Re: [secdir] [Roll] Secdir review of draft-ietf-roll-mpl-parameter-configuration-04

Yusuke DOI <yusuke.doi@toshiba.co.jp> Thu, 02 July 2015 09:25 UTC

Return-Path: <yusuke.doi@toshiba.co.jp>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4FFB31B3100; Thu, 2 Jul 2015 02:25:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.402
X-Spam-Level:
X-Spam-Status: No, score=-4.402 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_EQ_JP=1.244, HOST_EQ_JP=1.265, RCVD_IN_DNSWL_HI=-5, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, UNPARSEABLE_RELAY=0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id J63bgw1ybtXE; Thu, 2 Jul 2015 02:25:19 -0700 (PDT)
Received: from imx12.toshiba.co.jp (imx12.toshiba.co.jp [61.202.160.132]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 76D4F1B30EC; Thu, 2 Jul 2015 02:25:18 -0700 (PDT)
Received: from tsbmgw-mgw01.tsbmgw-mgw01.toshiba.co.jp ([133.199.232.103]) by imx12.toshiba.co.jp with ESMTP id t629PErG026157 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 2 Jul 2015 18:25:15 +0900 (JST)
Received: from tsbmgw-mgw01 (localhost [127.0.0.1]) by tsbmgw-mgw01.tsbmgw-mgw01.toshiba.co.jp (8.13.8/8.14.5) with ESMTP id t629PDdB007249; Thu, 2 Jul 2015 18:25:13 +0900
Received: from localhost ([127.0.0.1]) by tsbmgw-mgw01 (JAMES SMTP Server 2.3.1) with SMTP ID 591; Thu, 2 Jul 2015 18:25:13 +0900 (JST)
Received: from arc11.toshiba.co.jp ([133.199.90.127]) by tsbmgw-mgw01.tsbmgw-mgw01.toshiba.co.jp (8.13.8/8.14.5) with ESMTP id t629PDov007245; Thu, 2 Jul 2015 18:25:13 +0900
Received: (from root@localhost) by arc11.toshiba.co.jp id t629PDL0001683; Thu, 2 Jul 2015 18:25:13 +0900 (JST)
Received: from ovp11.toshiba.co.jp [133.199.90.148] by arc11.toshiba.co.jp with ESMTP id UAA01675; Thu, 2 Jul 2015 18:25:12 +0900
Received: from mx2.toshiba.co.jp (localhost [127.0.0.1]) by ovp11.toshiba.co.jp with ESMTP id t629PCcf019752; Thu, 2 Jul 2015 18:25:12 +0900 (JST)
Received: from spiffy20.isl.rdc.toshiba.co.jp by toshiba.co.jp id t629PBGW019145; Thu, 2 Jul 2015 18:25:11 +0900 (JST)
Received: from [IPv6:2001:200:1b1:1010:e95c:15be:95b0:42d8] (unknown [IPv6:2001:200:1b1:1010:e95c:15be:95b0:42d8]) by spiffy20.isl.rdc.toshiba.co.jp (Postfix) with ESMTPS id B2B9518F4D9; Thu, 2 Jul 2015 18:25:11 +0900 (JST)
Message-ID: <55950377.3020000@toshiba.co.jp>
Date: Thu, 02 Jul 2015 18:25:11 +0900
From: Yusuke DOI <yusuke.doi@toshiba.co.jp>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:31.0) Gecko/20100101 Thunderbird/31.7.0
MIME-Version: 1.0
To: roll@ietf.org, iesg@ietf.org, secdir@ietf.org
References: <5BE572AB-D17A-4890-8385-B0F9A16C2A3F@cisco.com>
In-Reply-To: <5BE572AB-D17A-4890-8385-B0F9A16C2A3F@cisco.com>
Content-Type: text/plain; charset=windows-1252; format=flowed
Content-Transfer-Encoding: quoted-printable
X-MIME-Autoconverted: from 8bit to quoted-printable by tsbmgw-mgw01.tsbmgw-mgw01.toshiba.co.jp id t629PDov007245
Archived-At: <http://mailarchive.ietf.org/arch/msg/secdir/fRC5BWG8o24S3t0WzypgiV9Jp70>
X-Mailman-Approved-At: Thu, 02 Jul 2015 02:40:23 -0700
Cc: draft-ietf-roll-mpl-parameter-configuration.all@tools.ietf.org
Subject: Re: [secdir] [Roll] Secdir review of draft-ietf-roll-mpl-parameter-configuration-04
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Jul 2015 09:25:20 -0000

Brian,

Thank you very much for your review. I submitted revised version (-06, not -05, sorry for unfixed nits).

On 2015-06-26 05:18, Brian Weis (bew) wrote:
> 1. Describing a resource consumption threat ("excessive layer-2
> broadcasting“) resulting from a man-in-the-middle modifying policy
> sent within an option. If there is a suggested mitigation (e.g., a
> means of integrity protecting the DHCPv6 traffic between the client
> and server) this would be worth noting. But I’m not sure if there
> any available mitigation in a ROLL environment.

I added some text on network level protection case in addition to use of DHCPv6 security, including filter on the border router in a ROLL network.

> 2. Making a requirement that a server implementation choose
> reasonable policy values. This might be more useful if it were
> phrased as a threat, something like “Server implementations need to
> take care in setting reasonable bounds for each parameter in order to
> avoid overloading the network."

Thanks. I used your text with 'server and client implementations.'

> 3. Making a requirement that the "DHCP server or the network itself
> shall be trusted by some means including network access control or
> DHCP authentication”.  Is this this “shall” intended to be an RFC
> 2119  “MUST”?

No. I think making secure network properly to use DHCPv6 option is just a generic requirement and it's beyond the scope of this document.

Best Regards,

Yusuke