[secdir] secdir early review of draft-ietf-sidrops-rrdp-same-origin

Dan Harkins <dharkins@lounge.org> Fri, 09 August 2024 19:45 UTC

Return-Path: <dharkins@lounge.org>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 05C3EC14F701; Fri, 9 Aug 2024 12:45:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.609
X-Spam-Level:
X-Spam-Status: No, score=-2.609 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qJSf3qOgDMdu; Fri, 9 Aug 2024 12:45:10 -0700 (PDT)
Received: from www.goatley.com (www.goatley.com [198.137.202.94]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 47F2AC14F6FF; Fri, 9 Aug 2024 12:45:07 -0700 (PDT)
Received: from kitty.bergandi.net (syn-076-176-014-122.res.spectrum.com [76.176.14.122]) by wwwlocal.goatley.com (PMDF V6.8 #2433) with ESMTPS id <0SHY03W2GUV6Y3@wwwlocal.goatley.com>; Fri, 09 Aug 2024 15:45:06 -0400 (EDT)
Received: from [192.168.1.24] (customer.lsancax1.pop.starlinkisp.net [98.97.57.115]) by kitty.bergandi.net (PMDF V6.8 #2433) with ESMTPSA id <0SHY0052TUV5BM@kitty.bergandi.net>; Fri, 09 Aug 2024 12:45:06 -0700 (PDT)
Received: from customer.lsancax1.pop.starlinkisp.net ([98.97.57.115] EXTERNAL) (EHLO [192.168.1.24]) with TLS/SSL by kitty.bergandi.net ([10.0.42.19]) (PreciseMail V3.3-1); Fri, 09 Aug 2024 12:45:06 -0700
Date: Fri, 09 Aug 2024 12:45:05 -0700
From: Dan Harkins <dharkins@lounge.org>
To: "secdir@ietf.org" <secdir@ietf.org>, "iesg@ietf.org" <iesg@ietf.org>, draft-ietf-sidrops-rrdp-same-origin@ietf.org
Message-id: <9b5483d3-128e-426d-83db-0c5eceaaf897@lounge.org>
MIME-version: 1.0
Content-type: text/plain; charset="UTF-8"; format="flowed"
Content-language: en-US
Content-transfer-encoding: 8bit
User-Agent: Mozilla Thunderbird
X-PMAS-SPF: SPF check skipped for authenticated session (recv=kitty.bergandi.net, send-ip=98.97.57.115)
X-PMAS-External-Auth: customer.lsancax1.pop.starlinkisp.net [98.97.57.115] (EHLO [192.168.1.24])
X-PMAS-Software: PreciseMail V3.3-1 [240731] (kitty.bergandi.net)
X-PMAS-Allowed: system rule (rule allow header:X-PMAS-External noexists)
Message-ID-Hash: 5W4N2SYX2FUAKKMFTBPX4JHXYEO7OA3A
X-Message-ID-Hash: 5W4N2SYX2FUAKKMFTBPX4JHXYEO7OA3A
X-MailFrom: dharkins@lounge.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-secdir.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [secdir] secdir early review of draft-ietf-sidrops-rrdp-same-origin
List-Id: Security Area Directorate <secdir.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/GbfK73R7SA9GR7uJpgF68TvLvFc>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Owner: <mailto:secdir-owner@ietf.org>
List-Post: <mailto:secdir@ietf.org>
List-Subscribe: <mailto:secdir-join@ietf.org>
List-Unsubscribe: <mailto:secdir-leave@ietf.org>

   Hello,


   I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the
IESG. These comments were written primarily for the benefit of the
security area directors. Document editors and WG chairs should treat
these comments just like any other last call comments.

   This draft addresses an apparent mistake in RFC 8182 by specifying
a "same origin policy" for RPKI Repository Delta protocol. This
prevents cross-origin references in RRDP that could result in attacks.
It is concise and well-written. The Security Considerations are fine.
It was good to see the inclusion of Deployability considerations
(section 4).

   The summary of the review is Ready.

   regards,

   Dan.

-- 
"The object of life is not to be on the side of the majority, but to
escape finding oneself in the ranks of the insane." -- Marcus Aurelius