IETF Logo Mail Archive

Re: [secdir] [Detnet] Secdir last call review of draft-ietf-detnet-mpls-05

Uri Blumenthal <uri@mit.edu> Fri, 13 March 2020 17:01 UTC

Return-Path: <uri@mit.edu>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 71A3B3A0F87; Fri, 13 Mar 2020 10:01:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id a65ofD7tfCZq; Fri, 13 Mar 2020 10:01:19 -0700 (PDT)
Received: from outgoing-exchange-7.mit.edu (outgoing-exchange-7.mit.edu [18.9.28.58]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9AA933A0F2A; Fri, 13 Mar 2020 10:01:18 -0700 (PDT)
Received: from w92exedge4.exchange.mit.edu (W92EXEDGE4.EXCHANGE.MIT.EDU [18.7.73.16]) by outgoing-exchange-7.mit.edu (8.14.7/8.12.4) with ESMTP id 02DH17jK016575; Fri, 13 Mar 2020 13:01:13 -0400
Received: from w92expo31.exchange.mit.edu (18.7.74.43) by w92exedge4.exchange.mit.edu (18.7.73.16) with Microsoft SMTP Server (TLS) id 15.0.1293.2; Fri, 13 Mar 2020 12:58:49 -0400
Received: from oc11expo31.exchange.mit.edu (18.9.4.104) by w92expo31.exchange.mit.edu (18.7.74.43) with Microsoft SMTP Server (TLS) id 15.0.1365.1; Fri, 13 Mar 2020 13:00:53 -0400
Received: from oc11expo31.exchange.mit.edu ([18.9.4.104]) by oc11expo31.exchange.mit.edu ([18.9.4.104]) with mapi id 15.00.1365.000; Fri, 13 Mar 2020 13:00:53 -0400
From: Uri Blumenthal <uri@mit.edu>
To: Stewart Bryant <stewart.bryant@gmail.com>
CC: Watson Ladd <watsonbladd@gmail.com>, DetNet WG <detnet@ietf.org>, "draft-ietf-detnet-mpls.all@ietf.org" <draft-ietf-detnet-mpls.all@ietf.org>, Lou Berger <lberger@labn.net>, secdir <secdir@ietf.org>
Thread-Topic: [secdir] [Detnet] Secdir last call review of draft-ietf-detnet-mpls-05
Thread-Index: AQHV+F6FNSfnEeGpGUm730Plf9JWd6hGAciAgAC554CAAEiKgA==
Date: Fri, 13 Mar 2020 17:00:53 +0000
Message-ID: <675222A1-2CFD-4B09-99DE-4D17C52E55D4@mit.edu>
References: <7E8B0875-79F6-4FDB-AD59-29A192C723BC@gmail.com>
In-Reply-To: <7E8B0875-79F6-4FDB-AD59-29A192C723BC@gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
Content-Type: multipart/signed; boundary="Apple-Mail-F5238617-7028-4E4B-8469-0B6847B71AD4"; protocol="application/pkcs7-signature"; micalg="sha-256"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/x_l_y1h-cffA1yJUQzbePDeMK-8>
Subject: Re: [secdir] [Detnet] Secdir last call review of draft-ietf-detnet-mpls-05
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 13 Mar 2020 17:01:28 -0000

I concur with Watson. Please state *explicitly* the things that he suggested.



> On Mar 13, 2020, at 08:41, Stewart Bryant <stewart.bryant@gmail.com> wrote:
> 
> 
> 
>> On 13 Mar 2020, at 01:35, Watson Ladd <watsonbladd@gmail.com> wrote:
>> 
>>> On Thu, Mar 12, 2020 at 4:07 AM Lou Berger <lberger@labn.net> wrote:
>>> 
>>> Watson,
>>> 
>>> Can you provide context here? Can you be explicit on what you see needs to
>>> be addressed (beyond what is in this document as well as related rfcs)?
>> 
>> You have to talk about how the layers interact, and can't just say the
>> lower level handles anything without any guide as to what needs to be
>> provided by that lower layer.
>> 
>> I think my concerns about the assumptions this could be fixed by
>> saying. "All nodes are trusted and any of them can misbehave in ways
>> that affect the network.  
> 
> That is a fundamental assumption of all routers, so there really is no need to state it.
> 
> As I said earlier, a practical solution to the byzantine routing problem was proposed by Radia about 30 years ago and there is zero interest in it because the trust assumption is fundamentally ingrained in the routing architecture, and so far it has been well founded.
> 
> 
>> If the MPLS layer cannot provide sufficient
>> determinism, then the DetNet mechanisms won't work".  
> 
> That is kind of fundamental to the point where I am also not sure it needs to be stated, and if it does need to be stated then it needs to go up the tree in one of the fundamental documents, not each of the data-plane documents (there are quite a few such documents).
> 
>> I agree we
>> shoudn't require an entire massive security framework to be quoted
>> again here, but there must be some details of this embedding that are
>> worth noting, and yet I don't see them called out in the security
>> considerations section.
> 
> Is this about showing that we have done something to prove that we take security seriously, or is it about giving practical advice to someone deploying the technology. Hopefully the later, in which case I think this is well covered by the DetNet context and the MPLS documents, all of which the reader can be assumed to be familiar with.
> 
>> 
>> Are there really no specific concerns about the interaction between
>> DetNet and MPLS?
> 
> There are MPLS service requirements and expectations. However I don’t think there is an interaction per se.
> 
> It is as I already said about pseudowires. If the performance of this approach is not good enough, then spend the money and buy a dedicated physical network.
> 
> - Stewart
> 
> 
>> 
>>> 
>>> Thank you,
>>> Lou
>>> 
>>> 
>>> ----------
>>>> On March 11, 2020 10:30:27 PM Watson Ladd <watsonbladd@gmail.com> wrote:
>>> 
>>>> I don't see any reason why RFC 3552's guidelines shoudn't apply to this draft.
>>>> 
>>>> If there is a MPLS exception I'd like to see the rules that should be applied.
>>>> 
>>>> As is I don't see any reason why the assumptions can't be explicitly
>>>> spelled out, either in the Security Considerations or elsewhere.
>>>> 
>>>> _______________________________________________
>>>> detnet mailing list
>>>> detnet@ietf.org
>>>> https://www.ietf.org/mailman/listinfo/detnet
>>>> 
>>> 
>>> 
>> 
>> 
>> -- 
>> "Man is born free, but everywhere he is in chains".
>> --Rousseau.
> 
> _______________________________________________
> secdir mailing list
> secdir@ietf.org
> https://www.ietf.org/mailman/listinfo/secdir
> wiki: http://tools.ietf.org/area/sec/trac/wiki/SecDirReview

v2.23.0 | Report a Bug | By Email