IETF Logo Mail Archive

Re: [pcp] Implementation Analysis: strong preference for PCP-specific approach

Margaret Wasserman <margaretw42@gmail.com> Thu, 20 September 2012 10:31 UTC

Return-Path: <margaretw42@gmail.com>
X-Original-To: pcp@ietfa.amsl.com
Delivered-To: pcp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 92EE721F84FC for <pcp@ietfa.amsl.com>; Thu, 20 Sep 2012 03:31:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.599
X-Spam-Level:
X-Spam-Status: No, score=-3.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dF9va-3P5otD for <pcp@ietfa.amsl.com>; Thu, 20 Sep 2012 03:31:35 -0700 (PDT)
Received: from mail-qc0-f172.google.com (mail-qc0-f172.google.com [209.85.216.172]) by ietfa.amsl.com (Postfix) with ESMTP id 0888321F84A7 for <pcp@ietf.org>; Thu, 20 Sep 2012 03:31:34 -0700 (PDT)
Received: by qcac10 with SMTP id c10so1822101qca.31 for <pcp@ietf.org>; Thu, 20 Sep 2012 03:31:34 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=subject:mime-version:content-type:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to:x-mailer; bh=UHQ3zvScfEnNAlxxVBAP78uPywOxa7VExZwF/ZQznd0=; b=VjNwbSCqkvXXBuMxTZRu62LBBgnFCv5HgYac+r8sNjtQ9gXBl+tPaaRmuZHZJtmI5o nbkhrohekG3aCdT5HfSTH37eYUFlX4XIrkz6gr5pnp2Kj1kPrbYwqsxnBYTny/krMhAb BrdA32aHoSR6Cns95av58aj6TO7XwZaqCgX173QOZM/3jf9TpvBunqjRNYewrSMuZiy7 FNDGLyF0xT8hFQiE+UjG/SiPqmvcpziyhTeX2G7ah2HQ0m+rDotyuAsYWhf6v+aRbTCV Lwll4OYDVXsOhoIdI5Nnrr9LLpHaUnBd/4XDohCaY+6GgfrxQVmDep+V6Oyz2umBikFg GUGA==
Received: by 10.224.59.129 with SMTP id l1mr3428574qah.97.1348137094468; Thu, 20 Sep 2012 03:31:34 -0700 (PDT)
Received: from lilac-too.home (pool-71-184-79-25.bstnma.fios.verizon.net. [71.184.79.25]) by mx.google.com with ESMTPS id y18sm7666886qaa.15.2012.09.20.03.31.29 (version=SSLv3 cipher=OTHER); Thu, 20 Sep 2012 03:31:31 -0700 (PDT)
Mime-Version: 1.0 (Apple Message framework v1084)
Content-Type: text/plain; charset="us-ascii"
From: Margaret Wasserman <margaretw42@gmail.com>
In-Reply-To: <97AF094F-ABD8-4B50-80B7-30D8E2F34567@yegin.org>
Date: Thu, 20 Sep 2012 06:31:27 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <0036D504-A478-483D-9EF0-D58CDAAF5BEE@gmail.com>
References: <tslipbdzzwy.fsf@mit.edu> <74FC8E41-02D8-4BFC-A15F-035FA328DDC1@yegin.org> <70154AB6-F7B5-47B0-B721-811EA5DF9926@lilacglade.org> <97AF094F-ABD8-4B50-80B7-30D8E2F34567@yegin.org>
To: Alper Yegin <alper.yegin@yegin.org>
X-Mailer: Apple Mail (2.1084)
Cc: pcp@ietf.org
Subject: Re: [pcp] Implementation Analysis: strong preference for PCP-specific approach
X-BeenThere: pcp@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: PCP wg discussion list <pcp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pcp>, <mailto:pcp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/pcp>
List-Post: <mailto:pcp@ietf.org>
List-Help: <mailto:pcp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pcp>, <mailto:pcp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 20 Sep 2012 10:31:35 -0000

Hi Alper,

On Sep 20, 2012, at 4:45 AM, Alper Yegin wrote:
> The major missing piece is the support for EAP re-authentication. It's totally omitted.

See my other message about that.
> 
> Security considerations section is too light on content. Please see PANA's. We need to see a thorough analysis to conclude that the design is complete. For example, there's a mention of DoS resilience, but it's not sufficient. Please refer back to PANA to see how DoS resilience is achieved with EAP lower-layer.
> 
> Also, I don't see the message validity checks (again, see PANA). It's not possible to get a standard state machine w/o that (either in a dedicated section like in RFC 5191, or captured in a distributed way in the document).

Thanks for this feedback.  I will take it into account, as appropriate, depending on how we decide to go forward tomorrow.

Margaret

v2.23.0 | Report a Bug | By Email