IETF Logo Mail Archive

Re: [radext] New Version Notification for draft-henry-radext-stable-mac-identifier-00.txt

"Nancy Cam-Winget (ncamwing)" <ncamwing@cisco.com> Thu, 18 November 2021 02:24 UTC

Return-Path: <ncamwing@cisco.com>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B652D3A07AD for <radext@ietfa.amsl.com>; Wed, 17 Nov 2021 18:24:14 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.596
X-Spam-Level:
X-Spam-Status: No, score=-9.596 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=BbfxKd2n; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=v4LLgzLS
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CCix4GvEq1zi for <radext@ietfa.amsl.com>; Wed, 17 Nov 2021 18:24:10 -0800 (PST)
Received: from rcdn-iport-4.cisco.com (rcdn-iport-4.cisco.com [173.37.86.75]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0BF633A07AC for <radext@ietf.org>; Wed, 17 Nov 2021 18:24:09 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=6594; q=dns/txt; s=iport; t=1637202250; x=1638411850; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=Tmt1J5Iv2jROLfHk796mdDpPO9Ujhg9DWnUIYH8mwEE=; b=BbfxKd2n3w5A/NfMoaWc25GcZyZrY5d8ssB62GPhtAjk+BFGU+jAl4h+ 9j3/Pwx3Q5k043ChV/780wFw1tKwOxM5g6honyHW14p1C9VCXWO02kvDG H1EQ0PccUkYM9/cQFvODcWpHl7Dm+8cFNZdWR8PMosfQQpdNAcmpM/yoO I=;
IronPort-PHdr: A9a23:HDHOmh3eVzZydq8ksmDPr1BlVkEcU/3cMg0U788hjLRDOuSm8o/5NUPSrfNqkBfSXIrd5v4F7oies63pVWEap5rUtncEfc9AUhYfgpAQmAotSMeOFUz8KqvsaCo3VMRPXVNo5Te1K09QTc3/fFbV5Ha16G16Jw==
IronPort-Data: A9a23:7UP7gaghwjPj3+pPt6KNhDvRX161gxIKZh0ujC45NGQN5FlHY01jehtvXj3QOq6JNmOgedF1PIzio0oBvsSEyIIySVduqHhkRi9jpJueD7x1DKtf0wB+jyH7ockOA/w2MrEsF+hpCC+DzvuRGuK59yAljPjXHuaU5NPsY0ideyc1EE/Ntjo78wIJqtYAbemRW2thi/uryyHsEAfNNwpPD44hw/nrRCWDExjFkGhwUlQWPZintbJF/pUfJMp3yaqZdxMUTmTId9NWSdovzJnhlo/Y1w0mBtXgmbHhfwhTBLXTJgOJzHFRXsBOgDAb+Xd0ifl9ZaFaMBoN49mKt4gZJNFls5e5TBgoOKLkk+UGWB4eGCZ7VUFD0O6ccSHl7ZPIniUqdFOpmZ2CFnoeJ4QU9/ZrKWBD6fJeLyoCBjiJiviwyai3DOBmgc4qBMbuNYIb/HpnyFnxBPIvR5zrT6jS4dhJ3TE/nMlCHOvFIcEebFJHaBXHZRBLfFIQEps4kM+vnHD5fDAeo1WQzZfbSUC7IBdZyrPhNp/efcaHAJwTlUeDrWWA9GP8aiz2/ee3kVKtmk9ATMeW9c8jZL8vKQ==
IronPort-HdrOrdr: A9a23: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
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0B5AAD3t5Vh/5hdJa1aHAEBAQEBAQcBARIBAQQEAQFAgUYGAQELAYFRIy4Hd1o3MYRHg0cDhTmFDoMCA4sFhSWKY4EuFIERA1QLAQEBDQEBKgsMBAEBhD9FAheCUAIlNQgOAQIEAQEBEgEBBQEBAQIBBgSBCROFaA2GQwEBAQMBARAREQwBASwJAgEPAgEIGAICGQ0CAgIfBgsVEAIEAQ0FGweCTwGCVQMvAQ6hEQGBOgKKH3qBMYEBgggBAQYEBIE6Ag5Bgn8NC4I1AwaBECoBgw2EHocEJxyCDYE8HIFmgQE+giFCAQECAYEoAQwGAQkYgxg3gi6PQBEQYmMEFD0CDRUuCyAIQggHAS4CCB8cAh6RUINlp349aAqDOYpSjkaFawUtg2yLdJdNlhUfjFaDSJAYP4RyAgQCBAUCDgEBBoFiATlpcHAVOyoBgj5RGQ+OIDeDO4UUhUkBdAI2AgYBCgEBAwmQEIJFAQE
X-IronPort-AV: E=Sophos;i="5.87,243,1631577600"; d="scan'208";a="938124739"
