Re: [manet] Warren Kumari's Discuss on draft-ietf-manet-dlep-pause-extension-06: (with DISCUSS)
Warren Kumari <warren@kumari.net> Thu, 11 April 2019 13:30 UTC
Return-Path: <warren@kumari.net>
X-Original-To: manet@ietfa.amsl.com
Delivered-To: manet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 727CF120229 for <manet@ietfa.amsl.com>; Thu, 11 Apr 2019 06:30:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=kumari-net.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QN0eiU0MFXjA for <manet@ietfa.amsl.com>; Thu, 11 Apr 2019 06:30:48 -0700 (PDT)
Received: from mail-qk1-x732.google.com (mail-qk1-x732.google.com [IPv6:2607:f8b0:4864:20::732]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5BC8712029F for <manet@ietf.org>; Thu, 11 Apr 2019 06:30:45 -0700 (PDT)
Received: by mail-qk1-x732.google.com with SMTP id g1so3425376qki.5 for <manet@ietf.org>; Thu, 11 Apr 2019 06:30:45 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kumari-net.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=aGfUividUIp4/hT5kwfenB4W6Edt5IlXahDaxX0oybI=; b=vZ49y1xnVJBgShJ7UZoUEIfCwmYHbVKgFZIhK5vkPN+IptTV9lp495S7sxzWuqmMRw jpH6cPAwnZeqiKOF0LzYREravTK1shcc9iK2cXUPcFj0+jBQBj48Bf8EUVQ9XR/dBhGC vQAtIv9Ev3CxhdY9yuzXMvP7fbI1iXCsiBKetalL5phN2AAinckKlbv9C83FszC2vGcz COhB80NsX0WenS3qgOkP7pTTKGFLVq2pvvk0HBtZ9DqEX1Dsybze0Q9c2NfI8Wv6fO7Y yRBmQ0cjXkG4h/XtN2wZULtcT+CeCp5ZLG0RZoLGnOCP4j7CvoBOcKwOrDiLP4BGfQ6l SIzQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=aGfUividUIp4/hT5kwfenB4W6Edt5IlXahDaxX0oybI=; b=HR5xm9/23lwZs5Co3uJ4X6a1ZonXwe/IT7e29C3DH6yIK/zlD8WHaRghYcV+iZcZvo 3HJ6cHoJkKSBVFye+PfJsOdN8iq7e1xgVhYSPH3OfpOOObAyr4myMrK2VwzgTlbM0H/L almdmBQf9OUvhok7hYFvmakM1Pr5UA25Tb30pFvtqUAc+ndvbctAj8H6jsbXiBMg1mYE nmFKgxUFALHz8L/pJE2TWRSjvHnVKgi9LT0pKPBYB2OXeZ+y3MDCMqvNXk9iY+KSY9Th EEXni3akOmlh41jl0T6BUAtPqifXKJEK1KcocImylpHEbLTMzUUhzeSFDMEpK+wP+py0 JCnw==
X-Gm-Message-State: APjAAAWdMjoR/1S5yHY8J8ld/9mvIJAEqNlg53pU+a+x2RT0OWA+Gt5R 5Datw2NKwCWSNYZq5zMQaVPLpdmr6SGcMcjL+aMsdQ==
X-Google-Smtp-Source: APXvYqwPMhm7bbnPZq61RKiy5DSFTkOr11knL8/w/5eu6TKgzNVd/u/juV+K8kmX6tijvMO0bK6/0/kpUrUQh0/e8Dg=
X-Received: by 2002:a05:620a:1597:: with SMTP id d23mr37644298qkk.226.1554989443984; Thu, 11 Apr 2019 06:30:43 -0700 (PDT)
MIME-Version: 1.0
References: <155474982892.30185.1930382368416788523.idtracker@ietfa.amsl.com> <7465dc7c-e64b-9926-5e8d-9203e4767c7b@labn.net>
In-Reply-To: <7465dc7c-e64b-9926-5e8d-9203e4767c7b@labn.net>
From: Warren Kumari <warren@kumari.net>
Date: Thu, 11 Apr 2019 09:30:07 -0400
Message-ID: <CAHw9_iJgH9i8MRL9nMYhhpdhNmOfge5j6gUo=UWv1OOp_aM2AA@mail.gmail.com>
To: Lou Berger <lberger@labn.net>
Cc: The IESG <iesg@ietf.org>, draft-ietf-manet-dlep-pause-extension@ietf.org, manet@ietf.org, Mobile Ad-hoc Networks Working Group <manet-chairs@ietf.org>, Stan Ratliff <sratliff@idirect.net>, Alvaro Retana <aretana.ietf@gmail.com>
Content-Type: multipart/alternative; boundary="0000000000007049a5058641313d"
Archived-At: <https://mailarchive.ietf.org/arch/msg/manet/g9xLT_E5oyvAAraho4cIAsxHlfQ>
Subject: Re: [manet] Warren Kumari's Discuss on draft-ietf-manet-dlep-pause-extension-06: (with DISCUSS)
X-BeenThere: manet@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Mobile Ad-hoc Networks <manet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/manet>, <mailto:manet-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/manet/>
List-Post: <mailto:manet@ietf.org>
List-Help: <mailto:manet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/manet>, <mailto:manet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Apr 2019 13:30:51 -0000
