Re: I-D Action: draft-ietf-bfd-optimizing-authentication-10.txt

Manav Bhatia <manavbhatia@gmail.com> Thu, 23 July 2020 15:59 UTC

Return-Path: <manavbhatia@gmail.com>
X-Original-To: rtg-bfd@ietfa.amsl.com
Delivered-To: rtg-bfd@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1B5483A0A50 for <rtg-bfd@ietfa.amsl.com>; Thu, 23 Jul 2020 08:59:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id At4H-WwthFQo for <rtg-bfd@ietfa.amsl.com>; Thu, 23 Jul 2020 08:59:02 -0700 (PDT)
Received: from mail-il1-x129.google.com (mail-il1-x129.google.com [IPv6:2607:f8b0:4864:20::129]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E78B43A0A01 for <rtg-bfd@ietf.org>; Thu, 23 Jul 2020 08:59:01 -0700 (PDT)
Received: by mail-il1-x129.google.com with SMTP id t4so4748592iln.1 for <rtg-bfd@ietf.org>; Thu, 23 Jul 2020 08:59:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=ba3/5xM/+V689eR1nQzp/IkH7l1cdNE0Cn0YhaP2NCY=; b=AJ1luSnUIP5L+5+itIsjPC2LM+qVkprPellqWvDLMZr8EGldJJlJtz88pKZB9vFISh 2G2yrnR8kntbbyj6nQuhdAZP4qPOVa/opP28bHAj/uursfhD3L9JkmYJfyvZlwLMqN6F 8wskHcV6QMECQsBNhCSYVLJXoO+fWEoj7/NAlEEJfSdbd34Tod9ZgtRlOQYdgmsAs/un QaeltmnV+02S+orSxnGRy83IQaJKu/I1OU4D2W1Wwxx13Hc1pwstGr0endautrEN9bBN qiBAyC+uexRDr7kk8TzdKQm3Oig1kywSPaTcXal17woHxeUvorbpk+uiqjOcup1O2sRz 0X2g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=ba3/5xM/+V689eR1nQzp/IkH7l1cdNE0Cn0YhaP2NCY=; b=k0C9xNbDT9NsnbWtk7cY/FsRXIgByZFSsjkwxqLSIr37uNjLtUjfgIjTGvy1xUUcrM GHIFy3LD4OqO6LxFo+pNQeU/cXAB8OWGL+fkLlUQehfHCMglHm7YhuSq8dT1dgYHDI20 gr8mjIM3wW2BrHBQHXYOcpGIyKT0xFobKCZ+o5+RhvEAoAoz06xSHOkLkNe5lNAdsdIv M7v6EJpK9LbE1w2Bmldzx8hU7vZbTsFfWOzfPvA+rfJSeK97cM7hxmBRa7NG/kXqu8Wk LRzQcXKoSs3ts+n9Re302UNdqjzUOHmtWMkbylDB0RZEeeUM6pGWcxK3bCD9tAihQiwe x09w==
X-Gm-Message-State: AOAM533Y9C7Oophy2AkleVxHhfheiie/ppJhN3j4iFO6zT5gyFVDnTUW U+cIqy9cR8sXuNH6hd30OW/Nc3ynVevna3SRU78=
X-Google-Smtp-Source: ABdhPJy+PFKxogwJTeYHLdJq0XGzXjzjh28hfDEHXccCL2A3mxYiQXUGlG5S5SoRN8ZyvYFw8O4zPg+qip/QHLyhUNw=
X-Received: by 2002:a92:c213:: with SMTP id j19mr5774920ilo.40.1595519940983; Thu, 23 Jul 2020 08:59:00 -0700 (PDT)
MIME-Version: 1.0
References: <159466724499.14803.15233027731222579839@ietfa.amsl.com> <FC5206AF-9CDB-4CC2-9967-B4BF5A17141B@gmail.com> <20200721004857.GB31779@pfrc.org> <2C632683-57D0-4E40-809E-6A907B38CDB5@gmail.com> <AF1DDAD1-D362-4BCA-A2D6-EB1477BDBDEF@cisco.com> <CAG1kdoifsdnawsB8jhcDMbprQt4e8p0g3rxxD2Wuw+5pH79e1g@mail.gmail.com> <20200723141024.GC6821@pfrc.org> <CAG1kdojpsKVnC1tr6fj7cuxu4wC7TGtx-hyVcDaxf1bJYrfBMA@mail.gmail.com> <20200723155632.GA8728@pfrc.org> <4C927D8D-3851-4CBE-8A14-FB1ED0059DF0@cisco.com>
In-Reply-To: <4C927D8D-3851-4CBE-8A14-FB1ED0059DF0@cisco.com>
From: Manav Bhatia <manavbhatia@gmail.com>
Date: Thu, 23 Jul 2020 21:28:49 +0530
Message-ID: <CAG1kdojK+G7w4MgpGsqvTKbftfY0kwy+RRCmWThpfTAyzZUaew@mail.gmail.com>
Subject: Re: I-D Action: draft-ietf-bfd-optimizing-authentication-10.txt
To: "Reshad Rahman (rrahman)" <rrahman@cisco.com>
Cc: Jeffrey Haas <jhaas@pfrc.org>, Mahesh Jethanandani <mjethanandani@gmail.com>, "rtg-bfd@ietf. org" <rtg-bfd@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000050858505ab1defee"
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtg-bfd/dSCRlPUZrOb3s8VO6brzzaJzldQ>
X-BeenThere: rtg-bfd@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "RTG Area: Bidirectional Forwarding Detection DT" <rtg-bfd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtg-bfd/>
List-Post: <mailto:rtg-bfd@ietf.org>
List-Help: <mailto:rtg-bfd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 23 Jul 2020 15:59:03 -0000

I would respond to that if saying "Only secure it, if you need to" :-)

Cheers, Manav

On Thu, Jul 23, 2020 at 9:23 PM Reshad Rahman (rrahman) <rrahman@cisco.com>
wrote:

> They most likely will (
>
>     I agree that it adds no additional security per our analysis.
> However, I
>     expect this dialog to happen with the security ADs.  Their typical
> answer is
>     "if you could secure it, you should".
>
>     If they don't start this conversation, we're done. :-)
>
>     -- Jeff
>
>