Received: from rcdn-core-1.cisco.com ([173.37.93.152]) by rcdn-iport-4.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 18 Nov 2021 02:24:08 +0000
Received: from mail.cisco.com (xbe-aln-007.cisco.com [173.36.7.22]) by rcdn-core-1.cisco.com (8.15.2/8.15.2) with ESMTPS id 1AI2O88L011960 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=OK); Thu, 18 Nov 2021 02:24:08 GMT
Received: from xfe-aln-003.cisco.com (173.37.135.123) by xbe-aln-007.cisco.com (173.36.7.22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Wed, 17 Nov 2021 20:24:08 -0600
Received: from xfe-rcd-003.cisco.com (173.37.227.251) by xfe-aln-003.cisco.com (173.37.135.123) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Wed, 17 Nov 2021 20:24:07 -0600
Received: from NAM04-MW2-obe.outbound.protection.outlook.com (72.163.14.9) by xfe-rcd-003.cisco.com (173.37.227.251) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15 via Frontend Transport; Wed, 17 Nov 2021 20:24:07 -0600
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=cgDnbZkc9Owonq5j4wzFSRpEaBNgKJGP4kSt2tYe/3+HbfjabvToo/FRqTGiTdzY/nAzAGEWKt0ZX/B4ZFFIftWYwmOSCls7ePEq32oEnwvJdj7U+lqD3eqsEanoQZ7ZAkW5HjGwiwiTYdAQdtBktAuibsgJK4xBaupZ/SL02ump+nmNckZs0SMtTxcDPxNOJu4+zSxd5l1GMPJqVF0Zt5L3c0/Qdl061vXXfwu4NZLepYAWyk2Ih7stqR0k114Kh45P+y/e7fYdiugNf0ngKGk0g5Io3Bz9XK62hzZxCziz3sm5FV1DB9DofZ+eqGKuGsMh99ghfT4fP+7/2NczmA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=Tmt1J5Iv2jROLfHk796mdDpPO9Ujhg9DWnUIYH8mwEE=; b=ZIaCbBZkFBXMY+3pH9DwWlVVsyyFlE9djsGoNp6LeyF2X4IfywZqVjzuNTgVqhpoR57RCg95Q5byi+vkihU3auPQA7NK0cFda5+/denfKh56B1uKrPCqU6PwspwQf8o++SxBxr/esfIJDNNtHCvU1PdYOt5z9tQm7ZVfPMJITeQ+YBJrHQuheG/plFFjgjpQ2j8rsfIUQFRJY/HlIukQ9b30/X4mmjGi+aSmduzOc184tMfvlhcwHVcTJXZ+LQBpYEPQ8mnBAWV+SKhsLiJ/b78CJPRobPaZoYP8zNXA07HwwiOP8rhxBMpIO0BpKJj8sLCGcv1fKr5GmQGKNc/Qkg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Tmt1J5Iv2jROLfHk796mdDpPO9Ujhg9DWnUIYH8mwEE=; b=v4LLgzLSRFEGvVvFTskC79/quNalPZys6c4s14QYUU6PUd7+LI8nW+4dgqkBw4qmTrcBCr8/H5wkCWM0T72qQfmuvvs5p9vuqBhZ1u8prAtrTdjQzuxa8mr7b9XmtjUAuLU/JuNL8huOfhVWvHDdP/uBfXxGrV+FOQM1gSayBbw=
Received: from BYAPR11MB2919.namprd11.prod.outlook.com (2603:10b6:a03:8d::21) by BYAPR11MB3302.namprd11.prod.outlook.com (2603:10b6:a03:7b::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4690.26; Thu, 18 Nov 2021 02:24:06 +0000
Received: from BYAPR11MB2919.namprd11.prod.outlook.com ([fe80::3044:28c7:86ef:464f]) by BYAPR11MB2919.namprd11.prod.outlook.com ([fe80::3044:28c7:86ef:464f%7]) with mapi id 15.20.4690.027; Thu, 18 Nov 2021 02:24:06 +0000
From: "Nancy Cam-Winget (ncamwing)" <ncamwing@cisco.com>
To: "lionel.morand@orange.com" <lionel.morand@orange.com>, Alan DeKok <aland@deployingradius.com>, Bernard Aboba <bernard.aboba@gmail.com>
CC: "radext@ietf.org" <radext@ietf.org>, "Jerome Henry (jerhenry)" <jerhenry@cisco.com>
