Re: [sfc] Alvaro Retana's No Objection on draft-ietf-sfc-oam-packet-02: (with COMMENT)
Alvaro Retana <aretana.ietf@gmail.com> Thu, 16 March 2023 16:19 UTC
Return-Path: <aretana.ietf@gmail.com>
X-Original-To: sfc@ietfa.amsl.com
Delivered-To: sfc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6F9AEC13739F; Thu, 16 Mar 2023 09:19:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.095
X-Spam-Level:
X-Spam-Status: No, score=-7.095 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NlaPM6MnsmPi; Thu, 16 Mar 2023 09:19:31 -0700 (PDT)
Received: from mail-pj1-x1032.google.com (mail-pj1-x1032.google.com [IPv6:2607:f8b0:4864:20::1032]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9E743C137391; Thu, 16 Mar 2023 09:19:31 -0700 (PDT)
Received: by mail-pj1-x1032.google.com with SMTP id e15-20020a17090ac20f00b0023d1b009f52so5931456pjt.2; Thu, 16 Mar 2023 09:19:31 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; t=1678983571; h=content-transfer-encoding:cc:to:subject:message-id:date :mime-version:references:in-reply-to:from:from:to:cc:subject:date :message-id:reply-to; bh=zQDwqMkXV3quibdRcMcWfW8CmpnN7scdEg1n79sbMWY=; b=J2lQhluXsSMzTssW6Zi6iPitYjqftMKrElEqFtPmmI4hGbhuPmUWkZPjmdtu/udW0a rf2VXwHQIEhUUx6+GNGLfT/0kgE1/PfEcdw99en9IvF0Ba6P7xsav4neJ3p5KUKsK8TY ic0zX7ncOcrnNGY8Ubhr7PZRPaztTJdF8dpSWvmfX4mJRTcvjezOzNdjickR9XSRrewG aVdQWhlykwaI89T4e8eV/hiKJ4yeWR0uG8YPOTiuba7QZ0xXngk8tl+vvr3B6ooFEawa 1UYNiyw2fuWpBg5+zS3c2wVTotmKMK5s83xWzjKFyBiNVXvFOrZAiRfyhiN4eYcpeCKA qJ+A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; t=1678983571; h=content-transfer-encoding:cc:to:subject:message-id:date :mime-version:references:in-reply-to:from:x-gm-message-state:from:to :cc:subject:date:message-id:reply-to; bh=zQDwqMkXV3quibdRcMcWfW8CmpnN7scdEg1n79sbMWY=; b=3LYrAFG0FAJa5dTNnnCFcGJcsrtjYvCG312Yccdrby8O731vkjS+P20hktWZPe7f+W UYfquKB2zofT57SXJF6k5K1YPiLq6cWXsI3WZKfBDp+8QwmPEnQs9EJA6gHeKErEA/UJ egkLOnEZlSvt09G6zswzzLXB4AtQqiGw1drDWf+eebrcbiq2KvRDToafBEXHubSpa/KI EKF5NSJvq8ECXk4eMpWK1sKfY7JT34FxKpWWsKIVSea8nRDnESIbZvtqdgAfkMh4oTUE 7Xxt/XFIfDyxnGTJka6sjzQyyXZeNq2+Nj18fl6cZBTqsR8fDYMMx8YA16E/6x8WQAVo oAzg==
X-Gm-Message-State: AO0yUKVXS4U6V2hmCI6OzUOY00IdykG+WbZEzWnooNaqjZrArSKEZyvj 1l/vh1IuBfvESowgVIucpwW+cTKmVX0WPZ6dzAhAYdQ4
X-Google-Smtp-Source: AK7set8xgCxWTJivGpE8heC8voJRLQUqfLOZVr7OXe6Vr1GzS9LL8dCBwJ2YLpwPy1rotfnnotIjHq7//g3kidQW6hQ=
X-Received: by 2002:a17:902:f686:b0:1a0:535b:22d9 with SMTP id l6-20020a170902f68600b001a0535b22d9mr1854802plg.10.1678983571132; Thu, 16 Mar 2023 09:19:31 -0700 (PDT)
Received: from 1058052472880 named unknown by gmailapi.google.com with HTTPREST; Thu, 16 Mar 2023 12:19:30 -0400
From: Alvaro Retana <aretana.ietf@gmail.com>
In-Reply-To: <12715_1678868218_64117EFA_12715_99_1_87f4c5adbbf0469b95f096a4f0b98191@orange.com>
References: <167881890203.59567.9590061889094198419@ietfa.amsl.com> <12715_1678868218_64117EFA_12715_99_1_87f4c5adbbf0469b95f096a4f0b98191@orange.com>
MIME-Version: 1.0
Date: Thu, 16 Mar 2023 12:19:30 -0400
Message-ID: <CAMMESsxgWDz_b6E-mxDdKUcRkR396iYR8sB0bfMic-x3U76bAw@mail.gmail.com>
To: mohamed.boucadair@orange.com, The IESG <iesg@ietf.org>
