Re: [Roll] Fwd: New Version Notification for draft-ietf-roll-nsa-extension-06.txt

dominique.barthel@orange.com Tue, 03 March 2020 14:12 UTC

Return-Path: <dominique.barthel@orange.com>
X-Original-To: roll@ietfa.amsl.com
Delivered-To: roll@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CB89B3A0BD2 for <roll@ietfa.amsl.com>; Tue, 3 Mar 2020 06:12:36 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=orange.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XfrBj74vNRL2 for <roll@ietfa.amsl.com>; Tue, 3 Mar 2020 06:12:34 -0800 (PST)
Received: from relais-inet.orange.com (relais-inet.orange.com [80.12.66.41]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 28D503A0BC9 for <roll@ietf.org>; Tue, 3 Mar 2020 06:12:34 -0800 (PST)
Received: from opfedar04.francetelecom.fr (unknown [xx.xx.xx.6]) by opfedar24.francetelecom.fr (ESMTP service) with ESMTP id 48WzVS52fMz5vqy; Tue, 3 Mar 2020 15:12:32 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=orange.com; s=ORANGE001; t=1583244752; bh=niZ7G5283Pzd9eI4FZ97wdaNrg65k+pKkhKFdLRUKG4=; h=From:To:Subject:Date:Message-ID:Content-Type:MIME-Version; b=QRxXVhmb9bfNLYG55vv/wEyBw2GaDBRiUPkV/11m7Mx6hnjpKTmo9/OZyqU407kp2 25xX+cxW/ciUC9wNoZeCUZ/mrzRFcmP8wxaXTXRiKY2fx2UFDb/7VKkK1CiiVjT1BP f1f0mxpi8OHFTeDzWVEoe3dWqDMhkVqq4HDT6q6pK2dNrUdzOGW6S+sM5FwxVLVWja 47N3fi5TmE0IOQVByt/lIgUIVqujvIBZIR+i36HobUHVK9riJFWfW30ZnCQPpHkUcq Eiwe22T/0m3e6UPF2syQH0nGymW0coCA4jxmU/jP8zlJ3YxRTAVXDqCnpDawkD1GE7 20DpOhDFsB8Aw==
Received: from Exchangemail-eme6.itn.ftgroup (unknown [xx.xx.13.32]) by opfedar04.francetelecom.fr (ESMTP service) with ESMTP id 48WzVS41nDz1xpr; Tue, 3 Mar 2020 15:12:32 +0100 (CET)
Received: from OPEXCAUBM21.corporate.adroot.infra.ftgroup ([fe80::d42b:2e80:86c2:5905]) by OPEXCAUBM7C.corporate.adroot.infra.ftgroup ([::1]) with mapi id 14.03.0487.000; Tue, 3 Mar 2020 15:12:32 +0100
From: <dominique.barthel@orange.com>
To: Remous-Aris Koutsiamanis <aris@ariskou.com>
CC: Routing Over Low power and Lossy networks <roll@ietf.org>, "Georgios Z. Papadopoulos" <georgios.papadopoulos@imt-atlantique.fr>
Thread-Topic: [Roll] Fwd: New Version Notification for draft-ietf-roll-nsa-extension-06.txt
Thread-Index: AQHV7pP51Qr8t51cyUOF9rwkK1Esq6g26OMA
Date: Tue, 3 Mar 2020 14:12:32 +0000
Message-ID: =?utf-8?q?=3C24622=5F1583244752=5F5E5E65D0=5F24622=5F294=5F1=5FD?= =?utf-8?q?A841E11=2E712EF=25dominique=2Ebarthel=40orange=2Ecom=3E?=
References: <158134776694.4117.16175545100765405335.idtracker@ietfa.amsl.com> <EDEA0416-1EEA-49DF-8F25-AF80F0ADA58E@imt-atlantique.fr> =?utf-8?q?=3C25766?= =?utf-8?q?=5F1582715717=5F5E565345=5F25766=5F121=5F1=5FDA7C0EE9=2E71074=25d?= =?utf-8?q?ominique=2Ebarthel=40orange=2Ecom=3E?= <CAK76PrkcSdydZpJWvxPfOMF68uvMNvJiS2-O+R+XE9k5ZOrcJw@mail.gmail.com>
In-Reply-To: <CAK76PrkcSdydZpJWvxPfOMF68uvMNvJiS2-O+R+XE9k5ZOrcJw@mail.gmail.com>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/14.7.3.170325
x-originating-ip: [10.114.13.245]
Content-Type: multipart/alternative; boundary="_000_DA841E11712EFdominiquebarthelorangecom_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/roll/rVNtd6dM_upVBokp4lZw4CT7-B4>
Subject: Re: [Roll] Fwd: New Version Notification for draft-ietf-roll-nsa-extension-06.txt
X-BeenThere: roll@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Routing Over Low power and Lossy networks <roll.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/roll>, <mailto:roll-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/roll/>
List-Post: <mailto:roll@ietf.org>
List-Help: <mailto:roll-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/roll>, <mailto:roll-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 03 Mar 2020 14:12:37 -0000

