IETF Logo Mail Archive

Shephered writeup for draft-ietf-bfd-secure-sequence-numbers

"Reshad Rahman (rrahman)" <rrahman@cisco.com> Sun, 14 June 2020 18:50 UTC

Return-Path: <rrahman@cisco.com>
X-Original-To: rtg-bfd@ietfa.amsl.com
Delivered-To: rtg-bfd@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 048A63A093A; Sun, 14 Jun 2020 11:50:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.597
X-Spam-Level:
X-Spam-Status: No, score=-9.597 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=NTQdu0KG; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=vMbK+kPJ
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nPZHfWE3G2he; Sun, 14 Jun 2020 11:50:15 -0700 (PDT)
Received: from alln-iport-4.cisco.com (alln-iport-4.cisco.com [173.37.142.91]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D49163A0938; Sun, 14 Jun 2020 11:50:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=15831; q=dns/txt; s=iport; t=1592160614; x=1593370214; h=from:to:subject:date:message-id:mime-version; bh=EYvs5vzfpyBIV82duTgiU2l23J6+CAUlOh3UJCHMKTk=; b=NTQdu0KGODC1UpLL4QuznniXfEnHz1dY+y2l/cuN+RRuFin396qUS0Dz Fxd2azdknL1MR3oJClf7cx6TPFZ72plS4SychM1EHw7XW5M+HmXb7Xqib igckUAAd3RmMk7R5PuV/2xjHWJJIt9wFts96KgJxhuyeTSIPhbbGvbhx3 g=;
IronPort-PHdr: 9a23:6tG8jRea+EuN4zwAs/Ni2E0SlGMj4e+mNxMJ6pchl7NFe7ii+JKnJkHE+PFxlwaQB9fa5u5Kze3MvPOoVW8B5MOHt3YPONxJWgQegMob1wonHIaeCEL9IfKrCk5yHMlLWFJ/uX3uN09TFZX/akHc5Hqo4m1aFhD2LwEgIOPzF8bbhNi20Obn/ZrVbk1IiTOxbKk0Ig+xqFDat9Idhs1pLaNixw==
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0CgCQAucOZe/5hdJa1mHgEBCxIMgy0vUQdvWC8sCoNaQINGA6EnhGiBQoEQA1ULAQEBDAEBJQgCBAEBhEQZghUCJDgTAgMBAQsBAQUBAQECAQYEbYVbDIYFBhEdAQEqCgQRAQZEAgQwJwQBNIMEAYF+TQMuAQ6XNpBoAoE5iGF2gTKDAQEBBYFGQYMZGIIOAwaBOIJkiUkdGoFBP4E4HIVnAgMBgUJGgmczgi2SI4Y3iyGQRgqCWQSIOJBfAx2CcIkakl2RF4oKlCMCBAIEBQIOAQEFgWoigVZwFRohKgGCCgEzUBcCDY4eCwIWg06FFIVCdA0qAgYBBwEBAwl8jgAtgQYBgRABAQ
X-IronPort-AV: E=Sophos;i="5.73,512,1583193600"; d="scan'208,217";a="496313846"
Received: from rcdn-core-1.cisco.com ([173.37.93.152]) by alln-iport-4.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 14 Jun 2020 18:50:12 +0000
Received: from XCH-ALN-003.cisco.com (xch-aln-003.cisco.com [173.36.7.13]) by rcdn-core-1.cisco.com (8.15.2/8.15.2) with ESMTPS id 05EIo85u028047 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Sun, 14 Jun 2020 18:50:10 GMT
Received: from xhs-rcd-002.cisco.com (173.37.227.247) by XCH-ALN-003.cisco.com (173.36.7.13) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Sun, 14 Jun 2020 13:50:07 -0500
Received: from xhs-rcd-002.cisco.com (173.37.227.247) by xhs-rcd-002.cisco.com (173.37.227.247) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Sun, 14 Jun 2020 13:50:06 -0500
Received: from NAM02-SN1-obe.outbound.protection.outlook.com (72.163.14.9) by xhs-rcd-002.cisco.com (173.37.227.247) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Sun, 14 Jun 2020 13:50:06 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=EluVP55R/3PV/7Li481In3mFniYZlpGfIFV7BOYQnIQk7rVP+nJP81ViOWD4vOW+9b4z8CKX7XapqdQ8aWJwbB4rv6+qxZxy46kaCjKJzlzaPGFf6uhBCkv+NnrDBtpihbl1/IZz5iWKyYau84MhvENS3kPXJRHupsiOw/Y2DrY7G7LiK0PvjGvAPG1heaP19KaGZVcAadOnTZqz/IQAtNvKHljkmixRYDtaCVIfc1ZLhznRgR/SNlAZhpapawWZq3lflHVZlrswr6th2oWsRoGErLLfLbz0JMWqjQIYsLQSy6ZfpkEWhUMMIx5MmqK5hyCQLYglXZ1ClC1L2l/HLQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=EYvs5vzfpyBIV82duTgiU2l23J6+CAUlOh3UJCHMKTk=; b=gYJkXl+/e2Qi3F3b4RfJNy6NyRqVBRFDm1MgzHL0xhc0ngskl/VDqgnj5jXUKNpHyeI3y4ZfBqKmh13q5ENxmIdfl0fpkexfhPppQQwDsa7yfB3NAHlBX3VO1WHadlCLaefIRFYTcE1RtZvxjEltvV1dHRJuioBCR6Sqnopg7KggGu1D9SKGlWYb2/lDBFObfBXqcppnlV9tGXUlGIibwXnm1skipddDhcnJNM1LvZDEXCFp7XIE7oEymKbS9QSk7fLUMlk2A31AoVLgu44gEqWZG7CJdXtB3TNj+sET5pX18V2P06YgoWIFP4r0NSzfl4JTqXEDADR5hbrTZ/q5lA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=EYvs5vzfpyBIV82duTgiU2l23J6+CAUlOh3UJCHMKTk=; b=vMbK+kPJJz98EPEfCKzaQg0qA3HZQuIE4RefW5HI91ehDNLn6LJR+7/nUq7iAlEvY7jEEa1sYS4YdwfGJroCMcBZ5opdOxBWK0b0dNRrzmaRIjp3O2HjHzsUdTELGV87qodNspbdoIlsIFuWOfUjcgtA873D0f/UN4tqGOGS+Kw=
