Re: [Perc] Secdir last call review of draft-ietf-perc-dtls-tunnel-08
Shawn Emery <shawn.emery@gmail.com> Fri, 11 June 2021 04:20 UTC
Return-Path: <shawn.emery@gmail.com>
X-Original-To: perc@ietfa.amsl.com
Delivered-To: perc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1F9E83A2760; Thu, 10 Jun 2021 21:20:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZF-zj0hbOsHF; Thu, 10 Jun 2021 21:20:50 -0700 (PDT)
Received: from mail-ej1-x62c.google.com (mail-ej1-x62c.google.com [IPv6:2a00:1450:4864:20::62c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D7D933A275F; Thu, 10 Jun 2021 21:20:49 -0700 (PDT)
Received: by mail-ej1-x62c.google.com with SMTP id he7so2442036ejc.13; Thu, 10 Jun 2021 21:20:49 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=8wojJE3RIZ/qthvUvqw35TzJqTjCUUUyrs+CDOfLC3U=; b=rqmjXlPLvo5TV0V1WchWIvIAZ6UE/DLV1ZycBjmWVVkv6fJXCrIpZVA+BJSl2+deCR HVY/0N0J5l+cmkyKghKduNtksuxU9TRFFIpTJ0bO5yINtXSPX2p6fowBX6LkJHNqn1/d g5vQggtzEy4pfMq5WrevqxTiuApMqsTNvaTqMRVBwssv/0M5SSsPOYLaYRZmYLHHOA5K 8z3J0kG66jzXjF+pn3O6397f/ScJCWGvpqHDMZDciR4nfthKvoX8OOjf7ioKWt6jdTRI tCVW6Pr4Z+sHbhNx0g2Z2/2lsWNjcXNLmpPED8IJXqa0lVHjiUG9b1WMq2RWBm6PWp3a uQGQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=8wojJE3RIZ/qthvUvqw35TzJqTjCUUUyrs+CDOfLC3U=; b=tsWg+hmTw0mQxqrnzT1TTTlSP6Wjdc1aB9ANRyt9BbKccTbyyH9WqgY6sUblSQ/e62 9hhecGLR5pdrzA/23w/Yw34VFBrnX2rE08fq5qv2TUPOv43oCZUkm+x1wv4K4WrCQ+uc MVQhgZdo0G4JuQ8JwyK22GMuuMuCDmuJ8scgB0DVxM9OLh9P0+gq2GCDWsr+jgcy522k Ka5jQy1jiwV0WAFu3je3e0aGPcmwVsLDqJ4t3gcQvlHbhtcUur0jao6rscpIpM2UtkOu ta3PY6Re6Wb7O+r1Qfks2EGrvD1yFHJHf6n9jgcjsxA/SGEb2qCSfMuqDRKcC3msVUNO sFUQ==
X-Gm-Message-State: AOAM530qTlneRS7Y/77/j9ptsduHFBRp/WrfCNIRQqHnQPTpSBD8oiNn y6biJInJhUs1hBzi13syznb9SkQJUJMdeDA9CMS9soCeWTJnrw==
X-Google-Smtp-Source: ABdhPJxcKp7cpKtYndvHjMz1394D5kKf+My67Y8jZMxKHIrEHnYYsjzAE54LctPH90nqfUKiE47/hLkH0MhlXsQDFyo=
X-Received: by 2002:a17:906:5299:: with SMTP id c25mr1724158ejm.85.1623385242823; Thu, 10 Jun 2021 21:20:42 -0700 (PDT)
MIME-Version: 1.0
References: <162302724403.5524.7530871359171917876@ietfa.amsl.com> <em199c2ab4-ef2f-4756-b044-35572ddfe7c2@sydney>
In-Reply-To: <em199c2ab4-ef2f-4756-b044-35572ddfe7c2@sydney>
From: Shawn Emery <shawn.emery@gmail.com>
Date: Thu, 10 Jun 2021 18:20:25 -1000
Message-ID: <CAChzXmaLej44C8W8pDMvAtLoY+p0NxUsptKEA7WaMRwExa329w@mail.gmail.com>
To: "Paul E. Jones" <paulej@packetizer.com>
Cc: secdir <secdir@ietf.org>, draft-ietf-perc-dtls-tunnel.all@ietf.org, last-call@ietf.org, perc@ietf.org
Content-Type: multipart/alternative; boundary="000000000000bb6ecb05c475d4a0"
Archived-At: <https://mailarchive.ietf.org/arch/msg/perc/DXBMGzjl-sAwmO09IUCZNKFcHag>
Subject: Re: [Perc] Secdir last call review of draft-ietf-perc-dtls-tunnel-08
X-BeenThere: perc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Privacy Enhanced RTP Conferencing <perc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/perc>, <mailto:perc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/perc/>
List-Post: <mailto:perc@ietf.org>
List-Help: <mailto:perc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/perc>, <mailto:perc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 11 Jun 2021 04:20:55 -0000
