Re: [secdir] secdir review of draft-ietf-msec-gdoi-update
Brian Weis <bew@cisco.com> Thu, 04 August 2011 00:33 UTC
Return-Path: <bew@cisco.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3D87211E80AD for <secdir@ietfa.amsl.com>; Wed, 3 Aug 2011 17:33:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.598
X-Spam-Level:
X-Spam-Status: No, score=-102.598 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, UNPARSEABLE_RELAY=0.001, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6NVIPwxpuXBw for <secdir@ietfa.amsl.com>; Wed, 3 Aug 2011 17:33:18 -0700 (PDT)
Received: from nm14-vm0.access.bullet.mail.sp2.yahoo.com (nm14-vm0.access.bullet.mail.sp2.yahoo.com [98.139.44.162]) by ietfa.amsl.com (Postfix) with SMTP id B136121F8A1A for <secdir@ietf.org>; Wed, 3 Aug 2011 17:33:18 -0700 (PDT)
Received: from [98.139.44.98] by nm14.access.bullet.mail.sp2.yahoo.com with NNFMP; 04 Aug 2011 00:33:31 -0000
Received: from [98.139.44.89] by tm3.access.bullet.mail.sp2.yahoo.com with NNFMP; 04 Aug 2011 00:33:31 -0000
Received: from [127.0.0.1] by omp1026.access.mail.sp2.yahoo.com with NNFMP; 04 Aug 2011 00:33:31 -0000
X-Yahoo-Newman-Id: 856812.12373.bm@omp1026.access.mail.sp2.yahoo.com
Received: (qmail 66807 invoked from network); 4 Aug 2011 00:33:31 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1312418011; bh=GO+MhJKahbyAlZaMN6o650wDPcm8Hxt7fWE34ftbTvU=; h=X-Yahoo-Newman-Property:X-YMail-OSG:X-Yahoo-SMTP:Received:Subject:Mime-Version:Content-Type:From:In-Reply-To:Date:Cc:Content-Transfer-Encoding:Message-Id:References:To:X-Mailer; b=GzD49y8CA//jhUxDfxBjaxuKahbVIMQohep/89w6G7OXEgygR69zkMQItn4lf6gEY6tntbLNJsudPprY/WOVMs42KbMT0VT9hJYeWqF/37k9JFM9dQq5n81KWIHJ6lzx7qCBkYj7i+VxZw8vjgchwViHX2hITVRnotIVXAoYl9E=
X-Yahoo-Newman-Property: ymail-3
X-YMail-OSG: uPaRxfIVM1kn_E6BO_MeaKKbxbVIIvaKDXCh3BAkR3eVE7K a82unTc2oaj5eR6Va01SF.eshziem6PXt0p0mO6DLVZxiE7z1hrgfHWl6TR8 mvSU8YVCS1awmZn0S2CWxV3UiSKD8rejx.8SoAL6DoLsMvgSh2t.L0R59ePQ vdMjbUC7aVa4t7bFgOSxzNOLwk2Zha_yqSvTNdKMRB7c4lLVA4hZ81X6ISNu G3efVCiq64sY_4Xxu36sQufVm13jR1bbYRO7IRGVduVsDq3TSLHneTjFFdVx BEbcSCEGP1RLLucTGUZg2IDWJ7BPKAhOKoHv5y0uXck6q2a9iu0309itIFo6 5PljGxjOE9XWYIvdHHHpIjvi3PYT7bjlaSFwQP0GfDmyWz_z2oTnr5I378g0 59EuhWrc.3PVAHDXgYj3qxDAoK8mE33w93U0US9psQNL_
X-Yahoo-SMTP: 32nDaXmswBB_JniSOQ0NY72Nq.3.ushdrbBADol90kQ-
Received: from stealth-10-32-244-210.cisco.com (bew@70.239.230.164 with plain) by smtp107.sbc.mail.gq1.yahoo.com with SMTP; 03 Aug 2011 17:33:31 -0700 PDT
Mime-Version: 1.0 (Apple Message framework v1084)
Content-Type: text/plain; charset="us-ascii"
From: Brian Weis <bew@cisco.com>
In-Reply-To: <tsl8vrd2hz4.fsf@mit.edu>
Date: Wed, 03 Aug 2011 17:33:30 -0700
Content-Transfer-Encoding: quoted-printable
Message-Id: <8B61042D-0BB4-42EA-970B-DDA36A659DA9@cisco.com>
References: <tsl8vrd2hz4.fsf@mit.edu>
To: Sam Hartman <hartmans-ietf@mit.edu>
X-Mailer: Apple Mail (2.1084)
Cc: draft-ietf-msec-gdoi-update@tools.ietf.org, ietf@ietf.org, secdir@ietf.org
Subject: Re: [secdir] secdir review of draft-ietf-msec-gdoi-update
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Aug 2011 00:33:19 -0000
Hi Sam, Thanks for your review. Your first comment is pointing out a typo (groupkey-pull should be groupkey-push), which I've fixed. The anti-replay description in Section 3.3 should not say that the push message sequence number will be reset to 1. Text earlier in this section says that the SEQ payload carries the next expected sequence number, and so when the KEK is installed that is the number that should be installed. I've adjusted the text to say this: "If this group has a KEK, the KEK policy and keys are marked as ready for use and the GM knows to expect a sequence number not less than the one distributed in the SEQ payload." Let me know if that change sufficiently clears up the confusion. Thanks, Brian On Aug 1, 2011, at 9:51 AM, Sam Hartman wrote: > > This update to the GDOI specification significantly improves clarity and > readability. > However, there is one issue that I think should be addressed prior to > publication: > > > At the top of page 11, the spec claims that a seq payload protects > against group members responding to groupkey-pull messages sent prior to > joining the group. > I'm reasonably sure that should be groupkey-push messages; I believe the > nonce payloads provide replay protection for the pull exchange. > > Actually, it's more complicated than that. Section 3.3 also seems to > believe the sequence number is about pull exchanges. However it says > that a GM should always expect the push message sequence number to be > reset to 1. > Why is that reasonable? If a group is ongoing, don't we want to tell new > members what the sequence number currently is rather than having them > assume it is 1? The push message is multicast, so we cannot maintain a > separate sequence number for each member. > > I think either there is some sort of error with the description of the > replay mechanisms or it requires significantly more explanation. > _______________________________________________ > secdir mailing list > secdir@ietf.org > https://www.ietf.org/mailman/listinfo/secdir > wiki: http://tools.ietf.org/area/sec/trac/wiki/SecDirReview -- Brian Weis Security Standards and Technology, SRTG, Cisco Systems Telephone: +1 408 526 4796 Email: bew@cisco.com