Re: [Roll] Stephen Farrell's Discuss on draft-ietf-roll-applicability-home-building-09: (with DISCUSS and COMMENT)

Robert Cragie <robert.cragie@gridmerge.com> Wed, 20 May 2015 16:01 UTC

Return-Path: <robert.cragie@gmail.com>
X-Original-To: roll@ietfa.amsl.com
Delivered-To: roll@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5D58A1A891F; Wed, 20 May 2015 09:01:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 1.222
X-Spam-Level: *
X-Spam-Status: No, score=1.222 tagged_above=-999 required=5 tests=[BAYES_20=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, J_CHICKENPOX_72=0.6, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mNgaXmHwZnDj; Wed, 20 May 2015 09:01:24 -0700 (PDT)
Received: from mail-la0-x236.google.com (mail-la0-x236.google.com [IPv6:2a00:1450:4010:c03::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 698361A8927; Wed, 20 May 2015 09:01:23 -0700 (PDT)
Received: by labbd9 with SMTP id bd9so81437291lab.2; Wed, 20 May 2015 09:01:21 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:reply-to:sender:in-reply-to:references:date:message-id :subject:from:to:cc:content-type; bh=8bzqmd88D4/gRj1cOhmHvoSI4MM77bMJ+rfr4ycJgjE=; b=MGxhhTRLvoDgfJhVZ9CR+7ODmlXS3rAvjvDoLVPLa+njzUgW3D5P/5efA+WQGhVDOY w/bv7pcKjY5Bbd5G3WWy/+ZXXiJKhCP8aYJZ5wIgNcwC60PveuO/61g4Wd91+6q+4+Np DMd3ErWiWPr2RQT63dqewncRXnl6t8d1W9dSazF4JWisZZVFzNkyXkje2A16VTOTU492 f7+x1sLxUK9XB/tmQSDVO6wu6Zt+7YQHLo097wDL090s7ZA1lUSEwooQVnMMbr9igAcw tj4sf3LOxLSGISJvgmU49Rad2JW9Cr/794O9D4kI1FQAWWgS9thn7Ha8ca0swohkfSut BWpQ==
MIME-Version: 1.0
X-Received: by 10.152.43.37 with SMTP id t5mr18598270lal.96.1432137681870; Wed, 20 May 2015 09:01:21 -0700 (PDT)
Sender: robert.cragie@gmail.com
Received: by 10.25.155.8 with HTTP; Wed, 20 May 2015 09:01:21 -0700 (PDT)
In-Reply-To: <555C043A.50904@cs.tcd.ie>
References: <20150408233408.4123.3118.idtracker@ietfa.amsl.com> <fb86c816367f2cef72685d1cbaf23e2a@xs4all.nl> <14934.1429043465@sandelman.ca> <0b35569a80c62337655b16c7010a84da@xs4all.nl> <12442.1429113740@sandelman.ca> <32c66dc3bb9f396188b90a178ff767d9@xs4all.nl> <15944.1429209784@sandelman.ca> <4b7fa589766fa21d12403ee8cc49262e@xs4all.nl> <55586FF8.5060908@cs.tcd.ie> <d065c9d28a735b2687c94698c655cf28@xs4all.nl> <555C043A.50904@cs.tcd.ie>
Date: Wed, 20 May 2015 17:01:21 +0100
X-Google-Sender-Auth: 5GQEBKc0pH6R-R71CZ1Cgv2J-1I
Message-ID: <CADrU+dLB3omVWP0u5kqyEyoJOjjqRDemwSDM0o+y_JBbDbpXgw@mail.gmail.com>
From: Robert Cragie <robert.cragie@gridmerge.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Content-Type: multipart/alternative; boundary=001a11c34eb4cc23ec051685897e
Archived-At: <http://mailarchive.ietf.org/arch/msg/roll/ztIP3DUWriPt7Vy1AXn3eyeda7c>
X-Mailman-Approved-At: Sun, 24 May 2015 16:55:13 -0700
Cc: Michael Richardson <mcr@sandelman.ca>, roll-chairs@ietf.org, Michael Richardson <mcr+ietf@sandelman.ca>, Routing Over Low power and Lossy networks <roll@ietf.org>, draft-ietf-roll-applicability-home-building.ad@ietf.org, The IESG <iesg@ietf.org>, draft-ietf-roll-applicability-home-building@ietf.org, yvonneanne.pignolet@gmail.com, draft-ietf-roll-applicability-home-building.shepherd@ietf.org
Subject: Re: [Roll] Stephen Farrell's Discuss on draft-ietf-roll-applicability-home-building-09: (with DISCUSS and COMMENT)
X-BeenThere: roll@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: robert.cragie@gridmerge.com, Routing Over Low power and Lossy networks <roll@ietf.org>
List-Id: Routing Over Low power and Lossy networks <roll.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/roll>, <mailto:roll-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/roll/>
List-Post: <mailto:roll@ietf.org>
List-Help: <mailto:roll-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/roll>, <mailto:roll-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 May 2015 16:01:26 -0000

Sorry for the very late reply on this. Firstly, here are my responses to
Stephen's original comments. I will look at the later e-mails and respond
accordingly.

