[secdir] Fwd: RE: Stephen Farrell's No Objection on draft-ietf-xrblock-rtcp-xr-discard-14: (with COMMENT)
Stephen Farrell <stephen.farrell@cs.tcd.ie> Wed, 26 June 2013 10:15 UTC
Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6EA3D21E812A for <secdir@ietfa.amsl.com>; Wed, 26 Jun 2013 03:15:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.599
X-Spam-Level:
X-Spam-Status: No, score=-102.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id orfMopfxG5A5 for <secdir@ietfa.amsl.com>; Wed, 26 Jun 2013 03:14:56 -0700 (PDT)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) by ietfa.amsl.com (Postfix) with ESMTP id C583121E8123 for <secdir@ietf.org>; Wed, 26 Jun 2013 03:14:55 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id A84C2BECF for <secdir@ietf.org>; Wed, 26 Jun 2013 11:14:33 +0100 (IST)
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id b1+t6H-YHy9Q for <secdir@ietf.org>; Wed, 26 Jun 2013 11:14:33 +0100 (IST)
Received: from [IPv6:2001:770:10:203:f41a:f073:48c6:77b5] (unknown [IPv6:2001:770:10:203:f41a:f073:48c6:77b5]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id 8B666BE70 for <secdir@ietf.org>; Wed, 26 Jun 2013 11:14:33 +0100 (IST)
Message-ID: <51CABF09.5050107@cs.tcd.ie>
Date: Wed, 26 Jun 2013 11:14:33 +0100
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130510 Thunderbird/17.0.6
MIME-Version: 1.0
To: "secdir@ietf.org" <secdir@ietf.org>
References: <9904FB1B0159DA42B0B887B7FA8119CA1AEEC7@AZ-FFEXMB04.global.avaya.com>
In-Reply-To: <9904FB1B0159DA42B0B887B7FA8119CA1AEEC7@AZ-FFEXMB04.global.avaya.com>
X-Enigmail-Version: 1.5.1
X-Forwarded-Message-Id: <9904FB1B0159DA42B0B887B7FA8119CA1AEEC7@AZ-FFEXMB04.global.avaya.com>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
Subject: [secdir] Fwd: RE: Stephen Farrell's No Objection on draft-ietf-xrblock-rtcp-xr-discard-14: (with COMMENT)
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 26 Jun 2013 10:15:00 -0000
Anyone interested in thinking about whether there might be side-channels caused by xrblock? [1] Or even in just giving them a general presentation on side-channels to help 'em figure out if they think there's an issue or not? Once the meeting schedule is firmed up I'll maybe ask on saag but if someone here is interested in helping 'em just let me know. Ta, S. [1] http://tools.ietf.org/wg/xrblock/charters -------- Original Message -------- Subject: RE: Stephen Farrell's No Objection on draft-ietf-xrblock-rtcp-xr-discard-14: (with COMMENT) Date: Wed, 26 Jun 2013 10:06:00 +0000 From: Romascanu, Dan (Dan) <dromasca@avaya.com> To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, The IESG <iesg@ietf.org> CC: xrblock-chairs@tools.ietf.org <xrblock-chairs@tools.ietf.org>, draft-ietf-xrblock-rtcp-xr-discard@tools.ietf.org <draft-ietf-xrblock-rtcp-xr-discard@tools.ietf.org> Hi, If this is a generic problem that can possibly impact several xrblock documents, maybe we can have a security expert (a.k.a. co-ponderer) attend the XRBLOCK meeting and discuss the issue with us. We seem to have a pretty light wg agenda in Berlin, so it won't be a problem to find time on it. Thanks and Regards, Dan > -----Original Message----- > From: Stephen Farrell [mailto:stephen.farrell@cs.tcd.ie] > Sent: Tuesday, June 25, 2013 8:01 PM > To: The IESG > Cc: xrblock-chairs@tools.ietf.org; draft-ietf-xrblock-rtcp-xr- > discard@tools.ietf.org > Subject: Stephen Farrell's No Objection on draft-ietf-xrblock-rtcp-xr- > discard-14: (with COMMENT) > > Stephen Farrell has entered the following ballot position for > draft-ietf-xrblock-rtcp-xr-discard-14: No Objection > > When responding, please keep the subject line intact and reply to all > email addresses included in the To and CC lines. (Feel free to cut this > introductory paragraph, however.) > > > Please refer to http://www.ietf.org/iesg/statement/discuss-criteria.html > for more information about IESG DISCUSS and COMMENT positions. > > > > > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > > Sam Hartman's secdir review [1] of xr-discard-rle-metrics raised a good > question that's probably better asked here, or here as well. I'm not > asking for any change in this or any specific xrblock document, but I > would ask that the WG do consider this. Sam said: > > "Has the WG analyzed implications of providing feedback to an attacker > on what specific SRTP packets are discarded? In the past we've run into > trouble with security systems that were too verbose in error reporting. > As an example, in certain public-key crypto constructions knowing > whether a packet produced a decoding error vs a signature error after > decryption can provide an attacker generating forged packets valuable > information to attack the system. > > It's quite possible that SRTP doesn't have problems in this regard. I > just want to confirm that the analysis has been done." > > I think that's a good question because knowing at what stage in a > security protocol a message was barfed or getting timing statistics can > expose information about how some crypto operation went wrong, and that > can be exploited via statistical techniques with a sufficiently large > number of messages. See for example the lucky-13 attacks against > certain cryptographic modes in TLS [2] or perhaps the "original" of the > species, the Bleichenbacher attack. [3] > > I suspect the best thing to do might be for the wg to try grab a > security person and ponder this for a bit, if that's not already been > done. I'm happy to try help find a co-ponderer if you want:-) Maybe we > can ambush one in a hallway in Berlin. > > [1] http://www.ietf.org/mail-archive/web/secdir/current/msg04048.html > [2] http://www.isg.rhul.ac.uk/tls/Lucky13.html > [3] https://en.wikipedia.org/wiki/Adaptive_chosen-ciphertext_attack >
- [secdir] Fwd: RE: Stephen Farrell's No Objection … Stephen Farrell
- Re: [secdir] Fwd: RE: Stephen Farrell's No Object… Uri Blumenthal