Received: from BN6PR11MB3875.namprd11.prod.outlook.com (2603:10b6:405:80::37) by BN6PR11MB3953.namprd11.prod.outlook.com (2603:10b6:405:7f::24) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3088.21; Sun, 14 Jun 2020 18:50:04 +0000
Received: from BN6PR11MB3875.namprd11.prod.outlook.com ([fe80::3076:a505:335e:a8ff]) by BN6PR11MB3875.namprd11.prod.outlook.com ([fe80::3076:a505:335e:a8ff%6]) with mapi id 15.20.3088.027; Sun, 14 Jun 2020 18:50:04 +0000
From: "Reshad Rahman (rrahman)" <rrahman@cisco.com>
To: "rtg-bfd@ietf.org" <rtg-bfd@ietf.org>, "draft-ietf-bfd-secure-sequence-numbers@ietf.org" <draft-ietf-bfd-secure-sequence-numbers@ietf.org>
Subject: Shephered writeup for draft-ietf-bfd-secure-sequence-numbers
Thread-Topic: Shephered writeup for draft-ietf-bfd-secure-sequence-numbers
Thread-Index: AQHWQnydOjL1csFxTkuH4xh9ENv5xQ==
Date: Sun, 14 Jun 2020 18:50:04 +0000
Message-ID: <C65449E5-450E-4F61-856B-D7B6994A3E3B@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.37.20051002
authentication-results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [70.31.50.95]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: cc937ce7-130a-4df3-877b-08d81093c067
x-ms-traffictypediagnostic: BN6PR11MB3953:
x-microsoft-antispam-prvs: <BN6PR11MB39534DF7898C771ADD30C5E5AB9F0@BN6PR11MB3953.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:4714;
x-forefront-prvs: 04347F8039
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: Qs6u4q8sGEN8/354931rcx0FOSMG+tQO2jUpAvJGLkTwQa/RG6NI+f3NlatABmycEmV/GnyB+z3ryrB8SRanyp0W1lLvL5b3wwhoLz4E1CjNoKWQQKi9rArWK6d9PiEAaysLfHj9SwKgRqvp+KX0NGRHSR9KEogAUVhk538pjBQ/ErVzUf7Er53H9zSdNOZ6lQMtQhTL6RySztEgBCJU5orXG57hdzvVeOAibNJpYI8TV6Mh+5Yh1tBr6ZaNVtHmci1vPX0uWLVcB9SOwK/rqichFBXwIDNqchVq5Rz9f7b/ARDJrKbXJR7jVL9rV+Ij4uldGfVILrpN+9TWOqFjgScVkVQvPVwWZLKlzRbTMfIuD6LNeJTjoArMRITM5Xb7/a5TmqL7JoYpj0d9j4kcFw==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BN6PR11MB3875.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(136003)(366004)(39860400002)(396003)(346002)(376002)(66946007)(2616005)(66476007)(66556008)(64756008)(66446008)(91956017)(478600001)(2906002)(316002)(8936002)(6486002)(36756003)(186003)(6506007)(76116006)(6512007)(966005)(450100002)(26005)(86362001)(33656002)(71200400001)(166002)(8676002)(5660300002)(110136005)(83380400001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: jui3vQVTh1aZQe3IEqAJL3knPNgV2VWuaTHCYD+VbZ37Cv55LRnmRKwG5fVKP6Ife4NtO0KMi9fRBzAL0PnUgYxjlGDb+EucTgifWPCLV/8a0cL1wqDzuIyeoEovBFWJFeJtqaRvf44W3klTvvQL4NLUdroBh2ablv+zakRHrZyosPVV5IjVge1vKBYEldELklzKokcw2Uz4nS5/IMwQSF4hEmxOLeSJYS3+Apm9aHPqgkDqVqHxPSU/Pt+24/sOjrUHqNyS06QnyVTvGFBOiNT2yXRpGr68AeE3mpXHpwqKJvBEYZdTiDastNtnOEGGQFeIpBvNN/QK/8nfcWcv3RweaM5DevFOM9dYv/5jIAyFOgEWVyZihg4JSjARu8f1EW1At4E4sPuPS8It5Jdg98MszOgH89PiztORbJaWLVZkZ85qcTg2NtlvOKdnqCQBDQeVsvsrv6onLl5H2FqHza4vS2nAYKIHNb65gpYDxZU=
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_C65449E5450E4F61856BD7B6994A3E3Bciscocom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: cc937ce7-130a-4df3-877b-08d81093c067
X-MS-Exchange-CrossTenant-originalarrivaltime: 14 Jun 2020 18:50:04.5673 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 1V2W9cqd+hgULfrdxn3NLZAd7Mag4RTukV/OJ87YnH8dcM6T6+ijqNWl0fTb7B22sSLSYVnV9DAA6TRAKb0osg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR11MB3953
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.13, xch-aln-003.cisco.com
X-Outbound-Node: rcdn-core-1.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtg-bfd/Y_R6q_XCxzg9reJnrATZl5mXWFo>
X-BeenThere: rtg-bfd@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "RTG Area: Bidirectional Forwarding Detection DT" <rtg-bfd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtg-bfd/>
List-Post: <mailto:rtg-bfd@ietf.org>
List-Help: <mailto:rtg-bfd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 14 Jun 2020 18:50:17 -0000

