Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs
Sandra Murphy <sandy@tislabs.com> Tue, 13 January 2015 16:15 UTC
Return-Path: <sandy@tislabs.com>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 13E011A8F41 for <sidr@ietfa.amsl.com>; Tue, 13 Jan 2015 08:15:12 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.911
X-Spam-Level:
X-Spam-Status: No, score=-1.911 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sCWT5q6KiC2w for <sidr@ietfa.amsl.com>; Tue, 13 Jan 2015 08:15:07 -0800 (PST)
Received: from walnut.tislabs.com (walnut.tislabs.com [192.94.214.200]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6D8651A8F3A for <sidr@ietf.org>; Tue, 13 Jan 2015 08:15:07 -0800 (PST)
Received: from nova.tislabs.com (unknown [10.66.1.77]) by walnut.tislabs.com (Postfix) with ESMTP id AA7F628B003D; Tue, 13 Jan 2015 11:15:06 -0500 (EST)
Received: from [127.0.0.1] (localhost.localdomain [127.0.0.1]) by nova.tislabs.com (Postfix) with ESMTP id 9993F1F8035; Tue, 13 Jan 2015 11:15:06 -0500 (EST)
Content-Type: multipart/signed; boundary="Apple-Mail=_EE5E6E49-97C6-4276-A3E1-694A0C92BA0B"; protocol="application/pgp-signature"; micalg="pgp-sha512"
Mime-Version: 1.0 (Mac OS X Mail 6.6 \(1510\))
From: Sandra Murphy <sandy@tislabs.com>
In-Reply-To: <D0D9CBCB.30139%dougm@nist.gov>
Date: Tue, 13 Jan 2015 11:15:06 -0500
Message-Id: <0EB90B4D-3F8F-4B69-8283-C75A3BE2283C@tislabs.com>
References: <52D072F6.9030304@ops-netman.net> <52D0A0AC.5040903@ops-netman.net> <CF07E61E.AF86%wesley.george@twcable.com> <CAHw9_iL94_h7xyncvsbpxrmNMdH2jLJV5-ir5tdpnVUVidEwnQ@mail.gmail.com> <D0D9C5D9.30107%dougm@nist.gov> <D0D9CBCB.30139%dougm@nist.gov>
To: "Montgomery, Douglas" <dougm@nist.gov>
X-Mailer: Apple Mail (2.1510)
Archived-At: <http://mailarchive.ietf.org/arch/msg/sidr/V6Ajx5MVgZfp61LKcbmwenUJDpM>
Cc: sidr wg list <sidr@ietf.org>, "draft-ietf-sidr-bgpsec-reqs@tools.ietf.org" <draft-ietf-sidr-bgpsec-reqs@tools.ietf.org>, Sandra Murphy <sandy@tislabs.com>
Subject: Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sidr/>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 13 Jan 2015 16:15:13 -0000
Oh, good. I was wondering what time warp I had just stepped into. Just so everyone realizes the status of the 2014 discussion - draft-ietf-sidr-bgpsec-reqs was published as RFC 7353 in August 2014. --Sandy On Jan 12, 2015, at 7:09 PM, "Montgomery, Douglas" <dougm@nist.gov> wrote: > Terribly sorry about that … ignore the post below. > > An odd search / view through my mailbox made me think this was a recent > comment. > > I was not trying to resurrect the discussion below. > > Sorry about that. > > dougm > — > Doug Montgomery, Mgr Internet & Scalable Systems Research @ NIST/ITL/ANTD > > > > > > On 1/12/15, 7:02 PM, "Montgomery, Douglas" <dougm@nist.gov> wrote: > >> I doubt that using such vague / loose terms as “business relationship >> conformance” helps matters. >> >> Actually 3.22 is a bit loose in the use of the word “intended”. >> >> "3.22 A BGPsec design SHOULD NOT presume to know the intent of the >> originator of a NLRI, nor that of any AS on the AS Path, other >> than that they intended to pass it to the next AS in the Path.” >> >> >> I highly suspect that the same misconfigurations that can result in route >> leaks today, could result in BGPsec signed route leaks (I.e., not what was >> intended) tomorrow. >> >> >> One might try the following for 3.22 to both fix the above and address >> Wes’s concerns. >> >> 3.22 A BGPsec design SHOULD NOT presume to know the intent of the >> originator of a NLRI, nor that of any AS on the AS Path, other >> than that they announced the NLRI explicitly to the next AS in the Path. >> In particular there is no BGPsec requirement that the PATH for a given >> NLRI >> is consistent with the set of local routing or filtering policies of the >> sender, >> receiver or any AS along the PATH." >> >> That might kill two birds … or scare the whole flock from the trees. >> dougm >> — >> Doug Montgomery, Mgr Internet & Scalable Systems Research @ NIST/ITL/ANTD >> >> >> >> >> >> On 1/24/14, 10:04 AM, "Warren Kumari" <warren@kumari.net> wrote: >> >>> On Fri, Jan 24, 2014 at 9:56 AM, George, Wes <wesley.george@twcable.com> >>> wrote: >>>> I’ve reviewed, it’s mostly ready, minor comments: >>>> >>>> I’m not happy with this text in the intro: “issues of business >>>> relationship conformance, of which routing 'leaks' are a subset, >>>> while quite important to operators (as are many other things), are >>>> not security issues per se, and are outside the scope of this >>>> document.” >>>> >>> >>> Would simply: >>> "issues of business relationship conformance (of which routing 'leaks' >>> are a subset), while important to operators, are outside the scope of >>> this document.” >>> >>> cover things well enough? >>> >>>> Let me be clear up front, my issue is *not* that these are declared out >>>> of >>>> scope, since my comments on the threats document seemed to be >>>> interpreted >>>> otherwise. >>>> >>>> My issue with this text is the reason it provides as to why they’re >>>> considered out of scope. I don’t think that it’s entirely accurate to >>>> assert that route leaks are not security issues. While not all route >>>> leaks >>>> are security issues, some are. It would be more accurate to reflect the >>>> discussion that led us to the conclusion that we can’t secure them >>>> because >>>> we don’t know what “them” is yet, and are awaiting GROW to define them >>>> in >>>> such a way so that we can evaluate if it’s even possible to secure them >>>> in >>>> this framework. That may be a longer discussion that doesn’t belong in >>>> the >>>> intro, I don’t know. >>>> >>> >>> I suspect it is. It somewhat seems like a non-terminating discussion.... >>> >>> W >>>> Also I think the parenthetical “as are many other things" is >>>> unnecessary >>>> and clunky. >>>> >>>> >>>> Thanks, >>>> >>>> Wes >>>> >>>> >>>> On 1/10/14, 8:38 PM, "Chris Morrow" <morrowc@ops-netman.net> wrote: >>>> >>>>> >>>>> Working Group Folken, >>>>> Today starts a WGLC for the subject draft: >>>>> <http://trac.tools.ietf.org/html/draft-ietf-sidr-bgpsec-reqs> >>>>> >>>>> Abstract: >>>>> This document describes requirements for a BGP security protocol >>>>> design to provide cryptographic assurance that the origin AS had the >>>>> right to announce the prefix and to provide assurance of the AS Path >>>>> of the announcement. >>>>> >>>>> Please