Re: [sidr] Benjamin Kaduk's No Objection on draft-ietf-sidr-slurm-07: (with COMMENT)

Benjamin Kaduk <kaduk@mit.edu> Fri, 06 April 2018 17:35 UTC

Return-Path: <kaduk@mit.edu>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 11CA3124D37; Fri, 6 Apr 2018 10:35:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.231
X-Spam-Level:
X-Spam-Status: No, score=-4.231 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0Q0cJ74N5cfd; Fri, 6 Apr 2018 10:35:38 -0700 (PDT)
Received: from dmz-mailsec-scanner-2.mit.edu (dmz-mailsec-scanner-2.mit.edu [18.9.25.13]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 126E212025C; Fri, 6 Apr 2018 10:35:37 -0700 (PDT)
X-AuditID: 1209190d-b3fff70000003e45-82-5ac7afe84911
Received: from mailhub-auth-3.mit.edu ( [18.9.21.43]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by dmz-mailsec-scanner-2.mit.edu (Symantec Messaging Gateway) with SMTP id 52.2A.15941.9EFA7CA5; Fri, 6 Apr 2018 13:35:37 -0400 (EDT)
Received: from outgoing.mit.edu (OUTGOING-AUTH-1.MIT.EDU [18.9.28.11]) by mailhub-auth-3.mit.edu (8.13.8/8.9.2) with ESMTP id w36HZZAC008421; Fri, 6 Apr 2018 13:35:35 -0400
Received: from mit.edu (24-107-191-124.dhcp.stls.mo.charter.com [24.107.191.124]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id w36HZUZG021161 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Fri, 6 Apr 2018 13:35:33 -0400
Date: Fri, 6 Apr 2018 12:35:30 -0500
From: Benjamin Kaduk <kaduk@mit.edu>
To: Di Ma <madi@zdns.cn>
Cc: The IESG <iesg@ietf.org>, morrowc@ops-netman.net, draft-ietf-sidr-slurm@ietf.org, sidr@ietf.org, sidr-chairs@ietf.org
Message-ID: <20180406173529.GM80088@mit.edu>
References: <152243246452.20520.7968873255606309518.idtracker@ietfa.amsl.com> <24005739-88B6-4D51-8ED5-217E141A2D23@zdns.cn>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <24005739-88B6-4D51-8ED5-217E141A2D23@zdns.cn>
User-Agent: Mutt/1.9.1 (2017-09-22)
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFprFKsWRmVeSWpSXmKPExsUixCmqrfty/fEogzOzOCwaL/xispjxZyKz xb0nxRaXF35ks/g+/wKrxbJJ5xkd2DyWLPnJ5PFg0lF2j3ddnYwBzFFcNimpOZllqUX6dglc GSs/trAXvOSuWHGjm62BcRZnFyMnh4SAicSMP2eZuhi5OIQEFjNJLHl1mwXC2cAo8WrKTDYI 5wyTxNWp3ewgLSwCKhLrT99lArHZgOyG7svMXYwcHCICEhLXPvOC1DMLNDFKzJy6jxmkRlgg XuLRuT4WEJtXQEfi+vTDLCD1QgJ1EjcfqUCEBSVOznwCVsIsoC7xZ94lsJHMAtISy/9xQITl JZq3zgabyClgLTFv7hOwa0QFlCX29h1in8AoOAvJpFlIJs1CmDQLyaQFjCyrGGVTcqt0cxMz c4pTk3WLkxPz8lKLdI30cjNL9FJTSjcxgqNAkncH47+7XocYBTgYlXh4C7qPRwmxJpYVV+Ye YpTkYFIS5T1oDxTiS8pPqcxILM6ILyrNSS0+xCjBwawkwrv7z7EoId6UxMqq1KJ8mJQ0B4uS OO+i/XujhATSE0tSs1NTC1KLYLIyHBxKErzP1gENFSxKTU+tSMvMKUFIM3FwggznARp+fS1Q DW9xQWJucWY6RP4Uo6KUOO9ikGYBkERGaR5cLyhJSWTvr3nFKA70ijCvCTBlCfEAExxc9yug wUxAgyckHgEZXJKIkJJqYKwsu7Tntp6ZrcmyTv+sf3pLLwoaNTcrm1+QOtmwsZH3tdGVMvnd fGr1dansrAYbHdL+c6/iiu42zXgiIKS0Y7uOyRMttbVRQX2ur/e9Xqi3XmXJlaLHxae4n13c HsktNTnqgNKFFI7rsiKtfycfuDmjKqJuvqrXCsH12hy1afe+11/JdMuoU2Ipzkg01GIuKk4E ABkSmbotAwAA
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidr/ji7K6w0qel5QunBJWhXC5nGZ1pc>
Subject: Re: [sidr] Benjamin Kaduk's No Objection on draft-ietf-sidr-slurm-07: (with COMMENT)
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidr/>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Apr 2018 17:35:40 -0000

On Fri, Apr 06, 2018 at 09:15:28PM +0800, Di Ma wrote:
> Benjamin,
> 
> Thanks very much for your comments.
> 
> Please see my responses in lines.
> 
> 
> > 在 2018年3月31日,01:54,Benjamin Kaduk <kaduk@mit.edu> 写道:
> > 

[trimming lots of stuff that looks good]

> > I also wonder if we would benefit from a little discussion of the
> > potential routing issues that could arise from using a "broken" (or
> > deliberately adversarial) SLURM file, though I expect that the
> > target audience is probably pretty familiar with these already.
> > 
> 
> Well, it has been stated in this document:
> 
>  'Errors in the SLURM file used by an RP
>   can undermine the security offered by the RPKI, to that RP.  It could
>   declare as invalid ROAs that would otherwise be valid, and vice
>   versa.  As a result, an RP must carefully consider the security
>   implications of the SLURM file being used, especially if the file is
>   provided by a third party.'
> 
> It is not clear to us what more we should cover here.

I was wondering if you wanted to say anything about the specific
operational consequences of the incorrectly handled ROAs -- for
example, traffic getting redirected to an attacker or blackholed, or
high levels of traffic directed to something not prepared to handle
it.  (Presumably there are others.)  But if you think this is
obvious to the intended audience, there is no need to add it just on
my account.

Thanks for the updates,

Benjamin