Re: [manet] AD review of draft-ietf-manet-nhdp-optimization
"Dearlove, Christopher (UK)" <chris.dearlove@baesystems.com> Tue, 21 October 2014 09:45 UTC
Return-Path: <chris.dearlove@baesystems.com>
X-Original-To: manet@ietfa.amsl.com
Delivered-To: manet@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5A7381A01F0 for <manet@ietfa.amsl.com>; Tue, 21 Oct 2014 02:45:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.79
X-Spam-Level:
X-Spam-Status: No, score=0.79 tagged_above=-999 required=5 tests=[BAYES_50=0.8, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Om0BDkNmOGOr for <manet@ietfa.amsl.com>; Tue, 21 Oct 2014 02:45:42 -0700 (PDT)
Received: from ukmta4.baesystems.com (ukmta4.baesystems.com [20.133.40.56]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0DD791A00B2 for <manet@ietf.org>; Tue, 21 Oct 2014 02:42:36 -0700 (PDT)
X-IronPort-AV: E=Sophos;i="5.04,761,1406588400"; d="scan'208";a="1591768"
Received: from unknown (HELO baemasodc005.greenlnk.net) ([10.108.52.29]) by Baemasodc002ir.sharelnk.net with ESMTP; 21 Oct 2014 10:42:36 +0100
X-IronPort-AV: E=Sophos;i="5.04,761,1406588400"; d="scan'208";a="77595979"
Received: from glkxh0002v.greenlnk.net ([10.109.2.33]) by baemasodc005.greenlnk.net with ESMTP; 21 Oct 2014 10:37:34 +0100
Received: from GLKXM0002V.GREENLNK.net ([169.254.5.125]) by GLKXH0002V.GREENLNK.net ([10.109.2.33]) with mapi id 14.03.0174.001; Tue, 21 Oct 2014 10:37:34 +0100
From: "Dearlove, Christopher (UK)" <chris.dearlove@baesystems.com>
To: Thomas Clausen <thomas@thomasclausen.org>, Adrian Farrel <adrian@olddog.co.uk>
Thread-Topic: [manet] AD review of draft-ietf-manet-nhdp-optimization
Thread-Index: Ac/sWYGyCeDzI9qNSQG+4QZ1jVAWCP//8zMA//6CzhA=
Date: Tue, 21 Oct 2014 09:37:34 +0000
Message-ID: <B31EEDDDB8ED7E4A93FDF12A4EECD30D40D66946@GLKXM0002V.GREENLNK.net>
References: <00ae01cfec59$8ab50f80$a01f2e80$@olddog.co.uk> <F0043C0C-4054-4064-8E11-3D9BB517EE26@thomasclausen.org>
In-Reply-To: <F0043C0C-4054-4064-8E11-3D9BB517EE26@thomasclausen.org>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.109.62.6]
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64
Archived-At: http://mailarchive.ietf.org/arch/msg/manet/q9DVTuXcthT-0PkRRLKz_Z93uC0
Cc: "draft-ietf-manet-nhdp-optimization.all@tools.ietf.org" <draft-ietf-manet-nhdp-optimization.all@tools.ietf.org>, "manet@ietf.org" <manet@ietf.org>
Subject: Re: [manet] AD review of draft-ietf-manet-nhdp-optimization
X-BeenThere: manet@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Mobile Ad-hoc Networks <manet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/manet>, <mailto:manet-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/manet/>
List-Post: <mailto:manet@ietf.org>
List-Help: <mailto:manet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/manet>, <mailto:manet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Oct 2014 09:45:45 -0000
I think Adrian's comment makes the current text As such, this protocol introduces no new security considerations to an implementation of [RFC6130] or of any other protocol that uses it, such as [RFC7181]. Not quite 100% right, as that is a consideration, albeit as Thomas says not a very major one. To be more precise I might change "security considerations" to "vulnerabilities" and then could add something like: "It may sometimes provide a small improvement in availability against attacks such as short bursts of deliberate interference." (Wording just a suggestion.) But I could live with it unchanged. Especially if any change caused a delay. -- Christopher Dearlove Senior Principal Engineer, Information Assurance Group Communications, Networks and Image Analysis Capability BAE Systems Advanced Technology Centre West Hanningfield Road, Great Baddow, Chelmsford, CM2 8HN, UK Tel: +44 1245 242194 | Fax: +44 1245 242124 chris.dearlove@baesystems.com | http://www.baesystems.com BAE Systems (Operations) Limited Registered Office: Warwick House, PO Box 87, Farnborough Aerospace Centre, Farnborough, Hants, GU14 6YU, UK Registered in England & Wales No: 1996687 -----Original Message----- From: manet [mailto:manet-bounces@ietf.org] On Behalf Of Thomas Clausen Sent: 20 October 2014 12:47 To: Adrian Farrel Cc: draft-ietf-manet-nhdp-optimization.all@tools.ietf.org; manet@ietf.org Subject: Re: [manet] AD review of draft-ietf-manet-nhdp-optimization ----------------------! WARNING ! ---------------------- This message originates from outside our organisation, either from an external partner or from the internet. Consider carefully whether you should click on any links, open any attachments or reply. Follow the 'Report Suspicious Emails' link on IT matters for instructions on reporting suspicious email messages. -------------------------------------------------------- Dear AD, Thank you for having processed this document. With regards to security, I think that the operative word in what you observe is “slight” ;) AFAIK, Chris is currently off the grid for a bit, but he should be back in a few days. My personal point of view, which made me not suggest text to this effect, was, that while it is true that it offers a bit more resilience, that in and by itself was "not enough” to be a security property that might affect the use (or not) of this extension. I can swing either way on this, though. Glad that you are sending this document forward while we think about it. Respectfully, Thomas > On Oct 20, 2014, at 13:32, Adrian Farrel <adrian@olddog.co.uk> wrote: > > Authors, > > Thanks for this document. I have done my AD review and have nothing to > add except to note that your work probably makes a slight security > improvement by making the 2-hop neighbor relations more resilient to > short-term quality attacks (such as radio interference) on links. You > could add that to the Security Considerations section, but there is no > need to hold up the document while you think about that. > > I will start the IETF last call. > > Adrian > > _______________________________________________ > manet mailing list > manet@ietf.org > https://www.ietf.org/mailman/listinfo/manet _______________________________________________ manet mailing list manet@ietf.org https://www.ietf.org/mailman/listinfo/manet ******************************************************************** This email and any attachments are confidential to the intended recipient and may also be privileged. If you are not the intended recipient please delete it from your system and notify the sender. You should not copy it or use it for any purpose nor disclose or distribute its contents to any other person. ********************************************************************
- [manet] AD review of draft-ietf-manet-nhdp-optimi… Adrian Farrel
- Re: [manet] AD review of draft-ietf-manet-nhdp-op… Thomas Clausen
- Re: [manet] AD review of draft-ietf-manet-nhdp-op… Dearlove, Christopher (UK)