Re: [Pce] Roman Danyliw's No Objection on draft-ietf-pce-pcep-flowspec-10: (with COMMENT)
Roman Danyliw <rdd@cert.org> Wed, 26 August 2020 21:15 UTC
Return-Path: <rdd@cert.org>
X-Original-To: pce@ietfa.amsl.com
Delivered-To: pce@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B41903A08CC; Wed, 26 Aug 2020 14:15:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cert.org
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2icqQW7JShqb; Wed, 26 Aug 2020 14:15:24 -0700 (PDT)
Received: from taper.sei.cmu.edu (taper.sei.cmu.edu [147.72.252.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7ACA83A0FA6; Wed, 26 Aug 2020 14:13:51 -0700 (PDT)
Received: from korb.sei.cmu.edu (korb.sei.cmu.edu [10.64.21.30]) by taper.sei.cmu.edu (8.14.7/8.14.7) with ESMTP id 07QLDnpZ024708; Wed, 26 Aug 2020 17:13:50 -0400
DKIM-Filter: OpenDKIM Filter v2.11.0 taper.sei.cmu.edu 07QLDnpZ024708
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cert.org; s=yc2bmwvrj62m; t=1598476430; bh=ASFIlC9sEj7lyUO2DQcSlD0vkFqzJeIq5LY4HSYRntA=; h=From:To:CC:Subject:Date:References:In-Reply-To:From; b=B7XSfXp+Ges0C8TIi+CoqeaUYZ32O4EL1EP5d25XBlEKI9KENHZ0T1KFVLrpa8nLI CNky46MldkbyCnBPQSWtMfXR1ctqqBXhKQsSy2wbIrDNzulQfCdf/ggvGXzrI5xDF3 QajsqsTORwMdU/5zrGJnvdYKndTi8aBtYEDFDt44=
Received: from MORRIS.ad.sei.cmu.edu (morris.ad.sei.cmu.edu [147.72.252.46]) by korb.sei.cmu.edu (8.14.7/8.14.7) with ESMTP id 07QLDl8a029144; Wed, 26 Aug 2020 17:13:47 -0400
Received: from MORRIS.ad.sei.cmu.edu (147.72.252.46) by MORRIS.ad.sei.cmu.edu (147.72.252.46) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.1979.3; Wed, 26 Aug 2020 17:13:46 -0400
Received: from MORRIS.ad.sei.cmu.edu ([fe80::555b:9498:552e:d1bb]) by MORRIS.ad.sei.cmu.edu ([fe80::555b:9498:552e:d1bb%13]) with mapi id 15.01.1979.003; Wed, 26 Aug 2020 17:13:46 -0400
From: Roman Danyliw <rdd@cert.org>
To: "adrian@olddog.co.uk" <adrian@olddog.co.uk>, 'The IESG' <iesg@ietf.org>
CC: "draft-ietf-pce-pcep-flowspec@ietf.org" <draft-ietf-pce-pcep-flowspec@ietf.org>, "pce-chairs@ietf.org" <pce-chairs@ietf.org>, "pce@ietf.org" <pce@ietf.org>, 'Julien Meuric' <julien.meuric@orange.com>
Thread-Topic: Roman Danyliw's No Objection on draft-ietf-pce-pcep-flowspec-10: (with COMMENT)
Thread-Index: AQHWe+M6jB2HUkRLQ0Wy91x/skwkRqlLJXCA//+9TfA=
Date: Wed, 26 Aug 2020 21:13:45 +0000
Message-ID: <97fc081252ed4796ac26a51bcc5981e5@cert.org>
References: <159847187489.17269.2128556004841645905@ietfa.amsl.com> <029301d67bed$150568f0$3f103ad0$@olddog.co.uk>
In-Reply-To: <029301d67bed$150568f0$3f103ad0$@olddog.co.uk>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.64.203.1]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/pce/oZiaaDxulHL4fVCE28ItsSMX05Q>
Subject: Re: [Pce] Roman Danyliw's No Objection on draft-ietf-pce-pcep-flowspec-10: (with COMMENT)
X-BeenThere: pce@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Path Computation Element <pce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pce>, <mailto:pce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pce/>
List-Post: <mailto:pce@ietf.org>
List-Help: <mailto:pce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pce>, <mailto:pce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 26 Aug 2020 21:15:27 -0000
Hi Adrian! > -----Original Message----- > From: Adrian Farrel <adrian@olddog.co.uk> > Sent: Wednesday, August 26, 2020 5:09 PM > To: Roman Danyliw <rdd@cert.org>; 'The IESG' <iesg@ietf.org> > Cc: draft-ietf-pce-pcep-flowspec@ietf.org; pce-chairs@ietf.org; pce@ietf.org; > 'Julien Meuric' <julien.meuric@orange.com> > Subject: RE: Roman Danyliw's No Objection on draft-ietf-pce-pcep-flowspec-10: > (with COMMENT) > > Hi Roman, > > > COMMENT: > > > > ** Section 12. To refine what Ben Kaduk noted about the applicability > > of [RFC6952], Section 2.5 seems to apply for me. > > Yes, that it the relevant section, and I've added an explicit section pointer. > > > ** Section 12. Per “Therefore, implementations or deployments > > concerned with protecting privacy MUST apply the mechanisms described > > in the documents referenced above.”, it might be helpful to explicitly > > call out the specific guidance to follow. I believe that it’s to use > > either IPSec per Section 10.4 – > > 6 of RFC5440 or TLS per RFC8523 to provide transport security > > properties. The legacy references to TCP-AO and TCP MD5 in those > documents don’t help here. > > You're right about the advice and we can make it clear. > MD5 obviously doesn't buy you much privacy and we can say that, too. > Understanding that TCP-AO is "not widely implemented" if it is truly legacy, I > wish someone would toggle the status to Historic or write some guidance on its > non-use. Right. I concur on the implementation status of TCP-AO. I was a too flip with the use of the word legacy. To re-state my point, TCP-AO and MD5 don't get us anything for this privacy issue. Let's just point to IPSec and TLS guidance (from the references already cited). > > ** Section 12. Per “Although this is not directly a security issue > > per se, the confusion and unexpected forwarding behavior may be > > engineered or exploited by an attacker. Therefore, implementers and > > operators SHOULD pay careful attention to the Manageability > > Considerations described in Section 13.”, I completely agree. I would > > say it a bit more strongly that this complexity could be a security > > issue. I’m envisioning a situation where the complex forwarding > > behaviors might create gaps in the monitoring and inspection of particular > traffic or provide a path that avoids expected mitigations. > > Right. So, to be clear, the threat here is "user error caused by confusion > resulting from complexity." Yes, I can clarify that. Exactly, and my prose was just showing an example of if circumstance where an attacker might exploit that. Roman > Thanks again, > Best, > Adrian
- [Pce] Roman Danyliw's No Objection on draft-ietf-… Roman Danyliw via Datatracker
- Re: [Pce] Roman Danyliw's No Objection on draft-i… Adrian Farrel
- Re: [Pce] Roman Danyliw's No Objection on draft-i… Roman Danyliw
- Re: [Pce] Roman Danyliw's No Objection on draft-i… Adrian Farrel