2015 00:55:11 -0700 (PDT)
Received: from mail-we0-x22b.google.com (mail-we0-x22b.google.com [IPv6:2a00:1450:400c:c03::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 400931B2CD4 for <manet@ietf.org>; Tue, 24 Mar 2015 00:55:11 -0700 (PDT)
Received: by weoy45 with SMTP id y45so6880677weo.2 for <manet@ietf.org>; Tue, 24 Mar 2015 00:55:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:date:message-id:subject:from:to:content-type; bh=KUvdpvagGtulhjCclFFGMaAtiUfqMZL/+FFDEdjnfLk=; b=Ff3S8PFfmBM1gogADKIOdXjayR1/Id9c/NgchKJ4N7Kl6xca6VodPql/RmmFAdbiL7 pk57AuN2s6Gi0EBF6yzolZqOFePP9axZgj4qzi0a5U5F/KIAXXQPLMocaIfMttthlps2 PbMPNX2MznzcQt9KjAfxbJjDHE/96jKLGOLPjM8pBXjnuc734UsnWPfgSTB7sfat8WHa 5Wcoade+feY/rK3EwoH8RWI+4bfW7i0CyhK3+77iJpT8F9ukVb9wqHyUtZhrYkOv1e/6 1CADDi7uF0ZGyylQKiDw5EPt+YfFTO5J18c5fqchglkRyMbfpVesiDCeJVnUoY+GtkjL eX3Q==
MIME-Version: 1.0
X-Received: by 10.180.13.145 with SMTP id h17mr26304005wic.38.1427183709673; Tue, 24 Mar 2015 00:55:09 -0700 (PDT)
Sender: yi.jiazi@gmail.com
Received: by 10.194.120.33 with HTTP; Tue, 24 Mar 2015 00:55:09 -0700 (PDT)
Date: Tue, 24 Mar 2015 08:55:09 +0100
X-Google-Sender-Auth: gOWYHSjO7LFJa9KfLltxeO8PhkY
Message-ID: <CAN1bDFwAkzdT+rMTh8xEGh2jxnrTSP0iUD1cFXVzs34CA9xp_A@mail.gmail.com>
From: Jiazi YI <ietf@jiaziyi.com>
To: manet <manet@ietf.org>
Content-Type: multipart/alternative; boundary="001a11c2413e0b5f9b0512041a12"
Archived-At: <http://mailarchive.ietf.org/arch/msg/manet/U68lvz2eVxR5XwEFO9lo5WDBE5M>
Subject: Re: [manet] draft-ietf-manet-smf-sec-threads-01
X-BeenThere: manet@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Mobile Ad-hoc Networks <manet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/manet>, <mailto:manet-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/manet/>
List-Post: <mailto:manet@ietf.org>
List-Help: <mailto:manet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/manet>, <mailto:manet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Mar 2015 07:55:14 -0000

Hi Chris,

We have updated the draft based on your comments:

The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-manet-smf-sec-threats/

There's also a htmlized version available at:
http://tools.ietf.org/html/draft-ietf-manet-smf-sec-threats-02

A diff from the previous version is available at:
http://www.ietf.org/rfcdiff?url2=draft-ietf-manet-smf-sec-threats-02


Please check below for details:


>
> - Section 1 para 5 and elsewhere. I think most references to RFC 7183
> should be to RFC 7182. As a reminder, RFC 7182 is the generic framework,
> RFC 7183 is its specific application to OLSRv2 and NHDP.
>

Because NHDP is one of the building blocks of SMF, RFC 7183 is cited in
"future work" section as one possibility to secure the control packets
exchange.


> - Section 2, it's usual to quote from RFC 2119 if referencing it. But I'm
> not sure an informational document should be using RFC 2119 language. There
> is, I think, terminology from RFC 6130 used - MANET router is defined there
> (unless also repeated in RFC 6621, I've not checked).
>

We used one MAY in the previous revision -- but it's quite trivial. We
removed the RFC 2119 language in the new revision.


>
> - Section 3, para 1, last sentence. Some of the threats discussed in this
> document assume RFC 6130, but some don't. And limiting across the board to
> when using RFC 6130 is, I think, too limiting.
>

We distinguished which threats are common to SMF, and which are
NHDP-specific in the new revision. Generally, the duplicate packet
detection is SMF-general and relay set selection is NHDP-specific.


>
> - Section 4.1.1 could discuss timestamps and whether they would be
> effective. (Not very I think, but should be discussed.]
>

Some discussion are added. In fact, if jitter manipulation is used,
timestamp won't be effective here (now it's in 4.2.1).


