Re: [secdir] secdir last call review of draft-ietf-bmwg-ipv6-tran-tech-benchmarking-07.txt
Marius Georgescu <marius.georgescu@rcs-rds.ro> Thu, 25 May 2017 11:55 UTC
Return-Path: <marius.georgescu@rcs-rds.ro>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0E02612940B; Thu, 25 May 2017 04:55:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.802
X-Spam-Level:
X-Spam-Status: No, score=-0.802 tagged_above=-999 required=5 tests=[BAYES_40=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=rcs-rds.ro
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bZ69oG4WYTKo; Thu, 25 May 2017 04:55:51 -0700 (PDT)
Received: from mailproxy1.rcs-rds.ro (mailproxy1.rcs-rds.ro [212.54.120.14]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 183EA129493; Thu, 25 May 2017 04:55:50 -0700 (PDT)
Received: from [10.172.5.198] (unknown [10.172.5.198]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mailproxy1.rcs-rds.ro (Postfix) with ESMTPSA id 9B8A210000E; Thu, 25 May 2017 14:55:48 +0300 (EEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=rcs-rds.ro; s=MailProxy; t=1495713348; bh=IbamMC0nmweDv6HNZYtm1JH/j3H9mqp3uDY+FXCpbWE=; h=From:Subject:Date:In-Reply-To:Cc:To:References; b=kY4RGAZJRo6Uywhu9IbbohIjAwb6A6v3yqVZ0XeBVN4cZbYExLvGlAI4VZO3Acgea V1FNzbpQF0xhkWb76z4e6Hrbci6+/ogi57Tr4oRz7nKJkhCBfysEzEqL/U++KmWgG0 CKis1Iwxyz8qqCGY6/nW/2dr4A7NIZ8yLmeqVhBw=
From: Marius Georgescu <marius.georgescu@rcs-rds.ro>
Message-Id: <8A2A6836-708B-47EB-BB91-9F998DC7B509@rcs-rds.ro>
Content-Type: multipart/alternative; boundary="Apple-Mail=_1A3999AE-1F1C-4491-BF42-3AE38A834F14"
Mime-Version: 1.0 (Mac OS X Mail 10.3 \(3273\))
Date: Thu, 25 May 2017 14:55:46 +0300
In-Reply-To: <4D7F4AD313D3FC43A053B309F97543CF25F9B349@njmtexg4.research.att.com>
Cc: Taylor Yu <tlyu@mit.edu>, "iesg@ietf.org" <iesg@ietf.org>, "secdir@ietf.org" <secdir@ietf.org>, "draft-ietf-bmwg-ipv6-tran-tech-benchmarking.all@ietf.org" <draft-ietf-bmwg-ipv6-tran-tech-benchmarking.all@ietf.org>
To: Alfred C Morton <acmorton@att.com>
References: <ldvy3u84ez1.fsf@ubuntu-1gb-nyc1-01.localdomain> <4D7F4AD313D3FC43A053B309F97543CF25F96C2C@njmtexg4.research.att.com> <ldvshkg3zed.fsf@ubuntu-1gb-nyc1-01.localdomain> <3AF9B659-1229-43F8-BA74-1B5526277391@rcs-rds.ro> <ldvefvv3sx4.fsf@ubuntu-1gb-nyc1-01.localdomain> <4D7F4AD313D3FC43A053B309F97543CF25F9B349@njmtexg4.research.att.com>
X-Mailer: Apple Mail (2.3273)
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/JTtvi4oJp8DRmBlAyHbKFkrVLUs>
Subject: Re: [secdir] secdir last call review of draft-ietf-bmwg-ipv6-tran-tech-benchmarking-07.txt
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 May 2017 11:55:54 -0000
Hello Taylor, Please see my answer inline. > On May 12, 2017, at 2:21 AM, MORTON, ALFRED C (AL) <acmorton@att.com> wrote: > > Hi Taylor, > please see in-line reply, thanks, > Al > >> -----Original Message----- >> From: Taylor Yu [mailto:tlyu@mit.edu <mailto:tlyu@mit.edu>] >> Sent: Thursday, May 11, 2017 6:55 PM >> To: Marius Georgescu >> Cc: MORTON, ALFRED C (AL); iesg@ietf.org <mailto:iesg@ietf.org>; secdir@ietf.org <mailto:secdir@ietf.org>; draft-ietf- >> bmwg-ipv6-tran-tech-benchmarking.all@ietf.org <mailto:bmwg-ipv6-tran-tech-benchmarking.all@ietf.org> >> Subject: Re: secdir last call review of draft-ietf-bmwg-ipv6-tran-tech- >> benchmarking-07.txt >> >> Marius Georgescu <marius.georgescu@rcs-rds.ro> writes: >> >>>> On May 8, 2017, at 4:34 AM, Taylor Yu <tlyu@mit.edu> wrote: >> >>>> I'm sorry, I guess I misinterpreted, then. Do you mean that the >>>> implementations tested in the benchmarking lab should not materially >>>> differ from ones intended for production? As in the tested >>>> implementations should be have neither stronger nor weaker security >>>> properties than their deployed counterparts? I might be able to >> suggest >>>> improved wording if I understand your intentions correctly. >> >>> Indeed, we meant that the implementations tested in the lab should not >>> differ from the ones intended for production. >> >> In that case, what do you think of the following change? >> >> OLD >> >> Further, benchmarking is performed on a "black-box" basis, relying >> solely on measurements observable external to the DUT/SUT. Special >> capabilities SHOULD NOT exist in the DUT/SUT specifically for >> benchmarking purposes. Any implications for network security arising >> from the DUT/SUT SHOULD be identical in the lab and in production >> networks. >> >> NEW >> >> Further, benchmarking is performed on a "black-box" basis, relying >> solely on measurements observable external to the DUT. Special >> capabilities SHOULD NOT exist in the DUT specifically for >> benchmarking purposes. Testers and implementors SHOULD ensure that >> the DUT has identical security properties to its production version. > [ACM] > This new sentence has redundant effect with second sentence (unchanged). > Furthermore, Testing personnel have no means to ensure the identical > properties, and implementers may not yet have a production version available > (Benchmarking often takes place with very early products, whose > non-tested aspects may change before reaching production). > >> For example, any security hardening or instrumentation present on the >> DUT SHOULD also be present in the production version, and vice versa. > [ACM] > Again, this cannot be ensured when it is not a tested feature, > and there may be *many* (later) production releases that differ > from the DUT. The example goes too far. > > At this point, I feel it is appropriate to point out that BMWG has > used the original wording of the paragraphs in this section for years > (~10), and their intent has been sufficiently clear to the community. [MG] I agree with Al, I personally don't see how the new text is improving the old. I understand that it is important to consider the security features as a potential parameter when testing, and that it should be isolated. However, I find the current text clear enough. Would you please elaborate on why it isn't from your perspective. Best regards, Marius
- [secdir] secdir last call review of draft-ietf-bm… Taylor Yu
- Re: [secdir] secdir last call review of draft-iet… MORTON, ALFRED C (AL)
- Re: [secdir] secdir last call review of draft-iet… Taylor Yu
- Re: [secdir] secdir last call review of draft-iet… Marius Georgescu
- Re: [secdir] secdir last call review of draft-iet… Taylor Yu
- Re: [secdir] secdir last call review of draft-iet… MORTON, ALFRED C (AL)
- Re: [secdir] secdir last call review of draft-iet… Marius Georgescu