Re: [Secdispatch] Numeric IDs: Update to RFC3552

Hannes Tschofenig <Hannes.Tschofenig@arm.com> Fri, 19 April 2019 07:07 UTC

Return-Path: <Hannes.Tschofenig@arm.com>
X-Original-To: secdispatch@ietfa.amsl.com
Delivered-To: secdispatch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9ABDC1202BB; Fri, 19 Apr 2019 00:07:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2hJvqhJgMcGX; Fri, 19 Apr 2019 00:07:48 -0700 (PDT)
Received: from EUR02-AM5-obe.outbound.protection.outlook.com (mail-eopbgr00060.outbound.protection.outlook.com [40.107.0.60]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B27F31202B8; Fri, 19 Apr 2019 00:07:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector1-arm-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=5KRDbnN9XVbXhrMn5vempWfD6gUIwpAHSAfbQNOc2HA=; b=fXs6ifg0NuFaqqKWFmTkGjN9dt8ldnbaEo3jkAU1ujxB7M6nvigIT4+DpYuc1Q3yogBt+5doxaHvF+3aFcH0OjiSaUgM45wBsXSN0467t4+rgAsG2m6LC87nCLSHPKZ04+W/dIiUgiG1R9XP13oVj1VMKosMHeEiiK4psDNY9mE=
Received: from AM6PR08MB3686.eurprd08.prod.outlook.com (20.178.91.22) by AM6PR08MB4008.eurprd08.prod.outlook.com (20.179.0.222) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1813.12; Fri, 19 Apr 2019 07:07:44 +0000
Received: from AM6PR08MB3686.eurprd08.prod.outlook.com ([fe80::7025:fc8a:7d0a:cb91]) by AM6PR08MB3686.eurprd08.prod.outlook.com ([fe80::7025:fc8a:7d0a:cb91%3]) with mapi id 15.20.1813.011; Fri, 19 Apr 2019 07:07:44 +0000
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
To: Fernando Gont <fgont@si6networks.com>, Eric Rescorla <ekr@rtfm.com>
CC: =?iso-8859-1?Q?Iv=E1n_Arce_=28Quarkslab=29?= <iarce@quarkslab.com>, IETF SecDispatch <secdispatch@ietf.org>, "pearg@irtf.org" <pearg@irtf.org>, "secdispatch-chairs@ietf.org" <secdispatch-chairs@ietf.org>
Thread-Topic: [Secdispatch] Numeric IDs: Update to RFC3552
Thread-Index: AQHU9DPSC6AaW/J3sUCYhloaFRIZ4KZB8XkAgACHeoCAAJgRgA==
Date: Fri, 19 Apr 2019 07:07:44 +0000
Message-ID: <AM6PR08MB36869C6E0572B717F45756BAFA270@AM6PR08MB3686.eurprd08.prod.outlook.com>
References: <4ac730a6-73ca-74cd-e848-4a6645bd0403@si6networks.com> <CABcZeBOy6MB0OG2cs=EE6hWB4pXBuNzW=LcQ+1dKmJzHBOUR-g@mail.gmail.com> <bc733114-6f97-532b-02d5-2730e834340a@si6networks.com>
In-Reply-To: <bc733114-6f97-532b-02d5-2730e834340a@si6networks.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Hannes.Tschofenig@arm.com;
x-originating-ip: [80.92.121.58]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 5ae77cc7-b501-401b-1751-08d6c495b8af
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600141)(711020)(4605104)(4618075)(2017052603328)(7193020); SRVR:AM6PR08MB4008;
x-ms-traffictypediagnostic: AM6PR08MB4008:
x-ms-exchange-purlcount: 1
x-microsoft-antispam-prvs: <AM6PR08MB40086A3B7608BEDEC4711BA5FA270@AM6PR08MB4008.eurprd08.prod.outlook.com>
x-forefront-prvs: 0012E6D357
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(39860400002)(346002)(396003)(136003)(366004)(376002)(189003)(199004)(40434004)(13464003)(476003)(97736004)(4326008)(33656002)(74316002)(66066001)(2906002)(7736002)(25786009)(3846002)(8936002)(71200400001)(71190400001)(6116002)(52536014)(66476007)(68736007)(66556008)(72206003)(81166006)(305945005)(11346002)(446003)(14444005)(81156014)(486006)(5660300002)(478600001)(5024004)(966005)(6246003)(229853002)(55016002)(53936002)(186003)(26005)(66946007)(73956011)(99286004)(6306002)(6506007)(9686003)(102836004)(53546011)(316002)(8676002)(7696005)(76176011)(15650500001)(110136005)(14454004)(66574012)(256004)(6436002)(54906003)(86362001)(66446008)(64756008)(76116006); DIR:OUT; SFP:1101; SCL:1; SRVR:AM6PR08MB4008; H:AM6PR08MB3686.eurprd08.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: arm.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: dzHy06BoeRa438QWwLVBjq0Mqp87B1NLJs+jW6Pa0pnqZL7iPsR7F9Yuxv9yZDkBp4z5BDKlDTJj7Kqp4JQok3ykQ5Slio7e2iQRo0bLn2qkQjuIFw9huumXH2eKoEqWe/Qo8CFjyKIcDZcnFz1ziq8xxfUTxC+AKOWe1I5A3eGd9SESishitcY9PaUT712McnTagjgjo7ZqGREPORZS03svbfzj+gfiuyD9bNZDSs2tAjnEMQSqZZim1hYWfAXx2I//37CvhwbXCez889WcOMyOmg7EGW9j+zLd+njNl5X1Hk3hHEPqD9T+Hg7cji8COfZT2JIsCYkKPLvdLbgNlvmOnJRbN38kky9R4uwv8pbKiyNpc84bw4CO42No3LmUeEapbdkTJqCfWNIVlPbCxOWixyWxtZKyOS9TMR9CNT0=
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 5ae77cc7-b501-401b-1751-08d6c495b8af
X-MS-Exchange-CrossTenant-originalarrivaltime: 19 Apr 2019 07:07:44.6146 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM6PR08MB4008
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdispatch/dFnCbvh3J97bnGTclZx_qHZ8vRg>
Subject: Re: [Secdispatch] Numeric IDs: Update to RFC3552
X-BeenThere: secdispatch@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Dispatch <secdispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdispatch/>
List-Post: <mailto:secdispatch@ietf.org>
List-Help: <mailto:secdispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 19 Apr 2019 07:07:52 -0000