> - Section 4.1.1 the first two paragraphs are discussing different things.
> Both are important, but they need clearly separating. One is future
> prediction of sequence numbers (which a timestamp would limit the future
> horizon). The other is what one might call fast misforwarding with malice.
> The latter is immune to timestamps, and even to using randomised sequence
> numbers.
>

The common part is, "pre-activate" the duplicate detection mechanisms with
valid identification but invalid content. We updated the text accordingly.
For the possible countermeasures, we added in the "future work" section.


> - Section 4.1.2 I'm not sure what the benefits of modifying sequence
> numbers are over just creating a new packet. Greater verisimilitude?
>

Yes. With lower cost and greater verisimilitude.


> - Section 4.2 para 2, the probability of collision is critical here, but I
> guess that is SMF's job, not that here.
>

Yes. It's just a brief introduction of SMF: SMF doesn't guarantee the
uniqueness of the hash value.


> - Section 4.2.1 last paragraph, the jitter bypassing is another way (other
> than a wormhole) to achieve this. This shows that there is a fuzzy boundary
> between what's in 4.1.1 and 4.2.1.
>

We moved the previous 4.2.1 to 4.1, as it's common for I-DPD and H-DPD.
They are certain overlaps, but the way of the attacks are different: one is
to the TTL field, one is to identification field (thus only for I-DPD).


> - Section 4.2.2 (which I like the pointing out of the dangers of selective
> use of HAV) there's a countermeasure by always using HAV on all packets if
> it's felt it's likely to be useful on some.
>

I think there two possible sources of digest collision:
      - identical content
      - different content but the same digest (low probability, but
according to SMF, it might happen: *160-bit SHA-1 is being applied in SMF
only to*
*   provide a low probability of collision and is not being used for*
*   cryptographic or authentication purposes.*).

For the first one, always using HAV would be helpful. But for the second,
it won't be effective.



> - Section 5.4 para 2, I think this is a weak argument. I think the
> conclusion is true, but just "A has weakness, B has weakness, this is A and
> B, therefore has weakness" needs at least a step of "and the combination
> does nothing to address the weakness".
>

Updated as suggested.


> - Section 6, para 3 is assuming that you are using a single key (or small
> numbers of keys). I think all the examples in RFC 7182 (which is main
> issue) are small numbers of keys, and that in RFC 7183 (sic) definitely is.
> But the3 RFC 7182 framework permits other options, we are trying to get one
> (IBS) standardised.


We didn't try to make assumptions on the number of keys used. We just try
to say that the shared keys might cause some issues. The IBS is very
interesting to be mentioned here -- we added it as an informative
reference.


> - Section 6 final para are we talking about RFC 5444 hop limit (never TTL,
> even for IPv4)? If so, as I think, this implicitly assumes use of RFC 7182
> applied to messages. Applied to packets (hop by hop) the hop limit is
> protected. As IP packets only travel one hop, their TTL is not critical.
>

The final paragraph is about IP hop limit of the multicast datagram, not
RFC 5444 hop limit (of HELLO). Sorry that we didn't have it clear enough.
We made it more explicit in the new revision.


> - References. I'm not sure why the specific normative/informative split.
> Why is 5614 normative when 6130 is informative? What is a normative
> reference in a document such as this? As previously noted, 7182 should
> definitely be here, 7183, maybe, maybe not.
>

In the new revision, we put 6130 as normative, and 5614 as informative.
7182 and 7183 are informative, because this document mainly focus on
threats, not solutions.

thanks again for your detailed review. Hopefully the new revision and the
reply above solve your concern. Any further comments are welcome.

regards

Jiazi



>
> --
> Christopher Dearlove
> Senior Principal Engineer, Information Assurance Group
> Communications, Networks and Image Analysis Capability
> BAE Systems Advanced Technology Centre
> West Hanningfield Road, Great Baddow, Chelmsford, CM2 8HN, UK
> Tel: +44 1245 242194 |  Fax: +44 1245 242124
> chris.dearlove@baesystems.com | http://www.baesystems.com
>
> BAE Systems (Operations) Limited
> Registered Office: Warwick House, PO Box 87, Farnborough Aerospace Centre,
> Farnborough, Hants, GU14 6YU, UK
> Registered in England & Wales No: 1996687
>
>
> ********************************************************************
> This email and any attachments are confidential to the intended
> recipient and may also be privileged. If you are not the intended
> recipient please delete it from your system and notify the sender.
> You should not copy it or use it for any purpose nor disclose or
> distribute its contents to any other person.
> ********************************************************************
>
>
>

v2.23.0 | Report a Bug | By Email