Thank you for incorporating the requested changes into the Security Considerations section. Looks better. A few more nits with the latest update: s/the the/the/g s/"EndpointDisconect"/"EndpointDisconnect"/ s/document rely/document relies/ Shawn. -- On Mon, Jun 7, 2021 at 4:50 PM Paul E. Jones <paulej@packetizer.com> wrote: > Shawn, > > Thanks for the review. Russ also had comments on the security > considerations section. I have changed that substantially and welcome > any additional input. See these changes: > > https://github.com/percwg/perc-wg/compare/paulej_ietf_lc > > Paul > > ------ Original Message ------ > From: "Shawn Emery via Datatracker" <noreply@ietf.org> > To: secdir@ietf.org > Cc: draft-ietf-perc-dtls-tunnel.all@ietf.org; last-call@ietf.org; > perc@ietf.org > Sent: 6/6/2021 8:54:04 PM > Subject: Secdir last call review of draft-ietf-perc-dtls-tunnel-08 > > >Reviewer: Shawn Emery > >Review result: Not Ready > > > >I have reviewed this document as part of the security directorate's > ongoing > >effort to review all IETF documents being processed by the IESG. These > >comments were written primarily for the benefit of the security area > directors. > >Document editors and WG chairs should treat these comments just like any > other > >last call comments. > > > >This draft specifies a DTLS tunneling protocol for Privacy-Enhanced RTP > >Conferencing (PERC). This entails a key exchange between the conference > >end-points and the key distributor through a delegate, media distributor. > > > >The security considerations section does exist and describes that the > media > >distributor does not introduce any additional security issues given that > it is > >just on-path with the key exchange between the endpoint and the key > >distributor. Secondly, the key material between the media distributor > and key > >distributor is protected through the mutually authenticated connection > between > >the two entities. Thirdly, the meta data exchanged between the media > >distributor and key distributor is not sensitive information, but is still > >protected through the TLS connection. I agree with the above assertions. > >Besides the concerns described in the genart review about the impact of > key > >material disclosure, the authors should consider the various other forms > of > >security issues against the protocol, such as downgrade/DoS attacks from > >profile negotiation, etc. The section could list and simply refer to the > base > >RFCs, 5764, 8871, etc., to provide remediation against these attacks. > > > >General comments: > > > >The example message flow and binary coding was helpful, thank you. > > > >Editorial comments: > > > >s/might might/might/ > >s/!@RFC4566/RFC4566/g > >s/An value/A value/ > >s/!@RFC8126/RFC8126/ > >s/material This/material. This/ > > > > > > > >
- [Perc] Secdir last call review of draft-ietf-perc… Shawn Emery via Datatracker
- Re: [Perc] Secdir last call review of draft-ietf-… Paul E. Jones
- Re: [Perc] Secdir last call review of draft-ietf-… Shawn Emery
- Re: [Perc] Secdir last call review of draft-ietf-… Paul E. Jones