IETF Logo Mail Archive

Re: [sidr] draft-ietf-sidr-bgpsec-protocol-13's security guarantees

Matthew Lepinski <mlepinski.ietf@gmail.com> Wed, 07 October 2015 15:06 UTC

Return-Path: <mlepinski.ietf@gmail.com>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B26751A0171 for <sidr@ietfa.amsl.com>; Wed, 7 Oct 2015 08:06:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id M_3pf0lOFUVq for <sidr@ietfa.amsl.com>; Wed, 7 Oct 2015 08:06:41 -0700 (PDT)
Received: from mail-ob0-x22c.google.com (mail-ob0-x22c.google.com [IPv6:2607:f8b0:4003:c01::22c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AF3BC1A9301 for <sidr@ietf.org>; Wed, 7 Oct 2015 08:06:40 -0700 (PDT)
Received: by obbda8 with SMTP id da8so15460467obb.1 for <sidr@ietf.org>; Wed, 07 Oct 2015 08:06:40 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=9g4qkN7R2bVWtnXICL6b4tcmMgAaYXITgj513eLynI4=; b=Kj1RxBuOdj/QcyfOwkXHO89QTexfiarPPrHdewD9Q6VdanLAlXhUP583Zo+SF31bVe SPDwLnDYiZ0MpxxkcJLFGZX0lbnNl92mIjY6YGSUzGJTSica4nUxnLeTUbNKnRm4ysUu hIlw85pQDbilRjGB6R9gb4pJoQvZFE4P39Dev+9jUA2OWKN/EfhzphmyJPBH0gs0T8P9 36zs5ISJCJAAgbjHjl/Bw/KTlCRS7Q65ZKkTk1r/duiPI2PbZMoAbzIMtOs1Tnc+LVOc Kkov1kYCxsKDZw5wiSYTmv7vBeWnIrplgQiO5ZrW3motJnehUal/NIa/cIVgkH7C8fMC lVBA==
MIME-Version: 1.0
X-Received: by 10.182.53.229 with SMTP id e5mr1000564obp.68.1444230400135; Wed, 07 Oct 2015 08:06:40 -0700 (PDT)
Received: by 10.202.198.22 with HTTP; Wed, 7 Oct 2015 08:06:40 -0700 (PDT)
In-Reply-To: <0F44566E-2054-4ECA-83AF-EE39585E841E@tislabs.com>
References: <SN1PR09MB079938B1A44171328C0B16CA846A0@SN1PR09MB0799.namprd09.prod.outlook.com> <D20B8CAC.45839%dougm@nist.gov> <CY1PR09MB079376AC097FDDB73531814184690@CY1PR09MB0793.namprd09.prod.outlook.com> <m2613ca3kf.wl%randy@psg.com> <0F44566E-2054-4ECA-83AF-EE39585E841E@tislabs.com>
Date: Wed, 07 Oct 2015 11:06:40 -0400
Message-ID: <CANTg3aCvdCKY+BfJ9G0dtJpQth=ckud=pmYyY4rKJh_V2A+7fQ@mail.gmail.com>
From: Matthew Lepinski <mlepinski.ietf@gmail.com>
To: Sandra Murphy <sandy@tislabs.com>
Content-Type: multipart/alternative; boundary="089e0111d7a0f9568b05218517fa"
Archived-At: <http://mailarchive.ietf.org/arch/msg/sidr/kegL5O-0SgyO72R5JskHK4l0aE8>
Cc: sidr wg list <sidr@ietf.org>
Subject: Re: [sidr] draft-ietf-sidr-bgpsec-protocol-13's security guarantees
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidr/>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Oct 2015 15:06:43 -0000

Thanks to David for identifying this problem initially and to everyone else
who contributed to this discussion.

I am happy to update the document to reflect the working group consensus.
My goal is to get a revised version of the document to the working group
sometime late next week (e.g. Oct 17).

- Matt Lepinski

On Tue, Oct 6, 2015 at 9:31 PM, Sandra Murphy <sandy@tislabs.com> wrote:

>
> This conversation seems to have come to a close.
>
> The wg chairs see wg consensus as follows:
>
> The problem is real enough to merit a protocol change.
>
> The change is to cover more raw info in the signatures, rather than
> signature chaining only, along the lines of
> http://www.ietf.org/mail-archive/web/sidr/current/msg07258.html
> (see also the new archiving tool
> https://mailarchive.ietf.org/arch/msg/sidr/sXUj7lgieri0Wrv5PK5u7PfLtxc).
>
> In addition, maintaining ordering was also noted as important to some
> http://www.ietf.org/mail-archive/web/sidr/current/msg07261.html
> http://www.ietf.org/mail-archive/web/sidr/current/msg07270.html
> http://www.ietf.org/mail-archive/web/sidr/current/msg07271.html
>
>
> The authors of draft-ietf-sidr-bgpsec-protocol-13 are requested to submit
> a revised version of the draft.
>
> The changes are significant enough that the revised draft will go through
> a wglc, focussed on the changes for this issue, so shorter than normal.
>
> —Sandy, speaking as one of the wg co-chairs
>
> _______________________________________________
> sidr mailing list
> sidr@ietf.org
> https://www.ietf.org/mailman/listinfo/sidr
>
>

v2.23.0 | Report a Bug | By Email