Re: [OPSAWG] Paul Wouters' Abstain on draft-ietf-opsawg-mud-acceptable-urls-11: (with COMMENT) [Was Re: Your abstain on draft-ietf-opsawg-mud-acceptable-urls]
Mahesh Jethanandani <mjethanandani@gmail.com> Sat, 13 April 2024 17:21 UTC
Return-Path: <mjethanandani@gmail.com>
X-Original-To: opsawg@ietfa.amsl.com
Delivered-To: opsawg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 29A1EC14F5F3; Sat, 13 Apr 2024 10:21:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yrb9zDzV1GTk; Sat, 13 Apr 2024 10:21:57 -0700 (PDT)
Received: from mail-pl1-x62f.google.com (mail-pl1-x62f.google.com [IPv6:2607:f8b0:4864:20::62f]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DC5CFC14F5E2; Sat, 13 Apr 2024 10:21:56 -0700 (PDT)
Received: by mail-pl1-x62f.google.com with SMTP id d9443c01a7336-1e51398cc4eso18617275ad.2; Sat, 13 Apr 2024 10:21:56 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1713028916; x=1713633716; darn=ietf.org; h=references:to:cc:in-reply-to:date:subject:mime-version:message-id :from:from:to:cc:subject:date:message-id:reply-to; bh=mfwX70yeDQMD2WFMsebTuRRQwUk86XjY7+YPGCzLhy8=; b=FfBFEAHSk7/sDh8h7JGJQLVB/ylPVwiYpfG/uCGdyHt/cD+KbGicPiD94omOtuoMJM 45lgA9FN+mejSyKc+mD0LhDCuC2i241t9MJNpAWFcshceJHjtL3hH0phTuGFC3yksKgX majfxpRacMQNq02eFEjq/cLeL+b3vw0SW7TOQFnjLPejiEN77/miObtetxmocNmORlXt nSsTQZjy/cH85Ke0IpiwUFKPaFAhuSL/YzRsUxbCRgex+9tRs8xtCX1BTTjG9un7++ed uyFW9uKbxVz6d2hg2c4tQKATvGu6reh8wNPt9NV0oldXL5kYnbiMEnhfEeik9TgJoA6M 60+w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1713028916; x=1713633716; h=references:to:cc:in-reply-to:date:subject:mime-version:message-id :from:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=mfwX70yeDQMD2WFMsebTuRRQwUk86XjY7+YPGCzLhy8=; b=vC0Rok2Ue+BNll16H9vsal5D3+lmTHrWwd02ew47buey5/JHhypUt3lp7p7oiBqnsi npIn1ksCL5otsqFx6gyegACz0QcOl8DkMk0C+laSIWw/yOf3FAR5kaTob4wBaib0R4fL I/7MzWom/BBn0caAfA5h/w2wxyJ5AgkyExiIisJSs/amdVxb+z8XowJQ6p1MXgpNU1xv KJX3Wke7HzVwyKGBebHZdP5gfk/xfmJ5PPIuMXKVGcx40e/wTNmut5u/dgSiQHi98Uyp pkK3tzCe4Se14BwB7pYpRIXAy+M272XM9f70oaoJ+FYglOt8l0gL9/IMVEscLvVxuouV +hjA==
X-Forwarded-Encrypted: i=1; AJvYcCVs1ctiNn0aBzzISuDqlSZ636kwfgkvZQMzficQ4XXnmvEQ3oX86p+FfYGkDDImAr2cD56WNjv+pL4x2wYml0RpcuAUYXBZDC3NqZIKZy5NcpcshnvE2xZX1hDw3TdpqNFaMot5TGWjoc6tJJ6B7TP+Yr7ahUvyGNKQE3rOZFIf0QD1VGmlKN093RIRSjZcyGls0jRPpBo=
X-Gm-Message-State: AOJu0YwCbIFWerCrgtwPiSz83USFs5u1vkRfDFhHe9rK4Et4fPKuyJ6v 6+69aO7y1mkzztHTqPZiUFoAGCdVmPngECHoWJd4p43Q740aPHZK
X-Google-Smtp-Source: AGHT+IHyORNBYaAXP8aoglY5ghhOz2yObxnG9dkWXT2EttNRsi1V1Umf0lrE5NTB6o2Ihh/WcU6Xhg==
X-Received: by 2002:a17:902:d54a:b0:1e5:a025:12f9 with SMTP id z10-20020a170902d54a00b001e5a02512f9mr7266825plf.28.1713028915818; Sat, 13 Apr 2024 10:21:55 -0700 (PDT)
Received: from smtpclient.apple (c-69-181-169-15.hsd1.ca.comcast.net. [69.181.169.15]) by smtp.gmail.com with ESMTPSA id q16-20020a17090311d000b001e2b6baa838sm4821329plh.122.2024.04.13.10.21.53 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Sat, 13 Apr 2024 10:21:53 -0700 (PDT)
From: Mahesh Jethanandani <mjethanandani@gmail.com>
Message-Id: <4A766E80-E545-4EA1-8803-5CCADDD005E5@gmail.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_9DCBE0F3-744B-4E8D-AFDE-CD194F9EDE78"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3696.120.41.1.8\))
Date: Sat, 13 Apr 2024 10:21:52 -0700
In-Reply-To: <DDF91A0B-D30F-4D70-90B2-96BF98615234@cisco.com>
Cc: Michael Richardson <mcr@sandelman.ca>, The IESG <iesg@ietf.org>, draft-ietf-opsawg-mud-acceptable-urls@ietf.org, opsawg-chairs <opsawg-chairs@ietf.org>, opsawg@ietf.org, Eliot Lear <lear@cisco.com>
