IETF Logo Mail Archive

Re: [nfsv4] Secdir last call review of draft-ietf-nfsv4-rpcrdma-cm-pvt-data-06

Yaron Sheffer <yaronf.ietf@gmail.com> Thu, 30 January 2020 16:28 UTC

Return-Path: <yaronf.ietf@gmail.com>
X-Original-To: nfsv4@ietfa.amsl.com
Delivered-To: nfsv4@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7830612016E; Thu, 30 Jan 2020 08:28:51 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.877
X-Spam-Level:
X-Spam-Status: No, score=-0.877 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, MALFORMED_FREEMAIL=1.122, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id E8tbZ1W21vd1; Thu, 30 Jan 2020 08:28:50 -0800 (PST)
Received: from mail-wr1-x444.google.com (mail-wr1-x444.google.com [IPv6:2a00:1450:4864:20::444]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 21A8212018D; Thu, 30 Jan 2020 08:28:50 -0800 (PST)
Received: by mail-wr1-x444.google.com with SMTP id a6so4786783wrx.12; Thu, 30 Jan 2020 08:28:50 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=user-agent:date:subject:from:to:cc:message-id:thread-topic :references:in-reply-to:mime-version:content-transfer-encoding; bh=V879YMpEhCVpGtsHHJoWXyQaBEut19OgULvnWa4Rs9M=; b=aOGeU4l9pt6zKTiWMSfpY7zyw80sC/oLaiZKIZbza/7wJXvmDZHpLT4dStLP9p1+Wu pM37VA6Qy94NqkZU4gYqnPZ64QZYVDv9BKY3uojpMZuVNCXT6sCAScHQZtTTezC91owk J0LNuFzIAM2LuijbOT7V6B7+E1cod6c4+FwvKQsu1QQbwxDBWyelxHX9we/9L/lCR/dC 9S3ZenNLMKnpZBvkW9kwpJn6FkEIUWQaLCrxcGGMF+tP8dAtzjOU2xQJKWnx1zvN+wHO OohzJaywX7bwruwmSSZdsmXSBWOu/wVj5S67xWvAsCnYbfSa9CaWsBMHB8DYzRl86I20 +EDQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:user-agent:date:subject:from:to:cc:message-id :thread-topic:references:in-reply-to:mime-version :content-transfer-encoding; bh=V879YMpEhCVpGtsHHJoWXyQaBEut19OgULvnWa4Rs9M=; b=LeyWjoq1equrKRExwnHHKgEjaw1Vs948/LWVYYSof3zRBu3KSxp0jvt0/PB8S2ek10 TeLcJoVYnfSoRX0MjRIzlcz9uxEfF+jK+QmaVBPsLQFmQJFTiusq6wX/f49CRLEh6jye vOA7rQ44Bl5QVhe3XK30H1Anjg7LQW61HwYXA/geWl5yOKXnzHfVWL1LObYSKUMN/ISB fApiEENJ0iPgwrPp3Gwc09xSbR1AeEcPWAFX8lhLJEqI3XK18f9vs5YjBZnkNk2InZEl abf8D4qx7DT0VW/ZbdH3DPIdWO8OLFE6n/l9wd9P1fvIKHKjyDSIN62SOGLmFjSwQGZV Nlyw==
X-Gm-Message-State: APjAAAWij5ZFUQ26cFQlhvaxHTS+69pp2Fi5EEDGzUW6AL9x7Y0UG6rb g5DoSVL3hN9el3sYWqGDy5I=
X-Google-Smtp-Source: APXvYqzrQ/pxG0sJ/P+z83DsVrPXSQh0F9smbT93x6r9VhTCI5eqMpfNZlH+WizyXuFVAI25WlkVdA==
X-Received: by 2002:adf:ea0f:: with SMTP id q15mr6627523wrm.324.1580401728604; Thu, 30 Jan 2020 08:28:48 -0800 (PST)
Received: from [172.28.128.167] (pub-corp-42-8.intuit.com. [91.102.42.8]) by smtp.gmail.com with ESMTPSA id q1sm2496695wrw.5.2020.01.30.08.28.46 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 30 Jan 2020 08:28:47 -0800 (PST)
User-Agent: Microsoft-MacOutlook/10.21.0.200113
Date: Thu, 30 Jan 2020 18:28:45 +0200
From: Yaron Sheffer <yaronf.ietf@gmail.com>
To: Chuck Lever <chuck.lever@oracle.com>
CC: secdir@ietf.org, last-call@ietf.org, nfsv4@ietf.org, draft-ietf-nfsv4-rpcrdma-cm-pvt-data.all@ietf.org
Message-ID: <335110AE-F983-4151-8CEB-6C06586176BD@gmail.com>
Thread-Topic: [nfsv4] Secdir last call review of draft-ietf-nfsv4-rpcrdma-cm-pvt-data-06
References: <158007038921.30641.13334124837519126164@ietfa.amsl.com> <80F557DD-BD17-4119-98B9-614B7A9FDDFB@oracle.com> <85F5B476-8720-488B-9262-CBA9B322BFD3@gmail.com> <DA051FCB-F042-46B8-95C3-19E764023A48@oracle.com>
In-Reply-To: <DA051FCB-F042-46B8-95C3-19E764023A48@oracle.com>
Mime-version: 1.0
Content-type: text/plain; charset="UTF-8"
Content-transfer-encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/nfsv4/ItekgzSZVz1PeNdUvGurS3_Bs7Q>
Subject: Re: [nfsv4] Secdir last call review of draft-ietf-nfsv4-rpcrdma-cm-pvt-data-06
X-BeenThere: nfsv4@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: NFSv4 Working Group <nfsv4.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/nfsv4/>
List-Post: <mailto:nfsv4@ietf.org>
List-Help: <mailto:nfsv4-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 30 Jan 2020 16:28:51 -0000

Looks good. Thank you very much!

	Yaron

On 1/30/20, 17:10, "Chuck Lever" <chuck.lever@oracle.com> wrote:

    Hello Yaron-
    
    The Security Considerations section now reads as follows:
    
    6.  Security Considerations
    
       The reader is directed to the Security Considerations section of
       [RFC8166] for background and further discussion.
    
       The RPC-over-RDMA version 1 protocol framework depends on the
       semantics of the Reliable Connected (RC) queue pair (QP) type, as
       defined in Section 9.7.7 of [IBA].  The integrity of CM Private Data
       and the authenticity of its source are ensured by the exclusive use
       of RC queue pairs.  Any attempt to interfere with or hijack data in
       transit on an RC connection results in the RDMA provider terminating
       the connection.
    
       Additional analysis of RDMA transport security appears in the
       Security Considerations section of [RFC5042].  That document
       recommends IPsec as the default transport layer security solution.
       When deployed with iWARP, IPsec establishes a protected channel
       before any iWARP operations are exchanged, thus it protects the
       exchange of Private Data that occurs as each QP is established.
       However, IPsec is not available for InfiniBand or RoCE deployments.
       Those fabrics rely on physical security and cyclic redundancy checks
       to protect network traffic.
    
       Improperly setting one of the fields in a version 1 Private Message
       can result in an increased risk of disconnection (i.e., self-imposed
       Denial of Service).  There is no additional risk of exposing upper-
       layer payloads after exchanging the Private Message format defined in
       the current document.
    
       In addition to describing the structure of a new format version, any
       document that extends the Private Data format described in the
       current document must discuss security considerations of new data
       items exchanged between connection peers.
    
    
    --
    Chuck Lever

v2.23.0 | Report a Bug | By Email