Re: [secdir] [Rift] Secdir last call review of draft-ietf-rift-applicability-14
wei.yuehua@zte.com.cn Thu, 25 April 2024 09:41 UTC
Return-Path: <wei.yuehua@zte.com.cn>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EEEF4C180B45; Thu, 25 Apr 2024 02:41:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.194
X-Spam-Level:
X-Spam-Status: No, score=-4.194 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2AdeUNTsjsOe; Thu, 25 Apr 2024 02:41:30 -0700 (PDT)
Received: from mxhk.zte.com.cn (mxhk.zte.com.cn [63.216.63.40]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EB60AC14F5F3; Thu, 25 Apr 2024 02:41:23 -0700 (PDT)
Received: from mxct.zte.com.cn (unknown [192.168.251.13]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mxhk.zte.com.cn (FangMail) with ESMTPS id 4VQ9pk1KHLz8XrS0; Thu, 25 Apr 2024 17:41:18 +0800 (CST)
Received: from mse-fl2.zte.com.cn (unknown [10.5.228.133]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mxct.zte.com.cn (FangMail) with ESMTPS id 4VQ9p81TFVz501gR; Thu, 25 Apr 2024 17:40:48 +0800 (CST)
Received: from szxlzmapp06.zte.com.cn ([10.5.230.252]) by mse-fl2.zte.com.cn with SMTP id 43P9ed8Z025903; Thu, 25 Apr 2024 17:40:39 +0800 (+08) (envelope-from wei.yuehua@zte.com.cn)
Received: from mapi (szxlzmapp04[null]) by mapi (Zmail) with MAPI id mid13; Thu, 25 Apr 2024 17:40:42 +0800 (CST)
Date: Thu, 25 Apr 2024 17:40:42 +0800
X-Zmail-TransId: 2b06662a251a00b-67a6c
X-Mailer: Zmail v1.0
Message-ID: <20240425174042252tiTLcCOVNVv3bOV4EnI3y@zte.com.cn>
In-Reply-To: <474B9F9F-DE2C-4893-9F30-CAD134AE66BF@juniper.net>
References: 171346691888.35849.11446635845987775680@ietfa.amsl.com, 152A3F33-B9D4-4BA9-BC53-852D2745349A@juniper.net, CACsn0cnx_VmEO1UoFY4xchH=XCdFwHeE4rVxtQ7zPqXcq6Fu4g@mail.gmail.com, 474B9F9F-DE2C-4893-9F30-CAD134AE66BF@juniper.net
Mime-Version: 1.0
From: wei.yuehua@zte.com.cn
To: prz=40juniper.net@dmarc.ietf.org, watsonbladd@gmail.com
Cc: secdir@ietf.org, draft-ietf-rift-applicability.all@ietf.org, last-call@ietf.org, rift@ietf.org
Content-Type: multipart/mixed; boundary="=====_001_next====="
X-MAIL: mse-fl2.zte.com.cn 43P9ed8Z025903
X-Fangmail-Anti-Spam-Filtered: true
X-Fangmail-MID-QID: 662A253E.000/4VQ9pk1KHLz8XrS0
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/1IqkqZI8DVIzsepRxSKemyhWKSA>
Subject: Re: [secdir] [Rift] Secdir last call review of draft-ietf-rift-applicability-14
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Apr 2024 09:41:34 -0000
Hi Tony and Watson, Thank you for the comments. I'd like to add the following text to the draft: As outlined in Section 9.9 "Host Implementations" of [RIFT], hosts as well as VMs act as RIFT devices are possible. KMP such as KV for key roll-over in the fabric using a symmetric key that can be changed easily when compromised. Wherein symmetric key of a host is more likely to be compromised than of a in-fabric networking node. Will it make sense? Best Regards, Yuehua Wei Original From: AntoniPrzygienda <prz=40juniper.net@dmarc.ietf.org> To: Watson Ladd <watsonbladd@gmail.com>; Cc: secdir@ietf.org <secdir@ietf.org>;draft-ietf-rift-applicability.all@ietf.org <draft-ietf-rift-applicability.all@ietf.org>;last-call@ietf.org <last-call@ietf.org>;rift@ietf.org <rift@ietf.org>; Date: 2024年04月19日 03:37 Subject: Re: [Rift] Secdir last call review of draft-ietf-rift-applicability-14 Fair comment. Yes, VMs could participate and it merits a discussion though RIFT already has a section 9.9 on end system implementation and key considerations attached to it. Further, thinking through what you say,I see that the applicability draft could be more specific on using e.g. KV for key roll-over, i.e. the fabric using a symmetric key pretty much that can be changed easily when compromised and here yes, it could indicate that it could easily support end-system well-known symmetric that can be changed when compromised contrary to a in-fabric (i.e. networking nodes) key that is less likely to be compromised. — Tony > On 18 Apr 2024, at 21:27, Watson Ladd <watsonbladd@gmail.com> wrote: > > [External Email. Be cautious of content] > > > On Thu, Apr 18, 2024 at 12:18 PM Antoni Przygienda <prz@juniper.net> wrote: >> >> Hmm, surprising comment a bit … >> >> RIFT draft has a serious security section in 6.9 and a serious security considerations sections in section 9 and IMO it belongs there. AFAIS those section cover extensively security models possible and all kind of threats/consdierations on secure implementations. Of course lots of that could be moved into applicability (should it? Is security “applicability” even and if so, which part of it? Guide how to deploy it securely? ) but I don’t think that’s the intention and I’m bits lost further what “specificity” means here specifically ;-) e.g. Key management considerations do not seem particularly specific to rift as a protocol AFAIS unless what is desired is some RFC reference that describes key management in routing protocols and the pluses/minuses . > > As an example of the kind of interaction I'm thinking about RIFT says > "use one symmetric key for ZRT". The applicability document seems (and > maybe I'm wrong in this) to have VMs directly participate in the > fabric for mobility. That means all VMs have the symmetric key. You > probably don't want that. > > Sincerely, > Watson Ladd _______________________________________________ RIFT mailing list RIFT@ietf.org https://www.ietf.org/mailman/listinfo/rift
- [secdir] Secdir last call review of draft-ietf-ri… Watson Ladd via Datatracker
- Re: [secdir] Secdir last call review of draft-iet… Antoni Przygienda
- Re: [secdir] Secdir last call review of draft-iet… Watson Ladd
- Re: [secdir] Secdir last call review of draft-iet… Antoni Przygienda
- Re: [secdir] [Rift] Secdir last call review of dr… wei.yuehua