[Pearg] Ten years after Snowden (2013 - 2023), is IETF keeping its promises?

John Mattsson <john.mattsson@ericsson.com> Tue, 03 January 2023 10:27 UTC

Return-Path: <john.mattsson@ericsson.com>
X-Original-To: pearg@ietfa.amsl.com
Delivered-To: pearg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E231CC1516ED; Tue, 3 Jan 2023 02:27:45 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2ies6ZeSw-4b; Tue, 3 Jan 2023 02:27:41 -0800 (PST)
Received: from EUR05-VI1-obe.outbound.protection.outlook.com (mail-vi1eur05on2045.outbound.protection.outlook.com [40.107.21.45]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1C19FC14F741; Tue, 3 Jan 2023 02:27:41 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=AMKRvrd2XJsROa+V505omsQ6HXqYjOw1mByWJMz1oQsrVOpLGPV7u95bLs5/si9XulPkgri6RXqT9y7UYHTdx/zKTf77yzMmSksuDP4pAKhnAklSZIVpZN9n7XFaMyDLvP4FLIHWAUvqS1sdv9fbK1Q6hRf0aOsofhWW6OQOEZJMer5TiQpEdoivkZakRbNyLqXCryiCMudF+vuTS1B2A8gI3GFhI/VjDclz+69aeMlRpHWb/Iojv0Xldw/kxbaMHRQVjBpwbLNj8G+AbZEq0r/PQeqWf4TlfsEuxhDMeo8jweKHNAzbIFnFC2AuiCBE9/Ivb0CJA+/Q32ZR4N7Nwg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=so5YmQvEiQsAqtmcnO7IrAQgOYoDFABVlF9batw7KQo=; b=nLhEygy/cCYsDPkfPiOzjzKXa33GzDGwpmWDlKJ4El2G4xWt59b/QmY7OQhMKhtIKgNx1nPaGJSUOEp2A1NfsbOZ4bs/zufbvPHUgYZZPtmLorshMuEQ8q4FDr0ndAxmCjUUTYOGrYsYi5jZINmQ6itQouc4VHPEAYZgLHb45+LGAkFQCRmmVIA5DR00dqGCopBMrjhIFYaAlnj1UJ2ORYYA6f6fpDpNQOwX/PvSA8CWJeBMXbZTnmFozFoGPhap+FZTSmgk52YZMh/IaXOU5ciqB9XNYn3Drf3CcPbXXzDf8ziFOOqwt2NpjI+Tse+46uQokM2l1caNBaenktAbaQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=so5YmQvEiQsAqtmcnO7IrAQgOYoDFABVlF9batw7KQo=; b=R8opEemjCcR28ND52xIlXq5AW+woFjcn7KT2qeO/193UpD4IZ+hg9uAj9Y4Rq/A6Hv9XWcHPIRr3wcemsHTlh0DM9VXGlHyM8ps0AxDbj53QD7OUObd1qdc55O773vMzULL+zRjzrpCuw6gucKGxPrpC78UfZHB4z03XZjzJrxE=
Received: from HE1PR0701MB3050.eurprd07.prod.outlook.com (2603:10a6:3:4b::8) by AM7PR07MB6229.eurprd07.prod.outlook.com (2603:10a6:20b:138::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5944.19; Tue, 3 Jan 2023 10:27:37 +0000
Received: from HE1PR0701MB3050.eurprd07.prod.outlook.com ([fe80::fc77:42d2:1bc6:ec49]) by HE1PR0701MB3050.eurprd07.prod.outlook.com ([fe80::fc77:42d2:1bc6:ec49%12]) with mapi id 15.20.5944.019; Tue, 3 Jan 2023 10:27:37 +0000
From: John Mattsson <john.mattsson@ericsson.com>
To: "ietf@ietf.org" <ietf@ietf.org>, "hrpc@irtf.org" <hrpc@irtf.org>, "pearg@irtf.org" <pearg@irtf.org>, saag <saag@ietf.org>
Thread-Topic: Ten years after Snowden (2013 - 2023), is IETF keeping its promises?
Thread-Index: AQHZH1ufkLvtCC06XE6xjs5DjZimWg==
Date: Tue, 03 Jan 2023 10:27:37 +0000
Message-ID: <HE1PR0701MB305098F652DBC34E3C40810B89F49@HE1PR0701MB3050.eurprd07.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: HE1PR0701MB3050:EE_|AM7PR07MB6229:EE_
x-ms-office365-filtering-correlation-id: 08fc3cb3-f8a3-4781-4338-08daed7522a4
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: maB9pUJxJYSMX5tx7ADHs4pkg+qko6CGYRYmmGIDLJtEviMHP47y3Th9rYImUdcWq1Fo02Tt7TZBP1SVO/oZH5CSOeJ9NQEia2dckmKp9s/mhxxE+8QZ2cLNh+GZxt3hg+fi0bFKPSmENlnSse0v3Dph6ceqilgYZ6P+mYsmWjJ2NUcxV73GXaMUNdEckSeZFb7V+JOnpy6LVaCZScyGZs52B3YY6cFf1FucDNCvl/MzMJXNy2W81g7Pe+Um4hFET32yMmeFebm/vigvku29w5ZGz246q1651LmDuxgxAmJv0VCSn5BrcKkE93Z4XIcw0v78qLPan2GaSTXTKLp96wop0rwoJXaJ0XMgVuBTIo1ynADZeeHYzbOYVymRWalSqgjTjn97TKtQqnVx0U34yMaqMWl0SQRwJINq1F60Qhldiy2vD2SwOVHgLXGEolvVhGieZ9Z76s0oB+yE3cQx/eYQyycB7cRHizU0/I6o3WiGRq5eqzKAGdqUXL5LzrEzqYNzHjSWu6DqwdpJC/9IOH/59RAraPsa5btO8k/SNwIeIkgP1eHRmvICsLOOEgBKCPzMPSTaHl+epAWrGk4UxwQIoIaihW/GFsUsOaQu/gTH363JwEyMTOVLk6eDWcq7fhgFUrcYxFZYPaLLNJt+vzutJktYXiUGX2W5Y+zxVEu4wPBOkmtFnFdOS5TbCByXOReesiX/ST1dLqIHSLfIZipQgxGsl/jG+2ZWMpO72M2wEp+dERlCxxD7G76dYEwKOXMLgy1CSvQQbObcbhwrGg==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR0701MB3050.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(4636009)(39860400002)(376002)(346002)(396003)(136003)(366004)(451199015)(44832011)(66899015)(52536014)(5660300002)(91956017)(76116006)(316002)(2906002)(41300700001)(8676002)(66556008)(66476007)(66446008)(64756008)(8936002)(66946007)(71200400001)(110136005)(478600001)(6506007)(7696005)(26005)(33656002)(186003)(9686003)(66574015)(83380400001)(82960400001)(55016003)(86362001)(122000001)(38100700002)(38070700005)(22166006); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_HE1PR0701MB305098F652DBC34E3C40810B89F49HE1PR0701MB3050_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR0701MB3050.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 08fc3cb3-f8a3-4781-4338-08daed7522a4
X-MS-Exchange-CrossTenant-originalarrivaltime: 03 Jan 2023 10:27:37.4024 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: hROZ6MdWaVs7N5mEXIUlW59rxhwQzyfjHKCj+6AC/jK5uh3OGCQlL0eh2Sbw7sbxSKUKXfEO5/+DQkR+uVqwxsdGVX+GpCV+DHmr0NBeXbo=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM7PR07MB6229
Archived-At: <https://mailarchive.ietf.org/arch/msg/pearg/nFXsPWNk4P4ZhmnPX6sXWWw11Ok>
Subject: [Pearg] Ten years after Snowden (2013 - 2023), is IETF keeping its promises?
X-BeenThere: pearg@irtf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Privacy Enhancements and Assessment Proposed RG <pearg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/pearg>, <mailto:pearg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pearg/>
List-Post: <mailto:pearg@irtf.org>
List-Help: <mailto:pearg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/pearg>, <mailto:pearg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Tue, 03 Jan 2023 10:27:46 -0000