To: Paul Wouters <paul@nohats.ca>
References: <DDF91A0B-D30F-4D70-90B2-96BF98615234@cisco.com>
X-Mailer: Apple Mail (2.3696.120.41.1.8)
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsawg/URy3xKDwF0hGWOSMX7KnyEh3jZA>
Subject: Re: [OPSAWG] Paul Wouters' Abstain on draft-ietf-opsawg-mud-acceptable-urls-11: (with COMMENT) [Was Re: Your abstain on draft-ietf-opsawg-mud-acceptable-urls]
X-BeenThere: opsawg@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: OPSA Working Group Mail List <opsawg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsawg>, <mailto:opsawg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsawg/>
List-Post: <mailto:opsawg@ietf.org>
List-Help: <mailto:opsawg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsawg>, <mailto:opsawg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 13 Apr 2024 17:21:59 -0000
[Adding the IESG, the WG back on the thread, and changing the title to the original thread] > On Apr 12, 2024, at 8:32 AM, Eliot Lear <lear@cisco.com> wrote: > > Hi Paul, > > I’d like to step through you abstain with you. I think there are some misunderstandings about what is being proposed by this work. At a top level, I hope you have had time to review Christian’s later comments as to how Michael addressed his concerns. I also refer you to my and Michael’s response to Deb. > > Let’s begin with this: >> A device has a firmware version and a MUD file that belongs to that version. >> It seems this draft says that the MUD file can be upgraded to firmware versions >> it was not intended for. It seems the simple fix is to not do that. > > I don’t quite think that is what the draft is intended to say. What it’s trying to say is that there are some corner cases that have to be addressed, and that things are a bit nuanced. So for instance… > > Many firmware upgrades won’t involve MUD file changes because they’re just bug fixes. > Sometimes new services can added such that there is no harm in the MUD file expanding access. A good example might be if a service URL is being added for firmware new versions. > Sometimes such an expansion is unsafe, and so a separate MUD file is needed. The MUD manager needs to take note of that. Sections 5.1 and 5.2 work through that aspect. > >> Updating a MUD file to plug a security hole seems the wrong mechanism. Instead >> of updating the MUD file, the firmware should be updated (and that firmware >> should come with a new MUD file covering that firmware version) > > > That’s not really what this draft is about. That’s more a core aspect of RFC 8520. Of course you want the manufacturer to update firmware. But you might also take a secondary service of MUD files from a security service provider that further restricts access for particular devices, especially when the manufacturer doesn’t update the firmware (this will happen- it’s probably happened to your television, as it has mine!). > >> So I am confused about the mechanim of the firmware handing a URL to the >> MUD manager, who then picks up the MUD file from the manufacturor. In a way, >> one could see this as a firmware that has a bit of external firmware hosted >> elsewhere. And these two can get out of sync. To me that just seems like >> broken firmware and building a protocol mechanism to resolve this seems >> the wrong way to fix this. > > I’m not sure I understand your concern. Could you give an example? > > Thanks, > > Eliot Mahesh Jethanandani mjethanandani@gmail.com
- Re: [OPSAWG] Paul Wouters' Abstain on draft-ietf-… Mahesh Jethanandani