Robert

----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------


- I don't get how there's an IPR disclosure for this, but
whatever.

- The non-security parts of this were quite a good read.

- 4.1.8: 1st sentence makes no sense. It says RPL does X or
not-X in order to Y. There is no choice but for RPL to do X or
not-X.

<RCC>
The aim is to say:

"In order to support low-cost devices and devices running on a battery, RPL
MAY use either unsecured messages or secured messages"

The omitted subtext is probably "..., not just secured messages" as that is
what is being emphasised here, i.e. a greater choice and thus implied
security policy choice.

Would the following make more sense?:

"In order to support low-cost devices and devices running on a battery,
there are two security policies applicable to RPL; one where RPL uses
unsecured messages and another where RPL uses secured messages"
<RCC>

- 4.1.8 seems to me to imply that link layer security is
always needed since there can always be some node that will
send an unsecured RPL messsage. If you agree, then I think
that should be made more clear. If you disagree, I'd like to
understand how.

<RCC>If the security policy option where RPL uses unsecured messages
applies, then link layer security will always be needed. It is a policy
choice applicable to the deployed network</RCC>

- 4.1.8, I am surprised not to see a recommendation that
separate group keys SHOULD be used for different applications
in the same bulding network. But that may be too fine grained
a recommendation for this document perhaps.

<RCC>That is a separate issue from securing RPL messages, which is what
this section is about</RCC>

- 5.1.2.1, I think it'd be clearer to say Imin should be
between 10 and 50 ms. The "10 - 50 ms" notation can be
confusing. (Same elsewhere.)

<RCC>Agree suggestion is clearer</RCC>

- section 7, 3rd para, "can rely on" is sales language, please
strike that or s/rely on/depend upon/

<RCC>
Rephrase as:

"The following mechanisms MAY be used: (i) pre-installation using an
out-of-band method, (ii) secure delivery when a device is introduced into
the network or (iii) secure delivery by a trusted neighbouring device."
</RCC>

- section 7, 3rd para, last sentence: this is sales language
and should be deleted. Or perhaps s/is/SHOULD be/ would turn
it back into a piece of specification language.

<RCC>Agree with suggested change</RCC>

- 7.1 - this is odd text to see in a proposed standard, but I
think it's accurately describing the level of interop to
expect in RPL security, so is probably the right thing to say.
I'd argue that it'd be even better to bluntly admit/say that
there is currently no interoperable automated key management
for RPL. (Same for 7.3) Or, and better, to fix that lack. (See
my discuss point.)

<RCC>There are many ways to achieve key distribution and in some respects
it would be nice to see one single way to do it. However, this is unlikely
to ever happen. The main reason is that a deployment standard is a complex
animal of which RPL is typically one small part. The key management is also
just a part and in itself typically is a conglomeration of various RFCs and
applicability statements, irrespective of what routing protocol is chosen
for said deployment. ZigBee IP is a good example of a full interoperable
deployment and there is an extensive list of 43 RFCs and IDs directly
referenced, not to mention the further indirect references from those. We
chose which protocols to use for key management and set security policy
</RCC>

- 7.2, 1st sentence: this is meaningless as I read it - what
are you trying to say?

- 7.2, when a node is stolen, the chances are that any keys
contained in the node are at significant risk of being leaked.

<RCC>To be honest, I never quite understood the need for this section.
Peter wanted this in</RCC>

- 7.3, I do not believe that [I-D.keoh-dice-multicast-security]
is necessarily going to proceed via the DICE WG. Depending
on it would be fairly high-risk in any case.

<RCC>I would remove the last sentence. It doesn't add anything</RCC>

- 7.4, last sentence: more sales talk

<RCC>I would remove the last sentence. It doesn't add anything</RCC>

- 7.5, what is this specifying? I don't get it. Does 7416 set
out what to implement to get interop? (I didn't think so, but
nor does this seem to.)

<RCC>It seems to be just a summary section</RCC>

On 20 May 2015 at 04:49, Stephen Farrell <stephen.farrell@cs.tcd.ie>; wrote:

>
> Thanks Peter,
>
> On 19/05/15 11:27, peter van der Stok wrote:
>
>>
>> If my responses above add to the confusion, I think that a telconf will
>> help.
>>
> Well I do confess to continuing confusion (not caused by you
> though) about how we get secure interop,in general here so
> maybe we ought think about it.
>
>> However, I should very much like that Robert Cragie and/or Michael
>> Richardson assist as well.
>> Their experience will clearly contribute to arrive at a satisfying
>> conclusion.
>>
> Good idea to do that first, yes.
>
> Cheers,
> S
>
>


-- 

Robert Cragie

Gridmerge Ltd.
8 Racecourse View,
Cottenham,
Cambridge, CB24 8AL, UK
+44 7919 620526
http://www.gridmerge.com