Hello Aris,

Here is a pointer to an IETF tutorial on writing Security Considerations section.
https://datatracker.ietf.org/meeting/105/materials/slides-105-edu-sessb-writing-security-considerations-01.pdf
https://www.youtube.com/watch?v=Jpbfy3QeerU
See for example slide 23 that pertains to drafts extending prior protocols.
I'll review and respond to your comments below later.
Cheers,

Dominique

De : Remous-Aris Koutsiamanis <aris@ariskou.com<mailto:aris@ariskou.com>>
Date : Saturday 29 February 2020 01:05
À : Dominique Barthel <dominique.barthel@orange.com<mailto:dominique.barthel@orange.com>>
Cc : "roll@ietf.org<mailto:roll@ietf.org>" <roll@ietf.org<mailto:roll@ietf.org>>, "Georgios Z. Papadopoulos" <georgios.papadopoulos@imt-atlantique.fr<mailto:georgios.papadopoulos@imt-atlantique.fr>>
Objet : Re: [Roll] Fwd: New Version Notification for draft-ietf-roll-nsa-extension-06.txt

Hello Dominique,

thank you very much for the thorough review.
Comments inline.

On Wed, Feb 26, 2020 at 12:15 PM <dominique.barthel@orange.com<mailto:dominique.barthel@orange.com>> wrote:
Hello all,

Another comment about this draft. The Security Considerations section currently says
" The structure of the DIO control message is extended, within the pre-
   defined DIO options.  Therefore, the security mechanisms defined in
   RPL [RFC6550] apply to this proposed extension."
I don't think this addresses the purpose of a Security Considerations section.

OK, maybe I misunderstood what exactly I should have elaborated on.

I think it should talk about the potential security issues introduced by the draft, and why they are not real concerns.

I thought that no real extra concerns are present, but as you propose, maybe some more details would be helpful.

I guess that, what this draft changes compared to RFC6550-6551, is the sending of the Parent Set of a node in its DIO. From there:
- This could result in a privacy issue. Yes, but the Parent Set is not propagated further down the DODAG, so this disclosure does not reach far beyond the propagation range of the radios of the Parents. So no tracking of nodes by their IPv6 address possible from remote (a least no more than in the current situation).

This is definitely present, I will add this issue, despite it not being especially problematic. Just to be complete.

- This could result in introducing a vulnerability: could an attacker exploit the knowledge gained from learning the PS? …

Well, maybe with an assumption of a malicious node being able to decode the DIO, i.e. having the correct enc/decryption keys.
1. A malicious node that can read the DIO can "see" further than it's own neighbourhood by one hop, learning the addresses of it's two hop neighbors. So as mentioned, this is a privacy / network discovery issue.
2. A node that can send DIOs can use the parent set to convince neighbours to route through itself, instead of the normal preferred parent they would use. However, with other OFs this is already possible by reporting a fake rank value of 0 in the DIO, thus appearing as the DODAG root.