Authors, WG,

The writeup is available at https://datatracker.ietf.org/doc/draft-ietf-bfd-secure-sequence-numbers/shepherdwriteup/

For convenience I’ve copied the comments on the document below.

Regards,
Reshad.


This document updates RFC5880. This is missing from the title page header.



Abstract

s/a security enhancements/a security enhancement/

Suggestion: “This document describes a security enhancement for the sequence number used in BFD control packets”.



Requirements Language

Please put this later in the document, e.g. after introduction. Add RFC8174, and add it as normative reference.



Introduction

Don’t use Authentication TLV, instead use “Authentication Section”. E.g.

s/in BFD authentication TLVs/in the BFD authentication section/





s/pseudo-random sequence numbers on the frame/pseudo-random sequence numbers in BFD control packets/

I’m not sure I understood the last sentence starting with “Further security may be ….”. What is “resetting un-encrypted sequence”? Does it mean that when the sequence numbers rolls over, it’s reset to a pseudo-random number?



Section 2

Rename to “Theory of operation”

Suggest splitting the  1st sentence, e.g.

   Instead of inserting a monotonically, sometimes occasionally, increasing

   sequence number in BFD control packets, a hash is inserted instead.

   The hash is computed, using a shared key, on the sequence number. That

   computed hash is then inserted into the sequence number field of the

   packet.



In the following sentence, the part “used in computing an authenticated packet” is referring to computing the SHA1/MD5 hash/digest for the packet? That sentence should be clarified then.

                                                                   In

   case of BFD Authentication [I-D.ietf-bfd-optimizing-authentication],

   the sequence number used in computing an authenticated packet would

   be this new computed hash.



Also, when referring to the optimization draft, better to use e.g. “optimized BFD authentication” than “BFD authentication”. The latter implies per-RFC5880 BFD authentication.



s/psuedo/pseudo/

s/ scope of this draft/ scope of this document/

s/seuquence/sequence/



Not clear to me what the following means.

                              Note: The first sequence number can

   be obtained using the same logic as the My Discriminator value.



The diagram reads well for regular authentication. For secure sequence number, I think the diagram would gain clarity from an ordered list of steps on the sender and receiver. The current list before the diagram is useful,  I believe the sender steps would start at “H1:” and the receiver steps at hash’. And yes, hash’ needs an explanation. On the receiver side, for validating that ’s’ is a good sequence number, the range has to be checked as mentioned in the previous paragraph.



Section 5

s/ stabiluty/ stability/

s/admistratively/administratively/

s/Sequential nature/The sequential nature/

v2.23.0 | Report a Bug | By Email