Re: [secdir] Secdir early review of draft-ietf-idr-bgp-optimal-route-reflection-21
Linda Dunbar <linda.dunbar@futurewei.com> Wed, 16 December 2020 15:38 UTC
Return-Path: <linda.dunbar@futurewei.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 42F573A0E94; Wed, 16 Dec 2020 07:38:14 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.09
X-Spam-Level:
X-Spam-Status: No, score=-2.09 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, T_SPF_PERMERROR=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=futurewei.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ab9zVttucAWi; Wed, 16 Dec 2020 07:38:13 -0800 (PST)
Received: from NAM12-BN8-obe.outbound.protection.outlook.com (mail-bn8nam12on2110.outbound.protection.outlook.com [40.107.237.110]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 68DAB3A0A73; Wed, 16 Dec 2020 07:38:12 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=HLEHdh+yyT9DbxynsDaoiwtb5OrCdXEkVr90OTw1bmvjXhzOtlcV0WUDMzE7FXgDLb2EYwIhF3S3k0ueMFqc46Qj6Qryk7pphekI+7EGKcTHRtaxxEGjC8yJrt9JkYqpQ2E60O6zPYuGhyNz7ZQKCiR0K5wi9zQTPSnjWQ2R85AWTQVdg8ghtA3Gtg5IxnmLAEUp71YiWbHvGNLNjrPvscVZ5BBpE+n7AWDBjTrIREfCUKTydLfb1OuMcH4c/Q/qCoDk3RXop/ml0Yt4ply1ynShn9tTnxmWJZx+JUqjF51MaN87b1rKDyQCfuWdn2uvCc0CRYW7Iad2LbwIIsUdYw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=nd4WZy6MthTFiEGsbakZXjLpXCHvJasY0f+bMSFkKsI=; b=BEmwzvQwMeevBIxrXq53AAYWc6pNEzfpEPH787CUEWdYY2th/WrP18SIIwr+ZTG2XbzhWxZuD13cypGdwwJVIpRjcc+7Bo7sa2IKhkK339InfM5maR77Dw4eeAEfdu8bJ2xNBrEBfhED/JbE6YFxsXEupcvrNvm8fo6rqa1CpFQmPduV6rY9gC2cV4P/d0o1Hj+Xj8vA+z2glPZxCn570xJ35pbEdfJWno1XsC6PHC2GIXodFULcQ4L09EstI4Od0jF17e7R7Qxwq9xP6TmWRduy/9k8Tf7WxmJ5lU+FxA1Zf5nWmJDBGZUQh96W7BJ6CMvOgouvBvbS8+Y8QUB94w==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=futurewei.com; dmarc=pass action=none header.from=futurewei.com; dkim=pass header.d=futurewei.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=Futurewei.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=nd4WZy6MthTFiEGsbakZXjLpXCHvJasY0f+bMSFkKsI=; b=bKpMhBLiTPzEcxYJgnqeg/OitPpSZwudhUBNr9jRXlUczfjzFuG5LUW44sCP8SlfMaPEYYha7HoeI2f+VRW96k18Yf9qhC59EkWDTTi7Isvp1M3JXaxuPHARl2Y1SiZwFLVvjaSp7KU2gQ/GPUdjoP7LEt42pabFNsRxaR4AYuQ=
Received: from DM6PR13MB2330.namprd13.prod.outlook.com (2603:10b6:5:cc::16) by DM5PR13MB1769.namprd13.prod.outlook.com (2603:10b6:3:131::9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3676.13; Wed, 16 Dec 2020 15:38:09 +0000
Received: from DM6PR13MB2330.namprd13.prod.outlook.com ([fe80::c1e2:96dd:2538:b0c4]) by DM6PR13MB2330.namprd13.prod.outlook.com ([fe80::c1e2:96dd:2538:b0c4%3]) with mapi id 15.20.3676.013; Wed, 16 Dec 2020 15:38:09 +0000
From: Linda Dunbar <linda.dunbar@futurewei.com>
To: "bruno.decraene@orange.com" <bruno.decraene@orange.com>, "secdir@ietf.org" <secdir@ietf.org>
CC: "idr@ietf.org" <idr@ietf.org>, "draft-ietf-idr-bgp-optimal-route-reflection.all@ietf.org" <draft-ietf-idr-bgp-optimal-route-reflection.all@ietf.org>
Thread-Topic: Secdir early review of draft-ietf-idr-bgp-optimal-route-reflection-21
Thread-Index: AQHW05nMSye7Py0U7US0dfMHa9Kuq6n51+8Q
Date: Wed, 16 Dec 2020 15:38:08 +0000
Message-ID: <DM6PR13MB2330C1E65AF50F7FD210E68885C50@DM6PR13MB2330.namprd13.prod.outlook.com>
References: <160806937175.20796.7391460851134145603@ietfa.amsl.com> <19398_1608116052_5FD9E754_19398_452_23_53C29892C857584299CBF5D05346208A49056412@OPEXCAUBM43.corporate.adroot.infra.ftgroup>
In-Reply-To: <19398_1608116052_5FD9E754_19398_452_23_53C29892C857584299CBF5D05346208A49056412@OPEXCAUBM43.corporate.adroot.infra.ftgroup>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: orange.com; dkim=none (message not signed) header.d=none;orange.com; dmarc=none action=none header.from=futurewei.com;
x-originating-ip: [72.180.73.64]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 0f6797e6-7ed8-4bc5-c7f7-08d8a1d89707
x-ms-traffictypediagnostic: DM5PR13MB1769:
x-microsoft-antispam-prvs: <DM5PR13MB176947BA0C7A1866F7444C6485C50@DM5PR13MB1769.namprd13.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: O37H/D01BmdihHiMDUBO7iqqqkEIEGP3otJGP6q/z/KuptxJPsbvDLQIRy+U/c3jG7RPONCyxz+YdcTug5pMUUT1/68DfOTQQWL7xx3BkX++Fm4xDc5yYoJSiF1lQIlyLfVe0c9qXXFYQ44nSgVJzVWvCZ7aIFoyFWj6T+76EBCoj8tuEN4ou92sCxV0xtj2uX8WHrBOkvBp29CybFsjmIx+Imw/yKXAUXwjGFpek4Yr3pmjTtpUgP/ecbbfxVPdX384zRjnEfuqAiF0xkbHA0CDjcAxPfCW86tivNEYh73IVsfkxob+CFiDouHU4AZTdNHBGgXoCiaNIORsS1PISRS4K0RrPdZX12xupNhIDdQ=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM6PR13MB2330.namprd13.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(366004)(136003)(39840400004)(396003)(346002)(376002)(8936002)(478600001)(6506007)(110136005)(64756008)(66476007)(76116006)(44832011)(66946007)(186003)(53546011)(66574015)(66556008)(316002)(26005)(5660300002)(52536014)(66446008)(33656002)(8676002)(7696005)(86362001)(71200400001)(2906002)(9686003)(83380400001)(55016002)(54906003)(4326008); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: Futurewei.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DM6PR13MB2330.namprd13.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 0f6797e6-7ed8-4bc5-c7f7-08d8a1d89707
