Re: [secdir] SecDir review of draft-iana-special-ipv4-registry-01

[Geoff Huston <gih@apnic.net>]

Hi Yaron,

Thanks indeed for this review of the draft..

On 06/06/2009, at 9:30 PM, Yaron Sheffer wrote:

> I have reviewed this document as part of the security directorate's  
> ongoing effort to review all IETF documents being processed by the  
> IESG.  These comments were written primarily for the benefit of the  
> security area directors.  Document editors and WG chairs should  
> treat these comments just like any other last call comments.
>
> This document consists of a directive to IANA on creating and  
> managing an IPv4 Special Purpose Address registry. It took me some  
> time to realize this document is about all of two hundred fifty six  
> IP addresses. It sure seems to be a lot of effort for very few  
> addresses.

We have managed to drive ourselves into areas of confusion over  
addresses in the past over too great a level of informality in aspects  
of address administration and this is one more element of adding some  
guidance for IANA and the IETF in terms of the process of making  
address assignments through IANA for the purposes described in Section  
2 of this document. Without this direction IANA has no clear process  
that it must follow to make such assignments, and the results, if  
judged by what we've done in the past, are somewhat haphazard at best.


>
> General
>
> -        The document is missing a reference to [rfc3330bis] (which  
> should be Normative).


Yes, agreed, although I'm not sure of the Normative / Informative  
delineation in this case - but I'm sure that the rfc editor could  
provide the appropriate advice here.

> Does "[date]" refer to this document’s publication date?


yes

> -        The document is copied from RFC 4773, in places a bit too  
> verbatim. In particular it mentions "scoped, local, or private  
> contexts", which rarely apply to IPv4. Today even link-local IPv4  
> addresses are usually treated as error indications, unfortunately.

I would not agree with such a blanket assertion for IPv4. 192.88.99.1  
appears to be intended to operate as a scoped context address, for  
example.


>
> Security
>
> I would have been much happier with a Security Considerations  
> section that said there are no such considerations. The current text  
> includes:
>
> "This registry is intended to provide an authoritative source of  
> information regarding the currency and intended purpose of IPv4  
> Special Purpose address blocks that are designated from the IANA- 
> administered IPv4 Special Purpose address pool.  This is a small  
> step towards the creation of a comprehensive registry framework that  
> can be used as a trust point for commencing a chain of address  
> validation."
>
> I am not aware of specified mechanisms to securely allocate,  
> deallocate and query the ownership and status of IP addresses.  
> Perhaps it’s just my ignorance, but if any such mechanisms exist,  
> they should be referenced from the document. In the absence of such  
> security mechanisms, the above paragraph doesn’t make sense to me,  
> in particular when the scope current is just 256 addresses.

This is a cut and paste from RFC4773. There is a rich history of  
ambiguity over the details of many address allocations, and this  
document is part of an intention to clarify procedure and registry  
outcomes, and yes, such a registry is a potential anchor point for a  
more formal mechanism that could validate attestations relating to  
addresses and their use. However the technology is still the subject  
of study in the IETF in the SIDR WG in particular, and reference to  
any stable outcomes of that WG appear to be somewhat premature, nor  
would stalling the process of this document to await such outcomes  
serve any useful purpose as far as I am aware.

Thanks,

     Geoff