Hi Fernando,

I am not sure why it is important for you to update RFC 3552. The argument that it requires specification authors to consider your document in security and privacy considerations is not IMHO not correct.
If you document provides useful guidance then it should stand on its own.

A few random comments from looking at it:

- FWIW you should be re-using terms defined in RFC 6973, such as identifier.
- Why are you acknowledging yourself in your own draft?
- You use the RFC 2119 term as requirements for protocol authors rather than for interoperability. I think you should mention this in the terminology section somewhere or not use RFC2119 language.
- You should define somewhere what you consider a "transient numeric identifier".
- In the introduction and in the abstract you describe a problem with implementations (you refer to TCP) but the recommendations later aim for protocol authors. In many cases the authors of the specification and not the implementers. Do you believe that you have solved the problem?

More comments will follow...

Ciao
Hannes


-----Original Message-----
From: Secdispatch <secdispatch-bounces@ietf.org> On Behalf Of Fernando Gont
Sent: Donnerstag, 18. April 2019 23:50
To: Eric Rescorla <ekr@rtfm.com>
Cc: Iván Arce (Quarkslab) <iarce@quarkslab.com>om>; IETF SecDispatch <secdispatch@ietf.org>rg>; pearg@irtf.org; secdispatch-chairs@ietf.org
Subject: Re: [Secdispatch] Numeric IDs: Update to RFC3552

On 18/4/19 15:45, Eric Rescorla wrote:
>
>
> On Tue, Apr 16, 2019 at 2:07 AM Fernando Gont <fgont@si6networks.com
> <mailto:fgont@si6networks.com>> wrote:
>
>     Folks,
>
>     At the last secdispatch meeting I presented our I-D
>     draft-gont-predictable-numeric-ids.
>
>     >From the meeting discussion, it would seem to me that there is support
>     for this work.
>
>     It would also seem to me that part of this work is to be pursued in an
>     appropriate IRTF rg, while the update to RFC3552
>     (draft-gont-numeric-ids-sec-considerations) should be pursued as an
>     AD-sponsored document.
>
>
> I'm somewhat skeptical on an update to 3552; the proposed set of
> things to be improved seems unclear.

Can you please state what's unclear?

We have 30+ years of history of screwing up numeric identifiers in the protocols we specify.

Just to name a few:
* TCP ISNs
* TCP ephemeral ports
* DNS TxIDs
* IPv4 Frag IDs
* IPv6 Frag IDs
* IPv6 IIDs
* NTP port numbers
* NTP timestamps
* TCP timestamps

.... and the list can continue.


We are trying, for once and for all, to act proactively in this respect, to avoid repeating the same history in every protocol we specify, and every implementation that comes up.



> I don't think that the material in this document should be added to
> 3552, as the purpose of 3552 is not really to go into that kind of
> detail about any specific topic.

What I would expect is that RFC3552 helps prevent us from coming up with vulnerable implementations. Clearly, the history of flawed IDs seems to indicate that we are doing something wrong.

At the time of this writing, it seems that RFC3552 is the document that draft/RFC authors are required to read when it comes to how to do a security analysis of their document. So I am curious why you think this doesn't belong to RFC3552.

That said, this document is *updating* RFC3552, rather than a revision of RFC3552. Therefore, the content in this document wouldn't become part of RFC3552, necessarily.

Thanks,
--
Fernando Gont
SI6 Networks
e-mail: fgont@si6networks.com
PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492




_______________________________________________
Secdispatch mailing list
Secdispatch@ietf.org
https://www.ietf.org/mailman/listinfo/secdispatch
IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.