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Dec 2020 15:38:08.9893 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 0fee8ff2-a3b2-4018-9c75-3a1d5591fedc
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 4sTOKKQHUcBZtuVUkBV4wwA5R6lLGu6ug9kF+FCt7K5gyjwzZ90AeZo2hLuki+Cd7laR2Ml1Aw5Vg5OJC9HKBg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR13MB1769
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/sd4wrlBtSvu-esL26VlLZ4cLvuk>
Subject: Re: [secdir] Secdir early review of draft-ietf-idr-bgp-optimal-route-reflection-21
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 16 Dec 2020 15:38:14 -0000
Bruno, Yes, your explanation makes sense. It would be useful to add your explanation to the Security Consideration. Thank you. Linda -----Original Message----- From: bruno.decraene@orange.com <bruno.decraene@orange.com> Sent: Wednesday, December 16, 2020 4:54 AM To: Linda Dunbar <linda.dunbar@futurewei.com>; secdir@ietf.org Cc: idr@ietf.org; draft-ietf-idr-bgp-optimal-route-reflection.all@ietf.org Subject: RE: Secdir early review of draft-ietf-idr-bgp-optimal-route-reflection-21 Hi Linda, Thanks for your review. Please see comments in line > From: Linda Dunbar via Datatracker [mailto:noreply@ietf.org] > > Reviewer: Linda Dunbar > Review result: Has Nits > > I have reviewed this document as part of the security directorate's > ongoing effort to review all IETF documents being processed by the > IESG. These comments were written primarily for the benefit of the > security area directors. > Document editors and WG chairs should treat these comments just like > any other last call comments. > > This document alters how BGP Route Reflector computes the optimal > routes on behalf of clients. Instead using its own IGP cost to the AS > Exit points, the document describes the steps for RR to compute the > optimal route by using Clients' position to the AS Exit points. The > described method is useful when RR is centralized. For deployment > with distributed RR closer to the clients, the described method > doesn't have any benefits. > > Security Concern: > If RR's information of its clients topology is compromised, then the > optimal paths selected by the RR might not be accurate anymore. I agree with the analysis. But it's not clear to me whether you are asking something to be added in the draft. I'm seeing two cases: - If the selected IGP location is configured on the router (RR), the attack requires the ability to change the configuration of the router. If an attacker can do this, it can do virtually anything (within the router capability). I don't feel that "securing access to the router configuration" is a typical point added in the security consideration although it probably applies to many documents. - If the selected IGP location is implicit by using the IP address of the client IBGP session there is no new thing to compromise. > Minor nits: > Page 7: Section 3.2. > > "If the routing routing optimization requires ..." > Is it a typo? duplicated word "routing"? > > Last sentence: "This needed for use cases ..." > Do you mean "This is needed for use cases ..." Thanks for the nits. Corrected in my local version. Cheers, --Bruno > Cheers, > Linda Dunbar > _________________________________________________________________________________________________________________________ Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration, Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci. This message and its attachments may contain confidential or privileged information that may be protected by law; they should not be distributed, used or copied without authorisation. If you have received this email in error, please notify the sender and delete this message and its attachments. As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified. Thank you.
- [secdir] Secdir early review of draft-ietf-idr-bg… Linda Dunbar via Datatracker
- Re: [secdir] Secdir early review of draft-ietf-id… bruno.decraene
- Re: [secdir] Secdir early review of draft-ietf-id… Linda Dunbar
- Re: [secdir] Secdir early review of draft-ietf-id… bruno.decraene