As far as I can tell, if a malicious node manages to participate in the RPL network (i.e. decode/encode the RPL control packet) it is game over and it can definitely severely affect the operation of the whole network, just by reporting a fake rank.
However, maybe this is not true; I'm not really an very familiar with the security of RPL.

I don't see any other opportunities for security issues.
I will add these two to the draft unless you have something additional.

Best regards
Dominique

Thank you very much Dominique for the help.

Best,
Aris


De : Roll <roll-bounces@ietf.org<mailto:roll-bounces@ietf.org>> on behalf of "Georgios Z. Papadopoulos" <georgios.papadopoulos@imt-atlantique.fr<mailto:georgios.papadopoulos@imt-atlantique.fr>>
Répondre à : "roll@ietf.org<mailto:roll@ietf.org>" <roll@ietf.org<mailto:roll@ietf.org>>
Date : Monday 10 February 2020 16:51
À : "roll@ietf.org<mailto:roll@ietf.org>" <roll@ietf.org<mailto:roll@ietf.org>>
Objet : [Roll] Fwd: New Version Notification for draft-ietf-roll-nsa-extension-06.txt

Dear all,

FYI, we just submitted the 06 version where we addressed the comments from Rahul.

Many thanks Rahul,
Georgios and Aris


Begin forwarded message:

From: internet-drafts@ietf.org<mailto:internet-drafts@ietf.org>
Subject: New Version Notification for draft-ietf-roll-nsa-extension-06.txt
Date: February 10, 2020 at 16:16:06 GMT+1
To: "Nicolas Montavont" <nicolas.montavont@imt-atlantique.fr<mailto:nicolas.montavont@imt-atlantique.fr>>, "Pascal Thubert" <pthubert@cisco.com<mailto:pthubert@cisco.com>>, "Georgios Papadopoulos" <georgios.papadopoulos@imt-atlantique.fr<mailto:georgios.papadopoulos@imt-atlantique.fr>>, "Remous-Aris Koutsiamanis" <aris@ariskou.com<mailto:aris@ariskou.com>>


A new version of I-D, draft-ietf-roll-nsa-extension-06.txt
has been successfully submitted by Remous-Aris Koutsiamanis and posted to the
IETF repository.

Name: draft-ietf-roll-nsa-extension
Revision: 06
Title: Common Ancestor Objective Function and Parent Set DAG Metric Container Extension
Document date: 2020-02-10
Group: roll
Pages: 15
URL:            https://www.ietf.org/internet-drafts/draft-ietf-roll-nsa-extension-06.txt
Status:         https://datatracker.ietf.org/doc/draft-ietf-roll-nsa-extension/
Htmlized:       https://tools.ietf.org/html/draft-ietf-roll-nsa-extension-06
Htmlized:       https://datatracker.ietf.org/doc/html/draft-ietf-roll-nsa-extension
Diff:           https://www.ietf.org/rfcdiff?url2=draft-ietf-roll-nsa-extension-06

Abstract:
  Implementing Packet Replication and Elimination from/to the RPL root
  requires the ability to forward copies of packets over different
  paths via different RPL parents.  Selecting the appropriate parents
  to achieve ultra-low latency and jitter requires information about a
  node's parents.  This document details what information needs to be
  transmitted and how it is encoded within RPL control packets to
  enable this functionality.  This document also describes Objective
  Function which take advantage of this information to implement multi-
  path routing.




Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org<http://tools.ietf.org>.

The IETF Secretariat



_________________________________________________________________________________________________________________________

Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc
pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler
a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration,
Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.

This message and its attachments may contain confidential or privileged information that may be protected by law;
they should not be distributed, used or copied without authorisation.
If you have received this email in error, please notify the sender and delete this message and its attachments.
As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.
Thank you.


_________________________________________________________________________________________________________________________

Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc
pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler
a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration,
Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.

This message and its attachments may contain confidential or privileged information that may be protected by law;
they should not be distributed, used or copied without authorisation.
If you have received this email in error, please notify the sender and delete this message and its attachments.
As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.
Thank you.