[secdir] secdir review of draft-ietf-ippm-alt-mark-13
Taylor Yu <tlyu@mit.edu> Thu, 26 October 2017 01:50 UTC
Return-Path: <tlyu@mit.edu>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4E5DD139D0B; Wed, 25 Oct 2017 18:50:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.322
X-Spam-Level:
X-Spam-Status: No, score=-2.322 tagged_above=-999 required=5 tests=[BAYES_20=-0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NGvrN3uBvHYq; Wed, 25 Oct 2017 18:50:09 -0700 (PDT)
Received: from dmz-mailsec-scanner-3.mit.edu (dmz-mailsec-scanner-3.mit.edu [18.9.25.14]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E6B0A139689; Wed, 25 Oct 2017 18:50:08 -0700 (PDT)
X-AuditID: 1209190e-5e7ff70000006402-b4-59f13f4f1260
Received: from mailhub-auth-1.mit.edu ( [18.9.21.35]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by dmz-mailsec-scanner-3.mit.edu (Symantec Messaging Gateway) with SMTP id 02.E8.25602.F4F31F95; Wed, 25 Oct 2017 21:50:07 -0400 (EDT)
Received: from outgoing.mit.edu (OUTGOING-AUTH-1.MIT.EDU [18.9.28.11]) by mailhub-auth-1.mit.edu (8.13.8/8.9.2) with ESMTP id v9Q1o6nm001702; Wed, 25 Oct 2017 21:50:06 -0400
Received: from localhost (nyc-02.triskelion.com [162.243.175.178]) (authenticated bits=0) (User authenticated as tlyu@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id v9Q1o40o002237; Wed, 25 Oct 2017 21:50:05 -0400
From: Taylor Yu <tlyu@mit.edu>
To: iesg@ietf.org, secdir@ietf.org, draft-ietf-ippm-alt-mark.all@ietf.org
Date: Thu, 26 Oct 2017 01:50:04 +0000
Message-ID: <ldvtvym4r03.fsf@ubuntu-1gb-nyc1-01.localdomain>
Lines: 31
MIME-Version: 1.0
Content-Type: text/plain
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFjrKIsWRmVeSWpSXmKPExsUixCmqrOtv/zHS4NNFVYtZtxvZLWb8mchs 8WHhQxYHZo8lS34yBTBGcdmkpOZklqUW6dslcGWcPHyYreAUV8XVn0dZGxiPcnQxcnJICJhI zH65lA3EFhJYzCQxe4ZeFyMXkL2RUeLbhBXMEIlvjBLPtxR2MXJwsAnISVy+FQwSFhHwlHix /DUrSFhYwFTi9IQUkDCLgKrE9v0LGEFsXgEbibaZ31lAbB4BTolDPSuh4oISJ2c+AYszC0hI HHzxgnkCI88sJKlZSFILGJlWMcqm5Fbp5iZm5hSnJusWJyfm5aUW6Rrr5WaW6KWmlG5iBIeK JN8OxkkN3ocYBTgYlXh4P3z8ECnEmlhWXJl7iFGSg0lJlJdhD1CILyk/pTIjsTgjvqg0J7X4 EKMEB7OSCO9snY+RQrwpiZVVqUX5MClpDhYlcd5tQbsihQTSE0tSs1NTC1KLYLIyHBxKErxv bIEaBYtS01Mr0jJzShDSTBycIMN5gIbz2YEMLy5IzC3OTIfIn2K05Nh08+4fJo4N3x8AyWcz XzcwC7Hk5eelSonz7gcZKgDSkFGaBzcTFPuLPq/f9IpRHOhFYV5ekLE8wLQBN/UV0EImoIVN qh9AFpYkIqSkGhgnbLXmKPWfFSn2S07eI7L8/Xf+UxPTz+X2hWnnvr37ccHqfVt2zbdnTXz9 3NVi1uSIrul1DhcvXjlw6HrpySuL18ZMmaC/bxEvg0l66/1VbCe/72Arfd9uIeKQ8nDL2ncy zdW5/Pf3vnh/5N3/juDS19M3bNQ/blO6QYp55o9lhnscne6zJ6jOUmIpzkg01GIuKk4EAC2p DAvYAgAA
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/gTU7otfnGLpIzmGvjIa0EB3x2mE>
Subject: [secdir] secdir review of draft-ietf-ippm-alt-mark-13
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 26 Oct 2017 01:50:10 -0000
I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. The summary of the review is Ready. The Security Considerations section seems reasonable. I mostly agree that "The privacy concerns of network measurement are limited because the method only relies on information contained in the IP header without any release of user data." I would add that although information in the IP header is metadata that can be used to compromise the privacy of users, the limited marking technique in this document seems unlikely to substantially increase the existing privacy risks from IP header metadata. I also think it's reasonable to consider this detail to be already addressed by the wording "privacy concerns... are limited". It might be theoretically possible to modulate the marking to serve as a covert channel, but I think it would have a very low data rate if it is to avoid adversely affecting the measurement systems that monitor the marking. It's probably not worth mentioning this possibility in the document. Best regards, -Taylor
- [secdir] secdir review of draft-ietf-ippm-alt-mar… Taylor Yu
- [secdir] R: secdir review of draft-ietf-ippm-alt-… Fioccola Giuseppe