On Thu, Apr 11, 2019 at 8:21 AM Lou Berger <lberger@labn.net> wrote: > > On 4/8/2019 2:57 PM, Warren Kumari via Datatracker wrote: > > Warren Kumari has entered the following ballot position for > > draft-ietf-manet-dlep-pause-extension-06: Discuss > > > > When responding, please keep the subject line intact and reply to all > > email addresses included in the To and CC lines. (Feel free to cut this > > introductory paragraph, however.) > > > > > > Please refer to > https://www.ietf.org/iesg/statement/discuss-criteria.html > > for more information about IESG DISCUSS and COMMENT positions. > > > > > > The document, along with other ballot positions, can be found here: > > https://datatracker.ietf.org/doc/draft-ietf-manet-dlep-pause-extension/ > > > > > > > > ---------------------------------------------------------------------- > > DISCUSS: > > ---------------------------------------------------------------------- > > > > Please note that I'm really not a DLEP person, and so this may be > completely > > incorrect -- in which case I'm (of course!) happy to clear my discuss. > > > > Hypothetical Scenario: > > My next-door neighbor keeps using up all the bandwidth, making my > Internets > > slow! Stupid neighbor! > > > > Until now I didn't have much motivation to mess with DLEP (it didn't > really > > gain me anything), but now I can spoof Pause Data Items to get the > router to > > stop sending traffic to her, freeing up all the bandwidth for me. > > > > The security considerations section doesn't *really* cover this -- it > says: > > " Note that this extension does allow a compromised or impersonating > modem to > > suppress transmission by the router, but this is not a substantively > different > > attack by such a compromised modem simply dropping all traffic destined > to, or > > sent by a router." -- that only covers compromised modems, not > impersonating > > modems. > > FWIW an impersonator can shut a router completely down, by constantly > resetting the DLEP session. RFC8175 defines TLS protected DLEP as the > solution. To make this clear(er) the text has been updated to read > > > Note that this extension does allow a compromised or impersonating > modem to suppress transmission by the router. Similar attacks are > generally possible base DLEP, for example an impersonating modem may > cause a session reset or a compromised modem simply can > drop all traffic destined to, or sent by a router. <xref > target="RFC8175"/> defines the use of TLS to protect against the > impersonating attacker. > > suggested improvements are most welcome! (but see below addition before > drafting ;-) > > > It also says: > > "[RFC8175] defines the use of TLS to protect against the impersonating > > attacker." -- yes, RFC8175 does indeed define the use of TLS, but doesn't > > require it. > > > > RFC8175 Security Considerations also say: > > " This specification does not address security of the data plane, as it > (the > > data plane) is not affected, and standard security procedures can be > employed." > > and "Similar issues can arise if DLEP data is used as an input to > policing > > algorithms -- injection of malicious data via DLEP can cause those > policing > > algorithms to make incorrect decisions, degrading network throughput." > > > > It seems that this specification is specifically allowing the dataplane > to be > > affected by (spoofed) DLEP messages, and in a much more direct way than > > discussed in the RFC8175 security considerations section. I think that > this is > > dangerous without much more direct advice (like "MUST use TLS" or > similar). > > I have no objection to something. How about, to the end of the prior > paragraph: > > Implementations of the extension defined in this document MUST support > configuration of TLS usage, as describe in <xref target="RFC8175"/>, > in order to protect configurations where injection attacks are > possible, i.e., when the link between a modem and router is not > otherwise protected. > Thank you, that works for me. I'll clear my DISCUSS, and trust y'all to include it. W > > Lou > > > > > > > > > > > -- I don't think the execution is relevant when it was obviously a bad idea in the first place. This is like putting rabid weasels in your pants, and later expressing regret at having chosen those particular rabid weasels and that pair of pants. ---maf
- [manet] Warren Kumari's Discuss on draft-ietf-man… Warren Kumari via Datatracker
- Re: [manet] Warren Kumari's Discuss on draft-ietf… Lou Berger
- Re: [manet] Warren Kumari's Discuss on draft-ietf… Warren Kumari