Thread-Topic: [radext] New Version Notification for draft-henry-radext-stable-mac-identifier-00.txt
Thread-Index: AQHXvtaeheiDKBqv10uFhsI6k1hHNKv4m6mAgAE6IICAABZFgIAAAtMAgA3SsoCAAIFagA==
Date: Thu, 18 Nov 2021 02:24:06 +0000
Message-ID: <637D5AE1-8DAE-4F82-A774-5ED65AD7BBC0@cisco.com>
References: <800563F0-0675-4B19-8286-E03589F2B64D@deployingradius.com> <7E1500CE-0320-4DB4-9615-604D4EC5E39E@gmail.com> <6A131BFA-597D-4DB9-8D92-F808B04FD205@deployingradius.com> <24224_1637145668_6194DC44_24224_211_5_fc4ddd09513d44b1b4c15dfb5c155345@orange.com>
In-Reply-To: <24224_1637145668_6194DC44_24224_211_5_fc4ddd09513d44b1b4c15dfb5c155345@orange.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.54.21101001
msip_labels: MSIP_Label_f47c794b-e3ab-43f0-9e0f-29fc3e503192_Enabled=true; MSIP_Label_f47c794b-e3ab-43f0-9e0f-29fc3e503192_SetDate=2021-11-17T10:41:06Z; MSIP_Label_f47c794b-e3ab-43f0-9e0f-29fc3e503192_Method=Standard; MSIP_Label_f47c794b-e3ab-43f0-9e0f-29fc3e503192_Name=Orange_restricted_external.2; MSIP_Label_f47c794b-e3ab-43f0-9e0f-29fc3e503192_SiteId=90c7a20a-f34b-40bf-bc48-b9253b6f5d20; MSIP_Label_f47c794b-e3ab-43f0-9e0f-29fc3e503192_ContentBits=2
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cisco.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: dc8dcf84-fb1d-4253-114a-08d9aa3a7ed7
x-ms-traffictypediagnostic: BYAPR11MB3302:
x-microsoft-antispam-prvs: <BYAPR11MB33026314EB1238184D78F17CD69B9@BYAPR11MB3302.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BYAPR11MB2919.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(366004)(186003)(508600001)(316002)(110136005)(2906002)(53546011)(26005)(86362001)(54906003)(38100700002)(6506007)(8936002)(66556008)(8676002)(33656002)(71200400001)(4326008)(38070700005)(6486002)(66476007)(5660300002)(64756008)(966005)(66446008)(36756003)(2616005)(6512007)(107886003)(83380400001)(15650500001)(66946007)(76116006)(122000001)(45980500001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
Content-ID: <042C146EBD18414A9BBCAE11DA9F80F0@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BYAPR11MB2919.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: dc8dcf84-fb1d-4253-114a-08d9aa3a7ed7
X-MS-Exchange-CrossTenant-originalarrivaltime: 18 Nov 2021 02:24:06.0885 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Vdq5qX+NY75DzTzdZGn9JfhGlHWYMLYtaJdFot8h6dCiW/Ruz/N892ouLQ2xmFTdq2iJ0+NpWHu2QZ1USe8v3A==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR11MB3302
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.22, xbe-aln-007.cisco.com
X-Outbound-Node: rcdn-core-1.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/radext/z7N0LGajHxRQ7H2xY_aOGiy_M7k>
Subject: Re: [radext] New Version Notification for draft-henry-radext-stable-mac-identifier-00.txt
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 18 Nov 2021 02:24:15 -0000

