IETF Logo Mail Archive

Re: [secdir] secdir review of draft-ietf-tcpm-accurate-ecn-14

Bob Briscoe <ietf@bobbriscoe.net> Mon, 10 May 2021 14:22 UTC

Return-Path: <ietf@bobbriscoe.net>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 749F43A1E6E; Mon, 10 May 2021 07:22:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.434
X-Spam-Level:
X-Spam-Status: No, score=-1.434 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, NICE_REPLY_A=-0.001, SPF_HELO_NONE=0.001, SPF_SOFTFAIL=0.665, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=bobbriscoe.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Qu3syb0V-HO8; Mon, 10 May 2021 07:22:22 -0700 (PDT)
Received: from mail-ssdrsserver2.hosting.co.uk (mail-ssdrsserver2.hosting.co.uk [185.185.85.90]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9DE913A1E46; Mon, 10 May 2021 07:22:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=bobbriscoe.net; s=default; h=Content-Transfer-Encoding:Content-Type: In-Reply-To:MIME-Version:Date:Message-ID:From:References:Cc:To:Subject:Sender :Reply-To:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Id:List-Help: List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=mRXgkpMDlUR6XFN+ey7Q5/M4D0qhOwdeHQSXoU4g1/M=; b=vYQiUTlI8thiVdgOnsnM2vuP5t DcJZjN+N/EgVT50Dd2+CEOeLo9vjs90JsPuyPVPrbux+FaS73QY1plyA7IwQ4EedGUc3EbPo9yheE 9UPK8TE0K6OF+igrPa3nrBL1hw8C8hgWpfmQNDZvH1YfAwd219sSYXfPJDRokyS6EggebI+gumOtc tnVWFzwP3dhxnmHmgui6qfy2V87EStqB4nEDD0qKftSh2fVUrSrlY0z92hZJT4eXjHlzsdpR40Xa8 CWQQPPEJdkSojFEGEtX26+AKg+diqJnHgt1eAnAga0nLsRlIkjr1PpoczVmS4OXMpS1wS0M1PwRx0 f48hq5Dw==;
Received: from 67.153.238.178.in-addr.arpa ([178.238.153.67]:37554 helo=[192.168.1.9]) by ssdrsserver2.hosting.co.uk with esmtpsa (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (Exim 4.94.2) (envelope-from <ietf@bobbriscoe.net>) id 1lg6nZ-0003Q0-62; Mon, 10 May 2021 15:22:15 +0100
To: "Scharf, Michael" <Michael.Scharf@hs-esslingen.de>, "Scott G. Kelly" <scott@hyperthought.com>
Cc: "draft-ietf-tcpm-accurate-ecn.all@ietf.org" <draft-ietf-tcpm-accurate-ecn.all@ietf.org>, "iesg@ietf.org" <iesg@ietf.org>, "secdir@ietf.org" <secdir@ietf.org>
References: <1618272203.965227355@apps.rackspace.com> <16c048ca-e027-a1bb-0d06-22260f87139b@bobbriscoe.net> <1c48d71fab214a218f7289def3c75b09@hs-esslingen.de>
From: Bob Briscoe <ietf@bobbriscoe.net>
Message-ID: <3c644f7c-b7aa-3011-1efe-eed04af98e8e@bobbriscoe.net>
Date: Mon, 10 May 2021 15:22:13 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.7.1
MIME-Version: 1.0
In-Reply-To: <1c48d71fab214a218f7289def3c75b09@hs-esslingen.de>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Content-Language: en-GB
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - ssdrsserver2.hosting.co.uk
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - bobbriscoe.net
X-Get-Message-Sender-Via: ssdrsserver2.hosting.co.uk: authenticated_id: in@bobbriscoe.net
X-Authenticated-Sender: ssdrsserver2.hosting.co.uk: in@bobbriscoe.net
X-Source:
X-Source-Args:
X-Source-Dir:
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/VQlvGwlZSuyvJS6baozdNenS9Vc>
Subject: Re: [secdir] secdir review of draft-ietf-tcpm-accurate-ecn-14
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 10 May 2021 14:22:28 -0000

Michael, see [BB2]

On 10/05/2021 14:28, Scharf, Michael wrote:
>>> I'm not a TCP or ECN expert, so please take my comments with a proverbial
>> grain of salt. Thinking about this strictly as a security geek, I see three places
>> where this scheme could be tampered with: the sender, the receiver, and
>> the network in between them.
>>> The security considerations section starts off by pointing out that there will
>> be consequences to tampering by a middlebox (the network in between),
>> and it describes the impact as limited.
>>> A malicious sender is not described, and I'm not sure that any such thing
>> reasonably exists, but I did wonder about this.
>>
>> [BB] A malicious sender is not described because the scope of AccECN is
>> purely about changes to TCP's feedback protocol between Data Receiver
>> and Data Sender. Malicious senders can ignore TCP feedback. So it
>> doesn't matter what we say when we update a feedback spec if malicious
>> senders can ignore the feedback anyway.
> Just a quick note on terminology: For data transfers from a "data sender" to a "data receiver", the malicious "sender" of the TCP option would be the "data receiver".
>
> So, a better phrasing might be:
>
>    "... malicious *data* senders can ignore the feedback anyway."
>
> When looking at the TCP option, a bit of care may be needed who is sending what (and for what purpose).

[BB2] Thx.
Also, in the Sec Consids section, we were careful to specify "Data 
rx/tx" except in one case, which I've fixed as well.


Bob

>
> Michael
>

-- 
________________________________________________________________
Bob Briscoe                               http://bobbriscoe.net/

v2.23.0 | Report a Bug | By Email