[secdir] R: secdir review of draft-ietf-ipfix-flow-selection-tech
"Salvatore D'Antonio" <salvatore.dantonio@uniparthenope.it> Mon, 03 December 2012 17:15 UTC
Return-Path: <salvatore.dantonio@uniparthenope.it>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3803721F85A8; Mon, 3 Dec 2012 09:15:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.73
X-Spam-Level:
X-Spam-Status: No, score=0.73 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HELO_EQ_IT=0.635, HOST_EQ_IT=1.245, MSGID_MULTIPLE_AT=1.449]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ShmgJVv2guqy; Mon, 3 Dec 2012 09:15:23 -0800 (PST)
Received: from mail.uniparthenope.it (mail.uniparthenope.it [192.167.9.244]) by ietfa.amsl.com (Postfix) with ESMTP id 18B7A21F84F2; Mon, 3 Dec 2012 09:15:23 -0800 (PST)
Received: from mail2.uniparthenope.it (unknown [10.1.2.108]) by mail.uniparthenope.it (Postfix) with SMTP id B5AD817B27; Mon, 3 Dec 2012 17:15:16 +0000 (UTC)
Received: from (unknown [192.168.241.108]) by mail2.uniparthenope.it with smtp id 1dea_01c2a350_3d6d_11e2_9101_001372515a5c; Mon, 03 Dec 2012 18:15:15 +0100
Received: from spamk.uniparthenope.it (localhost [127.0.0.1]) by spamk.uniparthenope.it (Postfix) with ESMTP id E4C33C4321; Mon, 3 Dec 2012 19:10:41 +0100 (CET)
Received: by spamk.uniparthenope.it (Postfix, from userid 500) id DFB39C432A; Mon, 3 Dec 2012 19:10:41 +0100 (CET)
Received: from mail.uniparthenope.it (mail.uniparthenope.it [192.167.9.244]) by spamk.uniparthenope.it (Postfix) with ESMTP id 58D8FC4321; Mon, 3 Dec 2012 19:10:40 +0100 (CET)
Received: from saldantoPC (unknown [10.100.8.114]) (Authenticated sender: salvatore.dantonio@uniparthenope.it) by mail.uniparthenope.it (Postfix) with ESMTPA id A57F317B27; Mon, 3 Dec 2012 18:15:14 +0100 (CET)
From: Salvatore D'Antonio <salvatore.dantonio@uniparthenope.it>
To: 'Dan Harkins' <dharkins@lounge.org>, iesg@ietf.org, secdir@ietf.org, draft-ietf-ipfix-flow-selection-tech.all@tools.ietf.org
References: <8b9118710c0f73581afe12789d16ae07.squirrel@www.trepanning.net>
In-Reply-To: <8b9118710c0f73581afe12789d16ae07.squirrel@www.trepanning.net>
Date: Mon, 03 Dec 2012 18:15:11 +0100
MIME-Version: 1.0
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: Ac0XeuKsveHPkm4QR9GS45mvKevCKi5+4HJw
Content-Language: it
Message-ID: <004601cdd179$c328c750$497a55f0$@dantonio>
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
X-Anti-Virus: Kaspersky Anti-Virus for Linux Mail Server 5.6.42/RELEASE, bases: 20121203 #8605173, check: 20121203 clean
X-Mailman-Approved-At: Mon, 03 Dec 2012 09:35:07 -0800
Subject: [secdir] R: secdir review of draft-ietf-ipfix-flow-selection-tech
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Dec 2012 17:15:24 -0000
Dear Dan, I apologise for my late answer to your comment. I agree with you. In order to address your comment I modified the new version of the Internet Draft by proposing that an input to the encryption process, like the Initialization Vector of the CBC mode, should be used to prevent that an advisory can predict the selection decision. I have also replaced the old reference "[GoRe07]" with a reference to "Recommendation for Block Cipher Modes of Operation, Methods and Techniques", NIST Special Publication 800-38A 2001 Edition. Looking forward to your feedback. Best regards, Salvatore -----Messaggio originale----- Da: Dan Harkins [mailto:dharkins@lounge.org] Inviato: mercoledì 11 aprile 2012 02:00 A: iesg@ietf.org; secdir@ietf.org; draft-ietf-ipfix-flow-selection-tech.all@tools.ietf.org Oggetto: secdir review of draft-ietf-ipfix-flow-selection-tech Hello, I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. This draft describes techniques to select flows which are sets of packets with some common characteristics. The authors have accurately identified what constitutes an attack-- an adversary having the ability to influence flow selection-- and the Security Considerations give a couple examples of this. They seem fine. There is reference to a paper "[GoRe07]" which does not appear in the References and seems to give advice that I think is wrong: use a strong cryptographically strong random number generator to thwart an attack in which parameters of time-based sampling are discovered to predict the selection decision. This attack can be thwarted by using a value that the adversary cannot predict (sort of like an IV for CBC mode) instead of a cryptographically strong random number. That leaves the random number pool to applications that really need it (like a key exchange that does a Diffie-Hellman). I suggest removing the reference to the un-referenced paper and mention a weaker requirement to thwart that attack. regards, Dan. ----- Nessun virus nel messaggio. Controllato da AVG - www.avg.com Versione: 2012.0.1913 / Database dei virus: 2411/4926 - Data di rilascio: 10/04/2012
- [secdir] secdir review of draft-ietf-ipfix-flow-s… Dan Harkins
- [secdir] R: secdir review of draft-ietf-ipfix-flo… Salvatore D'Antonio
- [secdir] R: secdir review of draft-ietf-ipfix-flo… Salvatore D'Antonio