After Snowden, IETF certainly did talk the talk , but I think it does not always walk the walk. The average amount of privacy in new RFCs has certainly gone up and there are many great new mechanisms like QUIC, Privacy Pass, and OPAQUE. The minimum level in IETF is however still too low. IETF is e.g., still producing new standards without forward secrecy and identity protection and are not changing the status of old standards track RFCs that are no longer aligning with best practice security and privacy practices.

- Forward secrecy: To always use ephemeral Diffie-Hellman got a lot of discussion after Snowden, but unfortunately the IETF is still producing standards track documents without forward secrecy, e.g., using PSK key exchange, or storing session keys. IETF seems to also mostly have forgotten additional properties that has often been included in the term PFS (RFC 2828). Assuming breach like key compromise is an essential zero trust principle.

- Identity protection: IETF is still producing standards track documents without identity protection. E.g., reusing PSK identifiers or sending unencrypted signatures. Why is IETF adopting bad PSK practices from old mobile generations when 3GPP is working hard to mitigate its PSK vulnerabilities with ECIES and ECDHE?

- NULL algorithms: NULL encryption should have no place in two party protocols at all. AES-GCM is as fast as integrity only or even non-cryptographic CRC.

- IP layer: While the transport layer and application layer has seen significant improvements such as QUIC and HTTP/3 and the link layer has seen improvements with MAC randomization, not much has happened at the Internet layer. IP addresses are still not only long-lived trackable identifiers, but they also reveal your location.

- Threat Model: The IETF has failed to update the Internet Threat Model to include compromised endpoints, misbehaving endpoints, and large centralized information sources. This is very disappointing as these things were, and still are major enablers for pervasive monitoring. Assuming compromise is an essential zero trust principle. The excellent IAB document RFC 7624 that talks about compromise and exfiltration deserve much more citations.

- Old RFCs: How should we handle old security- and privacy-related standard track RFCs? I think being standards track signal that IETF thinks the mechanism still provides best practice security and privacy. Most 10-year-old standard track documents are no longer living up to best practice. The current system makes it very hard to change the status of RFCs. Should RFCs automatically be downgraded to informational unless there is consensus that they still provide best practice security and privacy?

Now when ten years have passed, I think the IETF should analyze how we did. Where did we succeed, where did we fail, and what can we do better in the future? An interesting development is that requirements for privacy and zero trust often aligns. The only reasonable assumption is that breach everywhere is inevitable or has likely already occurred and try to minimize the impact when breach occur. What IETF does is very important. A lot of other SDOs and organizations look at IETF for inspiration.

Cheers,
John