Re: [Pearg] Spencer Dawkins' Yes on draft-irtf-pearg-numeric-ids-history-09: (with COMMENT)
Fernando Gont <fgont@si6networks.com> Fri, 17 June 2022 02:37 UTC
Return-Path: <fgont@si6networks.com>
X-Original-To: pearg@ietfa.amsl.com
Delivered-To: pearg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 71883C14F73F; Thu, 16 Jun 2022 19:37:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.775
X-Spam-Level:
X-Spam-Status: No, score=-1.775 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, NICE_REPLY_A=-1.876, SPF_HELO_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, T_SPF_PERMERROR=0.01, URIBL_BLOCKED=0.001, URI_DOTEDU=1.999] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fKzpob0f81N6; Thu, 16 Jun 2022 19:37:27 -0700 (PDT)
Received: from fgont.go6lab.si (fgont.go6lab.si [IPv6:2001:67c:27e4::14]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E9D18C14F719; Thu, 16 Jun 2022 19:37:22 -0700 (PDT)
Received: from [IPV6:2001:67c:27e4:c::1000] (unknown [IPv6:2001:67c:27e4:c::1000]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by fgont.go6lab.si (Postfix) with ESMTPSA id 07F77282DEE; Fri, 17 Jun 2022 02:37:14 +0000 (UTC)
Message-ID: <0fe4965d-2660-ad3a-1826-509176e2bba5@si6networks.com>
Date: Thu, 16 Jun 2022 23:37:11 -0300
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.9.1
Content-Language: en-US
To: Spencer Dawkins <spencerdawkins.ietf@gmail.com>, The IRSG <irsg@irtf.org>
Cc: draft-irtf-pearg-numeric-ids-history@ietf.org, pearg-chairs@ietf.org, pearg@irtf.org, sara@sinodun.com
References: <165541878753.59903.8018667065000800390@ietfa.amsl.com>
From: Fernando Gont <fgont@si6networks.com>
In-Reply-To: <165541878753.59903.8018667065000800390@ietfa.amsl.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/pearg/c_TSJUqYIy7Z5-oJqo-twEldcRg>
Subject: Re: [Pearg] Spencer Dawkins' Yes on draft-irtf-pearg-numeric-ids-history-09: (with COMMENT)
X-BeenThere: pearg@irtf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Privacy Enhancements and Assessment Proposed RG <pearg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/pearg>, <mailto:pearg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pearg/>
List-Post: <mailto:pearg@irtf.org>
List-Help: <mailto:pearg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/pearg>, <mailto:pearg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Jun 2022 02:37:31 -0000
Hi, Spencer, Thanks so much for your comments and input! -- In-line... On 16/6/22 19:33, Spencer Dawkins via Datatracker wrote: [....] > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > At a 10K meter level, I love everything about this document. I remember > probably 60-70 percent of this history, some of which I was reading about > before I started participating in the IETF in 1997, I learned from the parts I > didn't remember and had probably never seen, and there's no way I could have > described all of it as well as you did. > > I wish we had more documents explaining why the IRTF is doing research on > aspects of widely deployed protocols. > > I do have two or three nits about readability and consistency, but I'm already > a Yes, so Do The Right Thing - I can't say "it's ready" any more clearly than > balloting "Yes". > > - Honest question here. In this text from the Introduction, > > “For more than 30 years, a large number of implementations of the TCP/IP > protocol suite have been subject to a variety of attacks, with effects ranging > from Denial of Service (DoS) or data injection, to information leakages that > could be exploited for pervasive monitoring [RFC7258]. The root cause of these > issues has been, in many cases, poor selection of transient numeric > identifiers, usually as a result of insufficient or misleading specifications.” > > Does “TCP/IP protocol suite” mean what you intend it to mean? Well, we used the term as it has been used in classical books such as "TCP/IP Illustrated" (Stevens) or "Internetworking with TCP/IP" (Comer). It has also been used by Bellovin in “Security Problems in the TCP/IP Protocol Suite” (https://www.cs.columbia.edu/~smb/papers/acsac-ipext.pdf) -- but it's also possible that it could mean different things to different people. But we could also probably s/TCP\/IP protocol suite/Internet protocols/ or s/TCP\/IP protocol suite/IETF protocols/ or s/TCP\/IP protocol suite/Internet protocol suite/ I'm fine in all cases :-) > You follow this with a list of examples that (if I understand correctly) > include IPv4, IPv6, “transport protocols”, TCP, and DNS. Just poking at one of > the references, The Introduction of RFC 6056 calls out > > TCP [RFC0793], UDP [RFC0768], SCTP [RFC4960], DCCP > [RFC4340], UDP-lite [RFC3828], and RTP [RFC3550] (provided the RTP > application explicitly signals the RTP and RTCP port numbers with, > e.g., [RFC3605]). > > Perhaps those protocols should be part of what I think of when I hear “TCP/IP > protocol suite”, but they aren’t. > > - I might have suggested “implementations of Internet network-layer and > transport-layer protocols”, but even that doesn’t include DNS, which is on your > list. And a quick peek at Section 4.4 mentions problems with NTP Reference IDs > (REFIDs), which is NOT mentioned in the Introduction, but is described later in > the document, while problems with DNS TxIDs, which is mentioned in the > Introduction, is NOT described in Section 4 (the detailed discussion of DNS in > Section 4 is about predictable port numbers used by DNS implementations). Maybe > the transient numeric identifier problems with those two application-level > protocols could be treated consistently in Section 1 and Section 4? You mean mention all examples in all places/sections? > - In Section 4,the phrase “A number of protocol specifications” is used. Is > that a better way to say what you mean in Section 1 and Section 5? Or is there > a better way to describe the protocols you’re thinking of in the Introduction, > without attempting to list them exhaustively? Please see my proposal above. > - I should also mention that Section 5 also uses the phrase “large number of > implementations of the TCP/ IP protocol suite”. Whatever you do with this > phrase in Section 1, you should probably consider doing in Section 5 as well. Agreed. > > - I also have a point of confusion with the phrase “sample transient numeric > identifiers” in Section 1, and in Section 4. "sample" seems like an adjective > in those usages. I THINK (correct me if I’m wrong) that this phrase is intended > to mean “some transient numeric identifiers that have been found to be > problematic” - because this isn’t a complete list of the problematic > identifiers, right? Exactly! ("English as a second language" might be playing a role here :-) ) Any suggested tweaks here? Thanks! Regards, -- Fernando Gont SI6 Networks e-mail: fgont@si6networks.com PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492
- [Pearg] Spencer Dawkins' Yes on draft-irtf-pearg-… Spencer Dawkins via Datatracker
- Re: [Pearg] Spencer Dawkins' Yes on draft-irtf-pe… Fernando Gont
- Re: [Pearg] Spencer Dawkins' Yes on draft-irtf-pe… Spencer Dawkins at IETF
- Re: [Pearg] Spencer Dawkins' Yes on draft-irtf-pe… Fernando Gont