Re: [OPSEC] Zaheduzzaman Sarker's No Objection on draft-ietf-opsec-v6-25: (with COMMENT)
Zaheduzzaman Sarker <zaheduzzaman.sarker@ericsson.com> Wed, 26 May 2021 13:46 UTC
Return-Path: <zaheduzzaman.sarker@ericsson.com>
X-Original-To: opsec@ietfa.amsl.com
Delivered-To: opsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 959AF3A2F16; Wed, 26 May 2021 06:46:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.798
X-Spam-Level:
X-Spam-Status: No, score=-2.798 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.698, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XPfkNIKGfKV8; Wed, 26 May 2021 06:46:18 -0700 (PDT)
Received: from EUR02-AM5-obe.outbound.protection.outlook.com (mail-eopbgr00086.outbound.protection.outlook.com [40.107.0.86]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D637B3A2F11; Wed, 26 May 2021 06:46:17 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=dJALiB05b4b5s2DiNMGywtOUvrc2/2VKrSKAkgAg0d+fJ75HpQXnyMDSGJOBMxapusLLUtj83xCWiAZmRD3/K419Jkr2lgzjsVdSnezGRR13HrQ/3GIew7kv/mWuvm9hiHTkb50vPJCFQFHRJzej9SYm8zUWLJAu5XxhRw9GQZFi9iM5k6499oocCAw9NqmYxxLtjoyN0+rqIVyMr6K+WZl1a90Zd1G1SzRwOHw7UEnFoS20VQzDJtElrz3PT01gO69Kq1KyBx2jNf+NXTG5FHs4Ng0oYhaPZt+EnAxWsiugU69a26MxykBckzwSXIytBRcYljBHOBAfiwH8rwjZ0g==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=TLtEhXKbCUaNnuzd0guw3kmCo6zfaEdNp+Lgmtq05Vg=; b=VS+xp8YfolVc4MKWCG4xh9LH8PKiv28NtR/ahph4Vr7CfnhK/RAshoXd5YIjwzJQWXeRPruwcUCb5gQUd3afnHL7oIwgnfGdcGAESHPEKCHdINUVhqpbc2hoG9jfsFb8fuocajdyDl41M8WVckNYFGaOe0yYU9kTkKRmnAFer7quY5Euh5Bsazp2hpa4Wkpf49InNsygMCbCjS+S0cQkGyHrkzdKSTdeocQuJ+lV7njQZ65WSRMvyzcXrt9PoTf7jCmiiesyXbdCPDLpgoc21j3wbyv0LMe5+1qBc2kycOPu0GsrZkY/YlYMvb+eiMnPW4OTnqFKFW7iCnrzUwjRdw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=TLtEhXKbCUaNnuzd0guw3kmCo6zfaEdNp+Lgmtq05Vg=; b=hNMKs85we27a2g93ZRrlxJnVKnuUU9zZa8ETMpZgq9ZhR2AlWNG6Y4zBHu6N5RSCDOrfyoOcP8HNpUznIXmBW3hF+jiCxmEG4X9BA326j1jcKvnmB0Z3Q/3BO6DHHSot6gETLLoFAgXpkNCXxqr7xk7UMCg/4xfwa2QoTBl2dnA=
Received: from HE1PR07MB4187.eurprd07.prod.outlook.com (2603:10a6:7:98::23) by HE1PR07MB4235.eurprd07.prod.outlook.com (2603:10a6:7:95::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4150.11; Wed, 26 May 2021 13:46:09 +0000
Received: from HE1PR07MB4187.eurprd07.prod.outlook.com ([fe80::9009:1473:2b0:160d]) by HE1PR07MB4187.eurprd07.prod.outlook.com ([fe80::9009:1473:2b0:160d%7]) with mapi id 15.20.4173.021; Wed, 26 May 2021 13:46:09 +0000
From: Zaheduzzaman Sarker <zaheduzzaman.sarker@ericsson.com>
To: KK Chittimaneni <kk.chittimaneni@gmail.com>
CC: The IESG <iesg@ietf.org>, "draft-ietf-opsec-v6@ietf.org" <draft-ietf-opsec-v6@ietf.org>, "opsec-chairs@ietf.org" <opsec-chairs@ietf.org>, "opsec@ietf.org" <opsec@ietf.org>, Gyan Mishra <hayabusagsm@gmail.com>
Thread-Topic: Zaheduzzaman Sarker's No Objection on draft-ietf-opsec-v6-25: (with COMMENT)
Thread-Index: AQHXK5mBuIMpbd9cP0a81K+ugeJMx6reg9gAgBexcQA=
Date: Wed, 26 May 2021 13:46:08 +0000
Message-ID: <7855CBBF-A740-4575-AB4B-3B1FC107780E@ericsson.com>
References: <161779162147.18816.9995103488367885739@ietfa.amsl.com> <CA+iP7bU=-GhK-WZL=JoC6coFMWOmt4Nr+L0YZGYmSHbRyhxFCA@mail.gmail.com>
In-Reply-To: <CA+iP7bU=-GhK-WZL=JoC6coFMWOmt4Nr+L0YZGYmSHbRyhxFCA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.49.21050901
authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=ericsson.com;
x-originating-ip: [85.238.211.27]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: c12bfd24-5a9d-493b-f02d-08d9204c9e0d
x-ms-traffictypediagnostic: HE1PR07MB4235:
x-microsoft-antispam-prvs: <HE1PR07MB4235CD0D8A6D4DC525F75A7B9F249@HE1PR07MB4235.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: wIfKAp8lUu7oZzzV+6aHQpbSrWzxxYHRAorms3LIue4V1jJuc9orYs7b+TPrOQaCgYoRQJ+jSYDTHhPdPD+2Y0Jg99jCKcV/VLyQ19WP+U8NgifRob25B4wvQRy1gKtYlT5JEHY6VuJPISGsvviAC9xAYjqg4h5DKKB1Cc5hWRQIENTQFi20ZRHb8K9MsHg3MN3+Qv33Y2WNoZJqUWkMyKC6Hx+VbRikYGPWsbeWYuHlnA1YzNhQ4EDZG3q8+0jyrZn/DYRj3IUY0BNyqgHVXmE2MWLuNqknSrRdpArYJ03GjQZ8iXj3Co+0gcikJvwN1xqD1PC7hV9YQzELMM5+BdhB2B8RwPob/3dSuH6nnqTagffBAC6HpJ+JmsCrY0VsB3ipf3VWN5KwWlEyu9PGdhWZj2h/kc88noLChcoWIkN7ULDmQmwoaZoJ6TO5KUiQ5pZGy+1SeL4VnYfFpXEepDJ1/LJbvk+POW0nWU3CyXBk+Tco0KzwAakYTWwiDxr+k2NS6GI9wSvDxl72kis4cDKagH4engr7M0T/m6FTv4tfotdz/VT2vQc7PBa6r3xjKb6x3ngeokyF9y56ysi+4EG4bde3ylv+wTvkmG7DeCtNSgx9E66TFCBbB2jTTfX4IK8kZcJMXat5guyjn7Vpv6lW4zDTyKCjTcDLKhSlvmPB+g0ZkBJ8U/WKXACqm2hl7LZFRBe5GsXyigauEBYRSaNDlIr08v5X5GOjR7+EF0yRvQ+mLzwd8RuG+VaOGVSmN2GBOwjfw6Klc7+8W4Ocjw==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR07MB4187.