IETF Logo Mail Archive

Re: [sidr] wglc for draft-ietf-sidr-bgpsec-protocol-11

David Mandelberg <david@mandelberg.org> Fri, 06 February 2015 04:38 UTC

Return-Path: <david@mandelberg.org>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4E3691A036D for <sidr@ietfa.amsl.com>; Thu, 5 Feb 2015 20:38:25 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.8
X-Spam-Level:
X-Spam-Status: No, score=0.8 tagged_above=-999 required=5 tests=[BAYES_50=0.8, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Cyxx7UabgngZ for <sidr@ietfa.amsl.com>; Thu, 5 Feb 2015 20:38:19 -0800 (PST)
Received: from nm9-vm1.access.bullet.mail.bf1.yahoo.com (nm9-vm1.access.bullet.mail.bf1.yahoo.com [216.109.114.192]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 62C721A0089 for <sidr@ietf.org>; Thu, 5 Feb 2015 20:38:19 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1423197498; bh=8iymQPon8c98MLs9bzx8iIvnCEy24R/g9GUTILG9B9E=; h=Date:From:To:Subject:In-Reply-To:References:From:Subject; b=kPjy3YHAopr0ZfXd0Q2RRNM+GB8oxJZKDxahbxCoo55SyIgB8gfxiRAK842l1SG/X8IPE7QNo81ogcnu8357maOETDGDzJHryH9O2HeZF3D3iFIPuIgf+hUL2L1Q7HIR5eF0fbBNrjiGGvqx2Gqd4eYOdZUOc+PUODdKkcQOhqVLaiA2/1Wrq0i9/cb+ol0E44Bmt5SZw2XKv4piH7ndCmkcbf7HolAq74f9+o/ZtgpssQO6pcieM2VtYPn8dvwOkQ8yY6GbHFvBGwA+CA2lv3KiOvbzIvfnxoUwtIi47osSfY09m427ygIUtNN7AOEZwsmWNz3j4myxQZt+ngRPUA==
Received: from [66.196.81.155] by nm9.access.bullet.mail.bf1.yahoo.com with NNFMP; 06 Feb 2015 04:38:18 -0000
Received: from [98.138.104.97] by tm1.access.bullet.mail.bf1.yahoo.com with NNFMP; 06 Feb 2015 04:38:18 -0000
Received: from [127.0.0.1] by smtp117.sbc.mail.ne1.yahoo.com with NNFMP; 06 Feb 2015 04:38:18 -0000
X-Yahoo-Newman-Id: 438416.97141.bm@smtp117.sbc.mail.ne1.yahoo.com
X-Yahoo-Newman-Property: ymail-3
X-YMail-OSG: N39MD8sVM1mTIJj_a94X0NXO2S.RG1zZoF.LbgGSVWsSZ4o SytWW99cvsTpho9dAd1svyGA7JMUQ2ql_94NhIScdOqGPzwxVIJFqE.Uowuc K1OWIjSM4r_cHGCCOVfU82RGNMAkXn.oBHLXoKTBG8KLhDixR.1ifIuMFVDY p8P4bYYBPxMikV.kyztq1hFyo_6zO6NcxjY3OZe2pUiYbOKEIYzy0U8NHO5K SRuqgIqD6yaVlIYaexVEFL_nclVZ_QiBActbZeRKNYwxFJJYennMQhbTcpul ro2Cex9qv57uYGqugeuerEQ._d9MQDbUD35azvXQF2GgIGvVlgZSAgtTQKym VRl2HYAZyT6r15aRN.nVK_roRPGsHLpe8SfXcap9dC7XlUqxpHC7sY_Jjexv JGN1uErE3ATLxzoLA1.03Y51aEtep_6K4x0RZHxSZZYtLn6imhRh83CMzQsR 8O_oPDWo_7NeNc_sOGDK5V9uehtq0zysXrXRb3Km.qG.5ZOORg2ywdOPQY0J vE8fBgzE2.i5ziql6mkpcSxw.psU_PwGOKEGL_g6SKxlGkEzsd7XXV.sGQ3L lL2R8KHxHxUoWM9x4I3FM0hE0ksuJ1zNKwO_r9ovp2KmPUuhc8Q--
X-Yahoo-SMTP: 4kJJK.qswBDPuwyc5wW.BPAQqNXdy5j09UNyeAS0pyOQ708-
Received: from secure.mandelberg.org (c-76-24-31-176.hsd1.ma.comcast.net [76.24.31.176]) by uriel.mandelberg.org (Postfix) with ESMTPSA id 0C5801C604A for <sidr@ietf.org>; Thu, 5 Feb 2015 23:38:17 -0500 (EST)
MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Date: Thu, 05 Feb 2015 23:38:16 -0500
From: David Mandelberg <david@mandelberg.org>
To: sidr@ietf.org
In-Reply-To: <4C184296-F426-40EF-9DB6-3AE87C42B516@tislabs.com>
References: <4C184296-F426-40EF-9DB6-3AE87C42B516@tislabs.com>
Message-ID: <82de0e0b8d59df99675cf4eb22996d08@mail.mandelberg.org>
X-Sender: david@mandelberg.org
User-Agent: Roundcube Webmail/0.7.2
Archived-At: <http://mailarchive.ietf.org/arch/msg/sidr/qwiUeIPWlglBMF4Y1Q8BzKvHhrM>
Subject: Re: [sidr] wglc for draft-ietf-sidr-bgpsec-protocol-11
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sidr/>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Feb 2015 04:38:25 -0000

After reviewing this document, I have one concern below, and some nits 
that I'll send to the editor. Otherwise it looks good to me.

In sections 4.1 and 4.2, there are two different to-be-signed 
structures. If I understand correctly, the same router keys will be used 
to sign data from both structures. It might be possible for an attacker 
to take a valid signature of data from the structure in 4.2, and present 
it as a valid signature of the same bytes interpreted with the structure 
in 4.1. I'm not sure anything malicious could be done this way, but 
reinterpreting the meaning of signed data seems like a bad idea to me. 
It would be easy to prevent this by prepending both structures with a 
single byte that MUST BE 0 for 4.1 and MUST BE 1 for 4.2. Apologies if 
this has already been discussed and is not an issue.

-- 
David Eric Mandelberg / dseomn
http://david.mandelberg.org/

v2.23.0 | Report a Bug | By Email