Cc: "sfc-chairs@ietf.org" <sfc-chairs@ietf.org>, "draft-ietf-sfc-oam-packet@ietf.org" <draft-ietf-sfc-oam-packet@ietf.org>, "gregimirsky@gmail.com" <gregimirsky@gmail.com>, "sfc@ietf.org" <sfc@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/sfc/AGOqhH1fy_uxJmiEOBBB9OC0ybE>
Subject: Re: [sfc] Alvaro Retana's No Objection on draft-ietf-sfc-oam-packet-02: (with COMMENT)
X-BeenThere: sfc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Network Service Chaining <sfc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sfc>, <mailto:sfc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sfc/>
List-Post: <mailto:sfc@ietf.org>
List-Help: <mailto:sfc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sfc>, <mailto:sfc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Mar 2023 16:19:35 -0000
On March 15, 2023 at 4:16:59 AM, mohamed.boucadair@orange.com wrote: Med: Hi! I'm ok with your replies, but I do want to ask about #5 again: ... > > (5) From §5: "Any data included in an NSH OAM packet SHOULD be > > integrity-protected [RFC9145]." > > > > Why is this action recommended and not required? > > [Med] I remember we discussed this point with you here: > https://mailarchive.ietf.org/arch/msg/sfc/rPsqPUisDj3lILJk-CVF-ejBrVg/. Please > see also > https://mailarchive.ietf.org/arch/msg/sfc/yC-3dN6jvyxZNZY9EYz3XIUlJMs/. The > wording in the spec is consistent with the positions expressed there. Thanks. I remember that discussion, but I'm asking something different -- at least trying to. ;-) Let me rephrase: The text from §9/rfc9145 (pasted below) requires integrity protection when "NSH data is exposed to several threats". But the text in this draft only recommends it. Are OAM packets not exposed to the same threats? If they are, why wouldn't the same requirement be applicable here? I don't see a difference between OAM packets and any other packets, but I may be missing something. Even if the use of rfc9145 is optional (as we discussed before), I would still like to understand the difference in criteria. If those differences exist, it would help implementations when considering when it may be ok to not use integrity protection. Thanks! Alvaro. > > ===== > > NSH data is exposed to several threats: > > > > * An on-path attacker modifying the NSH data. > > > > * An attacker spoofing the NSH data. > > > > * An attacker capturing and replaying the NSH data. > > > > * Data carried in Context Headers revealing privacy-sensitive > > information to attackers. > > > > * An attacker replacing the packet on which the NSH is imposed > > with a modified or bogus packet. > > > > In an SFC-enabled domain where the above attacks are possible, > > (1) NSH data MUST be integrity protected and replay protected, > > and (2) privacy-sensitive NSH metadata MUST be encrypted for > > confidentiality preservation purposes. The Base and Service > > Path Headers are not encrypted. > > =====
- [sfc] Alvaro Retana's No Objection on draft-ietf-… Alvaro Retana via Datatracker
- Re: [sfc] Alvaro Retana's No Objection on draft-i… mohamed.boucadair
- Re: [sfc] Alvaro Retana's No Objection on draft-i… Alvaro Retana
- Re: [sfc] Alvaro Retana's No Objection on draft-i… mohamed.boucadair