Hi Alan, Bernard and Lionel,

Thanks for all the feedback and we can bring the discussion to OPSAWG and realize that we need to clean up the problem statement which we can address in a revision before bringing it to OPSAWG.

Best, Nancy

On 11/17/21, 2:41 AM, "lionel.morand@orange.com" <lionel.morand@orange.com> wrote:

    Hi,

    First, it is true that this draft should be rather discussed in OPSAWG, as RADEXT is nearly dead.

    Now, as the discussed has started, I agree with the comments raised by Bernard on the problem statement.

    >From a solution point of view, if the goal of the SMI attribute is to link consecutive authentication phases to the same user using different MAC address, why not just rely on the Acct-Multi-Session-Id used in the accounting messages to link together the multiple sessions?

    Regards,

    Lionel


    Orange Restricted

    > -----Message d'origine-----
    > De : radext <radext-bounces@ietf.org> De la part de Alan DeKok
    > Envoyé : lundi 8 novembre 2021 16:36
    > À : Bernard Aboba <bernard.aboba@gmail.com>
    > Cc : radext@ietf.org; Nancy Cam-Winget (ncamwing)
    > <ncamwing=40cisco.com@dmarc.ietf.org>; Jerome Henry (jerhenry)
    > <jerhenry@cisco.com>
    > Objet : Re: [radext] New Version Notification for draft-henry-radext-stable-mac-
    > identifier-00.txt
    > 
    > On Nov 8, 2021, at 10:25 AM, Bernard Aboba <bernard.aboba@gmail.com> wrote:
    > > The problem is not clearly stated.
    > 
    >   Agreed.
    > 
    > > There are issues created by changing MAC addresses that could affect the user
    > experience. The document mentions mapping of the MAC address to assigned IP
    > addresses.
    > 
    >   " Continuity might include for example obtaining the same IP address from the
    > DHCP server"
    > 
    >   If the same IP is assigned based on SMI and not RMC MAC, then that sort of
    > negates the reason to use random MAC addresses.  You can tell it's the "same"
    > machine, because it has the same IP address.
    > 
    > > I would note that the point of randomized MAC addresses is to reduce the ability
    > to track users and devices. EAP supports both machine and user authentication
    > and lately there have been efforts to protect those identifiers from exposure in
    > clear text so as to limit tracking. Presumably similar concerns would exist about
    > any machine identifier.
    > 
    >   I see it as useful to have a unique device identifier, which is visible only to the
    > device and to the RADIUS server.  Ideally, this identifier shouldn't be visible to
    > anyone else in the network.
    > 
    >  The document implies that changes will need to be made to the Ethernet / radio
    > layer:
    > 
    >   "Additionally, once a protected link has been established between the client and
    > the AP/WLC, as in 2.1, the client requests from the NAS a stable identifier or
    > provides to the NAS a stable identifier."
    > 
    >   This process requires involvement from the IEEE, in addition to the IETF.  I'm not
    > sure why using a stable identifier requires changes to the lower-layer protocols.
    > 
    >   TBH, the identifier could just be put it in a TLS extension.   Require TLS 1.3 for
    > security, and that's it.  Have the device generate a random 128-bit identifier.  No
    > negotiation is necessary.
    > 
    >   A similar method is already being proposed in
    > https://datatracker.ietf.org/doc/html/draft-friel-tls-eap-dpp-01
    > 
    >   Alan DeKok.
    > 
    > _______________________________________________
    > radext mailing list
    > radext@ietf.org
    > https://www.ietf.org/mailman/listinfo/radext

    _________________________________________________________________________________________________________________________

    Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc
    pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler
    a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration,
    Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.

    This message and its attachments may contain confidential or privileged information that may be protected by law;
    they should not be distributed, used or copied without authorisation.
    If you have received this email in error, please notify the sender and delete this message and its attachments.
    As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.
    Thank you.

v2.23.0 | Report a Bug | By Email