[secdir] SECDIR review of draft-ietf-l2vpn-vpls-mib-14

Alexey Melnikov <alexey.melnikov@isode.com> Tue, 18 February 2014 14:40 UTC

Return-Path: <alexey.melnikov@isode.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 34CFA1A068F; Tue, 18 Feb 2014 06:40:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.549
X-Spam-Level:
X-Spam-Status: No, score=-2.549 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RP_MATCHES_RCVD=-0.548, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 37tVAOyrhO5x; Tue, 18 Feb 2014 06:40:28 -0800 (PST)
Received: from statler.isode.com (statler.isode.com [62.3.217.254]) by ietfa.amsl.com (Postfix) with ESMTP id 960711A068B; Tue, 18 Feb 2014 06:40:25 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; t=1392734421; d=isode.com; s=selector; i=@isode.com; bh=RagVF8JHHpuR5qaxx9XxUv65U2y7Fzmr1wH0Un/8pKY=; h=From:Sender:Reply-To:Subject:Date:Message-ID:To:Cc:MIME-Version: In-Reply-To:References:Content-Type:Content-Transfer-Encoding: Content-ID:Content-Description; b=rz3QC+yMAw17cAj9UwNBBkBdMgIw+ePI2cjbXx0AGZzersOVzjTc8YkBfkzzPEtEGcHiTK vZ7HiaCcJjDE18OXAlaLew5IXmke8q6Wxr0C69I1m573hv1EJoV+akXM/LvWtkeY8X8gBT bc06ltDB+oZT/5nTtC9MOn9I19bhmSs=;
Received: from [172.16.1.29] (richard.isode.com [62.3.217.249]) by statler.isode.com (submission channel) via TCP with ESMTPA id <UwNw0wBvgYNG@statler.isode.com>; Tue, 18 Feb 2014 14:40:21 +0000
Message-ID: <530370CC.1030702@isode.com>
Date: Tue, 18 Feb 2014 14:40:12 +0000
From: Alexey Melnikov <alexey.melnikov@isode.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; rv:24.0) Gecko/20100101 Thunderbird/24.3.0
To: "secdir@ietf.org" <secdir@ietf.org>, "iesg@ietf.org" <iesg@ietf.org>, draft-ietf-l2vpn-vpls-mib.all@tools.ietf.org
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Archived-At: http://mailarchive.ietf.org/arch/msg/secdir/UFv2_-EAlZ-DPKLnmakpxd4mViE
Subject: [secdir] SECDIR review of draft-ietf-l2vpn-vpls-mib-14
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 18 Feb 2014 14:40:34 -0000

I have reviewed this document as part of the security directorate's 
ongoing effort to review all IETF documents being processed by the IESG. 
These comments were written primarily for the benefit of the security 
area directors.  Document editors and working group chairs should treat 
these comments just like any other last call comments.

This document describes managed objects for configuring and/or 
monitoring Virtual Private LAN services, including LDP and BGP extensions.

The document says that information in 3 defined MIB modules is not 
sensitive and thus not really worth protecting from passive monitoring. 
I doubt a bit this claim, as it seems that observing  information from 
the MIB tables can help an attacker to mount other types of attacks on a 
particular VPLS.
It also looks like gaining write access can enable Denial-of-Service 
attack on the monitoring system itself and/or on the underlying 
infrastructure.

I also agree with Benoit Claise's DISCUSS that the document should 
follow the recommended MIB-security template:
   http://trac.tools.ietf.org/area/ops/trac/wiki/mib-security

Other than that, I have no security concerns in regards to this document.