Re: [Rift] Security review of draft-ietf-rift-rift-05 is now complete
Tony Przygienda <tonysietf@gmail.com> Wed, 08 May 2019 04:55 UTC
Return-Path: <tonysietf@gmail.com>
X-Original-To: rift@ietfa.amsl.com
Delivered-To: rift@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 21E8312013B for <rift@ietfa.amsl.com>; Tue, 7 May 2019 21:55:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HrS5AI8dYOI4 for <rift@ietfa.amsl.com>; Tue, 7 May 2019 21:55:41 -0700 (PDT)
Received: from mail-ed1-x536.google.com (mail-ed1-x536.google.com [IPv6:2a00:1450:4864:20::536]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 627DD1200F9 for <rift@ietf.org>; Tue, 7 May 2019 21:55:41 -0700 (PDT)
Received: by mail-ed1-x536.google.com with SMTP id g57so20765946edc.12 for <rift@ietf.org>; Tue, 07 May 2019 21:55:41 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=s0NSAzV0aYU0S5QRjfH+/fLng1eWTV3jaahwnpWxfcQ=; b=Trl8mqIj5bi3GZf4M9L7Mvn0uIlRjU76a7ztej0LMHIAp3nIEjwLWMIpoBmmpaIfQe Hna2kD1LC6i6fJxRMkyaMJyouj8yawMtucVxMEbN10E0fPXuHjjuUsCU+l2qqSmXRGOw NP6/ZOToqLoiAnW+7lg9fdhEZpdUloP8EBqO5avKPWymDvu7Po11H/HawPzs5g5s2m3p a5tovYMD81W+Y1o8iknPNXKiXQhZrIJ3apa/c6x/kpde97l/RDQrjHiaEge3jqUY6TcB nJqt7p+EjCLqk6hfR4oTGLhizyw/O0DDa98klvEhMkP3Spa3G7iqMV97yt22Js/Rnz+5 ScaQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=s0NSAzV0aYU0S5QRjfH+/fLng1eWTV3jaahwnpWxfcQ=; b=KU6zGz5VXr0VOyM2Lxl8ndlt1W5VMRYilrCibiAJCC5AmVyzGUIrSZaC1D5RE4i5k8 VkTtJVQ+mdwPYbpNs6tpgGNI9rgOPfAHT26RW11mdyKH3VJG4iN4qoihksuy0eX3gJqz dDCF13Vpdg6snFvbiejjpsLcvthRQx7GwIpK3Tt9imvCef2HFdd6K/yP+9Lr6483QM2d Fr59T/GwiVuHX6cCC+IH7LyxcW9ESPVV+GALnNJCRdBXOGWJaro51bhME1/Rep0Zsv0y W/dSvsrxMqM+Qy/TIYxXPSsAsnJ1mjodBZEvk9SMWKJ6vEzGkf5dwQLRZ3KUq8UOrHmw S/dQ==
X-Gm-Message-State: APjAAAU5uBPZtKlKsi9+hXU4eKsvA3UvsKFz5tmrjOS6f/YDb280d/X0 VPoq6MSLu9cKZzRaHcuGYDzYKNNlCf3rQf98dqE=
X-Google-Smtp-Source: APXvYqxBmInH7tRFyoEHXVgMfgFRLcrlxkL6uvdSdqHJCA6LNJ2+Fm166A9MfKkvG6+ilzBsuKu6adADJ8dTkZCp2NA=
X-Received: by 2002:a17:906:25d1:: with SMTP id n17mr27149537ejb.257.1557291339813; Tue, 07 May 2019 21:55:39 -0700 (PDT)
MIME-Version: 1.0
References: <0660FAD1-B80C-4D37-B4D6-6CE4F6759BCD@gmail.com> <7FAAD212-9335-4FD6-B064-0F7A25041177@gmail.com> <CA+wi2hMO985sJ1cC-dz_FCy_a6mza45g=EusiEPVgbjQR_YMFw@mail.gmail.com>
In-Reply-To: <CA+wi2hMO985sJ1cC-dz_FCy_a6mza45g=EusiEPVgbjQR_YMFw@mail.gmail.com>
From: Tony Przygienda <tonysietf@gmail.com>
Date: Tue, 07 May 2019 21:55:03 -0700
Message-ID: <CA+wi2hPBFvx9XHR3tPMBpag9OJdYqVe1n5qK40LmbnpCoi0D_w@mail.gmail.com>
To: Bruno Rijsman <brunorijsman@gmail.com>
Cc: rift@ietf.org
Content-Type: multipart/alternative; boundary="0000000000001f187b05885925ec"
Archived-At: <https://mailarchive.ietf.org/arch/msg/rift/CMS9r1bwi1xYcwhGCirBAGbnsic>
Subject: Re: [Rift] Security review of draft-ietf-rift-rift-05 is now complete
X-BeenThere: rift@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Discussion of Routing in Fat Trees <rift.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rift>, <mailto:rift-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rift/>
List-Post: <mailto:rift@ietf.org>
List-Help: <mailto:rift-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rift>, <mailto:rift-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 08 May 2019 04:55:43 -0000
Thought about 2.10 further, had a cht with someone and the problem is that if there is no inner key then the outer envelope doesn't protect AFAIS, i.e. we'd loose link integrity on such TIEs completely. I don't think that's an acceptable attack vector, loosening of security model. Further thoughts welcome. 2.10 is a good optimization, given especially that the object is the biggest part so flooding out we'll save tons of CPU when outer envelope (lifetime) changes. Should we include that? > >
- [Rift] 2 weeks for comments on security section Bruno Rijsman
- [Rift] Security review of draft-ietf-rift-rift-05… Bruno Rijsman
- Re: [Rift] Security review of draft-ietf-rift-rif… Tony Przygienda
- Re: [Rift] Security review of draft-ietf-rift-rif… Tony Przygienda
- Re: [Rift] Security review of draft-ietf-rift-rif… Tony Przygienda