Re: [secdir] Secdir last call review of draft-ietf-lisp-sec-26
Luigi Iannone <ggx@gigix.net> Thu, 09 June 2022 08:10 UTC
Return-Path: <ggx@gigix.net>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8EA5BC14F726 for <secdir@ietfa.amsl.com>; Thu, 9 Jun 2022 01:10:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.909
X-Spam-Level:
X-Spam-Status: No, score=-6.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gigix-net.20210112.gappssmtp.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8y_FBPkGVJVQ for <secdir@ietfa.amsl.com>; Thu, 9 Jun 2022 01:10:05 -0700 (PDT)
Received: from mail-wr1-x42d.google.com (mail-wr1-x42d.google.com [IPv6:2a00:1450:4864:20::42d]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C365EC14F723 for <secdir@ietf.org>; Thu, 9 Jun 2022 01:10:05 -0700 (PDT)
Received: by mail-wr1-x42d.google.com with SMTP id d14so22277364wra.10 for <secdir@ietf.org>; Thu, 09 Jun 2022 01:10:05 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gigix-net.20210112.gappssmtp.com; s=20210112; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=sxXRb7nW++TDT2vBJXTLC5fAKEMz/tP1Qif/xa2TphI=; b=6CJYybrQVjmfmJXEwA8WRJ+Z8TeglB85q0xSnVlFVYmFzPfXFRepOIZ2fLThT0DNwF BhFAL2QBkOOk4DcmiTErg47ckg9xnPJqOwfwT7DXHx7zgbGjMCxGAubLVjcS8ae3QHyp fJZhTO3ODKGzhw+XGvtlNvrICCBKwQh19fi/wXouoOb61DpkQihUQj/J6iEi50glqQYD DTZiwKFP/vLl6+CSiHwCWZ3j08kZJLDxj2bhTaxWDZBpiOq51E9wkciH57ZTLh5VygrF WtZ/h/bbkXPj98obLdIvRj04lXxEwTtkDTYlwaQ4ev7IdvHfueW4EmzmPXzbaz5UnsiV HmtQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=sxXRb7nW++TDT2vBJXTLC5fAKEMz/tP1Qif/xa2TphI=; b=hvv+m3XOtUU22RPIgX2OQI5y7XIwgRf0o7p3+7MjckDEKxbvOJXAmoQGy1WdHqypEH VLqjUCWwX5gHmxfOofrR/Sb83Ulwn9uUEeYFygfeWhyEl5rt33jFDccJZffFYszeVm4/ EGWtfICxXFP+avc5DZr7iqbLJPgfkjwz4S5NHg4Zt7FLTQDx9DuCFlnzQD0D7S9QKtNv ZI+mjqUixyvDWs8tVfhhucbCnBczqJb9h0PA83WbkIM+t8Mn/B1svZGe1ZcjgJ6adIFy K5NHx8/m8oQNBaWzSyNmpz9/ACTGHXDNbt/rjwRdvgpmJJM5Ibr8raT+UBtWjcizvnFj g1Jw==
X-Gm-Message-State: AOAM530bm9ZRNvkHXwoO3fHJtYsqrt4KZRCyJW13Se+tR9JepBBJLvrM a9RX3uyKaethCu5BHIe3Kg+ND7TrXAghJA==
X-Google-Smtp-Source: ABdhPJzrdf2UymSDHpe4oj6zl0ti/3PNo9zPqS8PTgJE3opcPkUgVvXq016e2c74n0bxSOLQ+Muqvg==
X-Received: by 2002:a5d:5109:0:b0:218:40cc:a29b with SMTP id s9-20020a5d5109000000b0021840cca29bmr19959023wrt.601.1654762204067; Thu, 09 Jun 2022 01:10:04 -0700 (PDT)
Received: from smtpclient.apple ([37.172.52.14]) by smtp.gmail.com with ESMTPSA id e29-20020a5d595d000000b00213b93cff5fsm19257983wri.98.2022.06.09.01.10.02 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Thu, 09 Jun 2022 01:10:03 -0700 (PDT)
From: Luigi Iannone <ggx@gigix.net>
Message-Id: <06D7C675-ECC1-4E4A-9926-4BD0904B1A93@gigix.net>
Content-Type: multipart/alternative; boundary="Apple-Mail=_1F802F77-7ECC-453A-9CEA-46583E9410BF"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3696.100.31\))
Date: Thu, 09 Jun 2022 10:10:01 +0200
In-Reply-To: <3873e61d-586d-7f11-6c92-0f48ba89b6a0@isode.com>
Cc: "secdir@ietf.org" <secdir@ietf.org>, draft-ietf-lisp-sec.all@ietf.org
To: Alexey Melnikov <alexey.melnikov@isode.com>
References: <422b173b-64b2-679b-2929-609dbdf3eb58@isode.com> <6ECF9F57-308C-49F6-B2E2-0FB899DA4AEF@gigix.net> <3873e61d-586d-7f11-6c92-0f48ba89b6a0@isode.com>
X-Mailer: Apple Mail (2.3696.100.31)