have a read-through and send comments at the authors + >>>>> sidr@ietf.org mailing list. >>>>> >>>>> This WGLC completes in 1,209,600 seconds, or 20,160 minutes. >>>>> >>>>> Thanks! >>>>> >>>>> -chris >>>>> co-chair >>>>> >>>>> >>>>> _______________________________________________ >>>>> sidr mailing list >>>>> sidr@ietf.org >>>>> https://www.ietf.org/mailman/listinfo/sidr >>>> >>>> >>>> This E-mail and any of its attachments may contain Time Warner Cable >>>> proprietary information, which is privileged, confidential, or subject >>>> to copyright belonging to Time Warner Cable. This E-mail is intended >>>> solely for the use of the individual or entity to which it is addressed. >>>> If you are not the intended recipient of this E-mail, you are hereby >>>> notified that any dissemination, distribution, copying, or action taken >>>> in relation to the contents of and attachments to this E-mail is >>>> strictly prohibited and may be unlawful. If you have received this >>>> E-mail in error, please notify the sender immediately and permanently >>>> delete the original and any copy of this E-mail and any printout. >>>> _______________________________________________ >>>> sidr mailing list >>>> sidr@ietf.org >>>> https://www.ietf.org/mailman/listinfo/sidr >>> _______________________________________________ >>> sidr mailing list >>> sidr@ietf.org >>> https://www.ietf.org/mailman/listinfo/sidr >> > > _______________________________________________ > sidr mailing list > sidr@ietf.org > https://www.ietf.org/mailman/listinfo/sidr
- [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Christopher Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Danny McPherson
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Shane Amante
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs George, Wes
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Stephen Kent
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Danny McPherson
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Stephen Kent
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Eric Osterweil
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Christopher Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Sriram, Kotikalapudi
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Russ White
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Randy Bush
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Russ White
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Randy Bush
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Randy Bush
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Jakob Heitz
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Sriram, Kotikalapudi
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Eric Osterweil
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Danny McPherson
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Danny McPherson
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Christopher Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Eric Osterweil
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Jakob Heitz
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Brian Dickson
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Christopher Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Danny McPherson
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Christopher Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Sriram, Kotikalapudi
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Danny McPherson
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Eric Osterweil
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Brian Dickson
- [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Chris Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Sriram, Kotikalapudi
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Warren Kumari
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Keyur Patel (keyupate)
- [sidr] Another potential DOS attack on RP softwar… Demian Rosenkranz
- Re: [sidr] Another potential DOS attack on RP sof… Tim Bruijnzeels
- Re: [sidr] Another potential DOS attack on RP sof… Jared Mauch
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs George, Wes
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Warren Kumari
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs George, Wes
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Randy Bush
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs George, Wes
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Randy Bush
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Stephen Kent
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Christopher Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Randy Bush
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Christopher Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Randy Bush
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Randy Bush
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Christopher Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Christopher Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Randy Bush
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Roque Gagliano (rogaglia)
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Randy Bush
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Christopher Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Randy Bush
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Roque Gagliano (rogaglia)
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Randy Bush
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Christopher Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Randy Bush
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Christopher Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs George, Wes
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Christopher Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Randy Bush
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Christopher Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Christopher Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Randy Bush
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Christopher Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Randy Bush
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Montgomery, Douglas
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Montgomery, Douglas
- Re: [sidr] WGLC: draft-ietf-sidr-bgpsec-reqs Sandra Murphy