IETF Logo Mail Archive

Re: [saag] Fw:Fw:New Version Notification for draft-cui-dhc-dhcpv6-encryption-02.txt

Randy Bush <randy@psg.com> Wed, 29 July 2015 19:48 UTC

Return-Path: <randy@psg.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 21D761AD0BF for <saag@ietfa.amsl.com>; Wed, 29 Jul 2015 12:48:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.91
X-Spam-Level:
X-Spam-Status: No, score=-1.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bHns_e13P1SB for <saag@ietfa.amsl.com>; Wed, 29 Jul 2015 12:47:57 -0700 (PDT)
Received: from ran.psg.com (ran.psg.com [IPv6:2001:418:8006::18]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CAD291AD0D3 for <saag@ietf.org>; Wed, 29 Jul 2015 12:47:57 -0700 (PDT)
Received: from localhost ([127.0.0.1] helo=ryuu.psg.com) by ran.psg.com with esmtp (Exim 4.82) (envelope-from <randy@psg.com>) id 1ZKXKV-0005oo-2N; Wed, 29 Jul 2015 19:47:55 +0000
Date: Thu, 30 Jul 2015 04:47:53 +0900
Message-ID: <m2y4hyg2za.wl%randy@psg.com>
From: Randy Bush <randy@psg.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>
In-Reply-To: <55B8D49A.1010402@cs.tcd.ie>
References: <313da830.6be8.14ed8564467.Coremail.lilishan48@126.com> <m2mvyfh1re.wl%randy@psg.com> <55B8A692.8080409@cs.tcd.ie> <m2a8ufgpjn.wl%randy@psg.com> <55B8D49A.1010402@cs.tcd.ie>
User-Agent: Wanderlust/2.15.9 (Almost Unreal) Emacs/22.3 Mule/5.0 (SAKAKI)
MIME-Version: 1.0 (generated by SEMI 1.14.7 - "Harue")
Content-Type: text/plain; charset="US-ASCII"
Archived-At: <http://mailarchive.ietf.org/arch/msg/saag/4i5BnxyYXSbezXBuSCRh3bYHQPw>
Cc: Security Area Advisory Group <saag@ietf.org>
Subject: Re: [saag] Fw:Fw:New Version Notification for draft-cui-dhc-dhcpv6-encryption-02.txt
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 29 Jul 2015 19:48:03 -0000

>> but this is a tangent.  the point is that protocols which rely on
>> keying really need to nail the key distribution model(s).
> I agree. But I think one of the issues here is that we don't (afaik)
> have a worked out analysis of how various key distribution models play
> with DHCP.
>> while tofu may be one, is it really one that security folk think the
>> ietf should advocate for set-up authenticity?  it's not how i want to
>> make the wsj; and coffee shop mitm will be in the wsj soon enough.
> Fair enough. OTOH, I don't think there will be one key distribution
> model that will work well for all DHCP deployments.

which is why i said "(s)" above.

> So we may end up having to specify a set of mechanisms, when each is
> suitable to use and the security considerations resulting. That's a
> chunk of work, and a chunk of work where these authors are looking for
> help.  I do hope someone's going to volunteer to help them with that.

the problem is, as i said in the meeting, we have a poor track record
here[0].  not a lot of good examples from which to steal.  and i am not
sure picking on dhcp is a good iconic example.  have you looked at the
anima wg?

but back to picking on dhcp, :)

within an enterprise, one is tempted to suggest enterprise-controlled
credential distribution; i get a cert (or whatever) oob to let my laptop
authenticate the dhcp service and vice versa.  but enterprises are
seeing a lot of byod, and i am not sure how they are dealing with that.
do they really want to authenticate all mobiles?

in the coffee shop, one would like the mobile device to be given the
dhcp server's credentials out of band; i suggested a QR code on the wall
as one (i.e. there could be others) example.  and, unlike the
enterprise, i think the mobile device should reveal as little as
possible about itself.

bottom line: i do not think there are easy solutions in the introduction
space.  but it is our responsibility.  and i am trying to think about
it and others should too.

randy

--

[0] - i am remonded of the plethora of documents with insecure
      transports where the sec cons says "use ipsec" with no hint about
      keying, how the upper layer can even tell if ipsec is being used,
      ...

v2.23.0 | Report a Bug | By Email