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/_-4HWpcwbQQxrBdpnWHC99f4oTc>
Subject: Re: [secdir] Secdir last call review of draft-ietf-lisp-sec-26
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 09 Jun 2022 08:10:07 -0000
Hi Alexey, Please see inline. (I trimmed some text for readability) > On 8 Jun 2022, at 18:49, Alexey Melnikov <alexey.melnikov@isode.com> wrote: >>> >>> Use of SHA-1 is generally not recommended these days, so I would like to understand why you chose to use it. Are there some backward compatibility issues or concerns about size of some fields? >> >> AFAIR when this document was reviewed along with the bis documents we did not receive such observation. >> >>> Also implementing just SHA-256 everywhere will make implementations simpler. >> >> Wouldn’t this create an issue with older implementations? > This is why I've asked whether there are any backward compatibility issues. If you already have older implementations, that you need to decide what you want to do about them. In the meantime, if you keep using SHA-1, you should probably explain this in the document. (E.g. "For backward compatibility with older implementations, ...") >> Do you think that text could be adapted to RECOMMEND SHA-256 also expressing the concern that old implementation may not interoperate? > I think making implementations use SHA-256 as a SHOULD requirement (unless you can use MUST, as you do in some cases listed above) would certainly help. Should we make a difference between implementation and use? I mean what about stating that new implementations MUST implement SHA-256, deployments SHOULD use SHA-256 unless older implementation with SHA-1 exist in the same deployment. Does it make sense to you? >> >> Can you be more specific? > I will come back to you on this one. >>> 2) In Section 7.7: >>> 7.7. Message Privacy >>> >>> DTLS [RFC9147] SHOULD be used to provide communication privacy and to >>> prevent eavesdropping, tampering, or message forgery to the messages >>> exchanged between the ITR, Map-Resolver, Map-Server, and ETR, unless >>> the OTK is encrypted in another way, e.g. using a pre-shared secret. >>> >>> Is this talking abou OTK key wrapping? If yes, then this sounds a bit misleading, considering that AES-KEY-WRAP-128+HKDF-SHA256 is "MUST implement”. >> >> But you can use the NULL-KEY-WRAP-128 and protect the message with DTLS, no? > I think the answer depends on whether you want to generally encourage use of DTLS. If you do, perhaps the following would be clearer: > AFAICT there was no intention tp encourage DTLS specifically. It was more about be clear that communications between strs and Map-Servers and Map-Resolvers must be protected. Thanks Ciao L.
- [secdir] Secdir last call review of draft-ietf-li… Alexey Melnikov
- Re: [secdir] Secdir last call review of draft-iet… Luigi Iannone
- Re: [secdir] Secdir last call review of draft-iet… Luigi Iannone
- Re: [secdir] Secdir last call review of draft-iet… Alexey Melnikov
- Re: [secdir] Secdir last call review of draft-iet… Alexey Melnikov
- Re: [secdir] Secdir last call review of draft-iet… Luigi Iannone
- Re: [secdir] Secdir last call review of draft-iet… Luigi Iannone
- Re: [secdir] Secdir last call review of draft-iet… Alexey Melnikov