Re: [sfc] Roman Danyliw's Discuss on draft-ietf-sfc-nsh-integrity-06: (with DISCUSS and COMMENT)
tirumal reddy <kondtir@gmail.com> Mon, 19 July 2021 08:03 UTC
Return-Path: <kondtir@gmail.com>
X-Original-To: sfc@ietfa.amsl.com
Delivered-To: sfc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0E89F3A284D; Mon, 19 Jul 2021 01:03:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Av_Cc0g1O-ME; Mon, 19 Jul 2021 01:03:15 -0700 (PDT)
Received: from mail-lf1-x136.google.com (mail-lf1-x136.google.com [IPv6:2a00:1450:4864:20::136]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 075C93A284B; Mon, 19 Jul 2021 01:03:09 -0700 (PDT)
Received: by mail-lf1-x136.google.com with SMTP id f30so22172920lfv.10; Mon, 19 Jul 2021 01:03:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=2r79NFYQtzxWgHEIVKYI6cpuCwKjBaUls3MndhSPljw=; b=pF9qRp+nTYpV9MRs4Efkksrfbqt+ICkjt/BKsmttKHXnkuVzKeDQ4fJriVFIUhvFm9 DR8WfTDvxUVrDaYmiI1iQmEpG7UOiUEMBPWoKcBXZd1Ly+58YmSQPrgFtxzgafl30+dE 52gyepxeNYvc0XXYmxC6c/BkTeUPG2fqhHOSB3AsF+uNV4emNuEVNb/LIyAB6UWRLUao l1maIGx5AqVLbMz4ylCWAhJ/nDFNDbesmFdY4udjQPcNpu9OwMPQ5vO2Icx8gsbCfGGZ aRZC9jqn/WkAZCbvO1EkwB1/VvITiXKnkxVpNGjZBLhl4KpNTsRl0xk8hE+qz7ki10yK 9ksA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=2r79NFYQtzxWgHEIVKYI6cpuCwKjBaUls3MndhSPljw=; b=s311leiY41yslud6ON6VA3U5qefQobg/xOZKej/ONdVJ4lEQM9nSQhF6MWfoAvWQkC Z3AEKYZNLnWkHsbZoaUZepvr23z6qRkBBT4nwAh0YU9Dlv9fGzD1ytKKRBdEgMG5wFmk OPueEYyY9GHf1FsBOLHTdZc1e4WLoNKNEeULm+FC1GmbsdzrzENNVdcuYmXJ8C0UmN8Z Z7kgwC051rCKTgEbQD9qG9ueFG2IDM+ieCLFqiZgn25dr3l0633lS2G28ncxLsAlemcN 2jBJ/m0ZszEPgolGKCeB6+yZLRzYCDrNIS6BnZjX/VAt2cf1/chFvqUpD3E/a6Cw9HAp 0vRQ==
X-Gm-Message-State: AOAM531zrSFyA6d91eI6tOBHib2FvM82KpuRR8qc2Hk4W3yYo5goC0Ju 2I2rkjlp6kk4MzgDdvvJgs7en84Y1qxml9GwGp8=
X-Google-Smtp-Source: ABdhPJzS19kVd6MaQMdHQZFkqP3iZWRa4BS+GxW6PMKUos/+RquztHtwAZk7Ts1q1cph3nslpYzILbhDpLkbemgar3k=
X-Received: by 2002:a19:f00c:: with SMTP id p12mr17689410lfc.647.1626681786733; Mon, 19 Jul 2021 01:03:06 -0700 (PDT)
MIME-Version: 1.0
References: <162620296297.3569.2501497601980031548@ietfa.amsl.com> <CAFpG3gc5_Cr3E-ZvRq6tMYOFRN-D8iHODBzYh5K-xqXQpSES+w@mail.gmail.com> <20210715193611.GV74365@kduck.mit.edu>
In-Reply-To: <20210715193611.GV74365@kduck.mit.edu>
From: tirumal reddy <kondtir@gmail.com>
Date: Mon, 19 Jul 2021 13:32:56 +0530
Message-ID: <CAFpG3gc8bxhC+p4Q_RNiqKmqLc_E9-iA5TGK-Xt=ABni7gmrwA@mail.gmail.com>
To: Benjamin Kaduk <kaduk@mit.edu>
Cc: Roman Danyliw <rdd@cert.org>, gregimirsky@gmail.com, draft-ietf-sfc-nsh-integrity@ietf.org, sfc-chairs@ietf.org, The IESG <iesg@ietf.org>, sfc@ietf.org
Content-Type: multipart/alternative; boundary="0000000000000f97bc05c7755e87"
Archived-At: <https://mailarchive.ietf.org/arch/msg/sfc/1f2Vm3Y_fOeKpnSYNyEzv52rrOM>
Subject: Re: [sfc] Roman Danyliw's Discuss on draft-ietf-sfc-nsh-integrity-06: (with DISCUSS and COMMENT)
X-BeenThere: sfc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Network Service Chaining <sfc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sfc>, <mailto:sfc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sfc/>
List-Post: <mailto:sfc@ietf.org>
List-Help: <mailto:sfc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sfc>, <mailto:sfc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Jul 2021 08:03:20 -0000
On Fri, 16 Jul 2021 at 01:06, Benjamin Kaduk <kaduk@mit.edu> wrote: > On Wed, Jul 14, 2021 at 02:57:42PM +0530, tirumal reddy wrote: > > Hi Roman, > > > > Please see inline > > > > On Wed, 14 Jul 2021 at 00:33, Roman Danyliw via Datatracker < > > noreply@ietf.org> wrote: > > > [...] > > > > > > -- The text would benefit from a description on how to serialize the > > > packet for > > > hashing. For example, Figure 6 and 7 are helpful logical descriptions > of > > > the > > > integrity scope. However, the MAC field itself is depicted as part of > the > > > what > > > should get hashed. Should that field be zeroed out? Removed ? > > > > > > > Yes, we will update text as follows: > > > > The NSH imposer sets the MAC field to zero and then computes the message > > integrity for the target NSH data (depending on the integrity protection > > scope discussed in Section 5) using MAC_KEY and HMAC algorithm. It > inserts > > the computed digest in the MAC field in the "MAC and Encrypted Metadata" > > Context Header. > > It's probably also worth updating the description of the verification > procedures to match; we typically see these done in tandem. > Yes, we will update Section 7.5 as follows: After storing the value of the MAC field in the "MAC and Encrypted Metadata" Context Header, the SFC data plane element fills the MAC field with zeros. Then, the SFC data plane element generates the message integrity for the target NSH data (depending on the integrity protection scope discussed in Section 5) using MAC_KEY and HMAC algorithm. If the value of the newly generated digest is identical to the stored one, the SFC data plane element is certain that the NSH data has not been tampered and validation is therefore successful. Otherwise, the NSH packet MUST be discarded. The comparison of the computed HMAC value to the store value MUST be done in a constant-time manner to thwart timing attacks. -Tiru > > > -Ben >
- [sfc] Roman Danyliw's Discuss on draft-ietf-sfc-n… Roman Danyliw via Datatracker
- Re: [sfc] Roman Danyliw's Discuss on draft-ietf-s… tirumal reddy
- Re: [sfc] Roman Danyliw's Discuss on draft-ietf-s… mohamed.boucadair
- Re: [sfc] Roman Danyliw's Discuss on draft-ietf-s… Benjamin Kaduk
- Re: [sfc] Roman Danyliw's Discuss on draft-ietf-s… tirumal reddy