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(396003)(136003)(376002)(366004)(39860400002)(346002)(122000001)(478600001)(76116006)(66946007)(38100700002)(4326008)(5660300002)(86362001)(6916009)(54906003)(2616005)(64756008)(66446008)(66556008)(66476007)(2906002)(966005)(6486002)(316002)(44832011)(21615005)(36756003)(71200400001)(8936002)(6506007)(8676002)(26005)(6512007)(186003)(33656002)(83380400001)(166002)(53546011)(45980500001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_7855CBBFA7404575AB4B3B1FC107780Eericssoncom_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR07MB4187.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: c12bfd24-5a9d-493b-f02d-08d9204c9e0d
X-MS-Exchange-CrossTenant-originalarrivaltime: 26 May 2021 13:46:08.9143 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: mUlqooecYjprD4/D+pUcKvWLoYUy1iuruOIQzjOPkMFiVUMgeqMQEk/amR5qivVJBnhAM2LTfdmE6ioUtBLChSgFA9HHdVbLvgPhNbuh9kM3wpHrEW/jUNjntpG7tkl4
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR07MB4235
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsec/TNPNX25vFSl1fhJrRvatWZ0-AsM>
Subject: Re: [OPSEC] Zaheduzzaman Sarker's No Objection on draft-ietf-opsec-v6-25: (with COMMENT)
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsec/>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 26 May 2021 13:46:23 -0000
Hi, Sorry for the late response, I was away due to sickness. Thanks for addressing my comments. However, I still think if section 2.3.4 is not specific to certain generation of 3GPP link/network architecture then it is better to either use possible generic terminologies or include 5G terminologies (as it is out there). BR Zahed On 2021-05-11, 15:57, "KK Chittimaneni" <kk.chittimaneni@gmail.com<mailto:kk.chittimaneni@gmail.com>> wrote: Hello Zahed, Thank you very much for your detailed review. Together with my co-authors, we have uploaded revision -27, which should address all your comments. The diff is at: https://www.ietf.org/rfcdiff?url2=draft-ietf-opsec-v6-27 Regards, KK On Wed, Apr 7, 2021 at 3:33 AM Zaheduzzaman Sarker via Datatracker <noreply@ietf.org<mailto:noreply@ietf.org>> wrote: Zaheduzzaman Sarker has entered the following ballot position for draft-ietf-opsec-v6-25: No Objection When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html for more information about IESG DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-opsec-v6/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- I found this document very informative and I learned quite a lot by reading this document (I must confess I haven't read the long list of referenced documents :-)). I think the collected recommendations in one place will be very helpful. Some comments - * The abstract says - "The recommendations in this document are not applicable to residential user cases". However, later on in section 1.1 it says - "This covers Service Provider (SP), enterprise networks and some knowledgeable-home-user-managed residential network." Furthermore in section 5, it recommends configurations for residential users. May be I am not getting the distinction among residential user cases, managed residential network and residential users correct but I think further clarification is needed on what is written in thee abstract and what is in the rest of the document. * I noted that section 2.3.4 refers to 3GPP 4G terminologies while describing the case. If this section is not supposed to restricted to certain generations of 3GPP technologies then I would recommend to update the section with 5G terminologies as well. * In section 2.6 there is an ask for the network operators to log "of all applications using the network (including user space and kernel space) when available (for example web servers)". How realistic is this? I hardly see the web servers sharing logging files with network operators ( I would be happy to be corrected here ). I am also missing the discussion on -- if not available how much this affects the forensic research in the event of security incident and abnormal behavior.
- [OPSEC] Zaheduzzaman Sarker's No Objection on dra… Zaheduzzaman Sarker via Datatracker
- Re: [OPSEC] Zaheduzzaman Sarker's No Objection on… KK Chittimaneni
- Re: [OPSEC] Zaheduzzaman Sarker's No Objection on… Zaheduzzaman Sarker