IETF Logo Mail Archive

Re: [sidr] AD Review of sidr-origin-validation-signaling-09

"John G. Scudder" <jgs@juniper.net> Wed, 30 November 2016 16:35 UTC

Return-Path: <jgs@juniper.net>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AC4AA129A71 for <sidr@ietfa.amsl.com>; Wed, 30 Nov 2016 08:35:30 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.022
X-Spam-Level:
X-Spam-Status: No, score=-0.022 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=junipernetworks.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iujyWjnwJb5v for <sidr@ietfa.amsl.com>; Wed, 30 Nov 2016 08:35:16 -0800 (PST)
Received: from NAM03-BY2-obe.outbound.protection.outlook.com (mail-by2nam03on0130.outbound.protection.outlook.com [104.47.42.130]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 79298129979 for <sidr@ietf.org>; Wed, 30 Nov 2016 08:20:53 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=junipernetworks.onmicrosoft.com; s=selector1-juniper-net; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=b0SxWrBZw87RuLHh+xLWz6pTg8hZVtXF3AGqpRaJwFw=; b=J9ESOPXfhXx1FwJxEKoguKLR83AbQOBZG5S04LNEJON+BVI3FumnnJuQ+imZpGs2eEDLJmMRCRtI4loIXOC7oM3T/lODoViGxO7S1JwHwBKACfOiKHWSk8RfFhZ7WBXgfoq2QiY7Slvo1xOeMihP7bHjzl3/FGFqxOneb2/o7/A=
Authentication-Results: spf=none (sender IP is ) smtp.mailfrom=jgs@juniper.net;
Received: from [172.29.33.83] (66.129.241.12) by SN2PR05MB2509.namprd05.prod.outlook.com (10.166.213.18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.761.5; Wed, 30 Nov 2016 16:20:47 +0000
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
From: "John G. Scudder" <jgs@juniper.net>
In-Reply-To: <m2twapgig4.wl-randy@psg.com>
Date: Wed, 30 Nov 2016 11:20:41 -0500
Content-Transfer-Encoding: quoted-printable
Message-ID: <22535C38-689F-4508-9A9C-2DD0A2E6BFC0@juniper.net>
References: <88A45E79-880B-4F82-9FAA-80C05627A49F@cisco.com> <917E9000-8F1F-4E4F-BDEC-767E3510A71A@juniper.net> <yj9od1hdrah8.wl%morrowc@ops-netman.net> <F173D66B-3A4F-4C96-BFE2-02D83D8EB17B@juniper.net> <yj9oa8chr6to.wl%morrowc@ops-netman.net> <m260n5hywb.wl-randy@psg.com> <1E8CFD67-61BA-4CD3-8A96-CF38D283BD08@juniper.net> <m2twapgig4.wl-randy@psg.com>
To: Randy Bush <randy@psg.com>
X-Mailer: Apple Mail (2.3124)
X-Originating-IP: [66.129.241.12]
X-ClientProxiedBy: SN1PR17CA0056.namprd17.prod.outlook.com (10.163.3.152) To SN2PR05MB2509.namprd05.prod.outlook.com (10.166.213.18)
X-MS-Office365-Filtering-Correlation-Id: 0ff9183f-e93a-420c-c2ed-08d4193cd83a
X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:(22001);SRVR:SN2PR05MB2509;
X-Microsoft-Exchange-Diagnostics: 1; SN2PR05MB2509; 3:+V0fbGEGE5qzFy6eIi84JrEjEya33npLXDuwErpddlnVKJo2i4Cxb+8k7Mblxy/LDpwDw3deFiallfu6jAqV08goMSQeMvvPvm8sAfSNwz1UMpyDepERbNcEe06MGfSYq+ebYSbC+zKizLxkSeQRShlLrHcMYWNcjw4FcybPjIfBTx8O122WbgCINkAaS381/MM0tA1m5nGIrNJx4FrG1jdu8X8szJTEaGGWjfOVlLHTSZQh5YGxICYTn9Gm88wElHIiYIP0vzuuMjFzLVRHnA==
X-Microsoft-Exchange-Diagnostics: 1; SN2PR05MB2509; 25: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
X-LD-Processed: bea78b3c-4cdb-4130-854a-1d193232e5f4,ExtAddr
X-Microsoft-Exchange-Diagnostics: 1; SN2PR05MB2509; 31:3SEOLTgZYKLpWGf9BCk3OVTIR5dKaM2i68taiidd08VFo6H6+mRfAVirGRDnlhsHQ9vf6UZeC10qfuCc3SyZFFBnsMEQhhhcZTRuyEZLN/wuc1d8Thl9aTLvgQmlje0ux3d2bHEiO4Flety19Nimwj0BEgOOUQijJ0SK/2foSqU272Z73DJfjwJr4nmOTE2e5D3sxXtk8jrjgQlteMkgqA9GiMoDmtGyng0KhP2Hhg55eHid9cl01TI7rdHV3FVtsfa+AW8t5IflJPDJq7adP6Tzp9RucNUX/kx+Tsp5Z6ZjOUSfFFug+4maukYrYJ3c; 20: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
X-Microsoft-Antispam-PRVS: <SN2PR05MB2509A0B0C1ADEAABA7D0576EAA8C0@SN2PR05MB2509.namprd05.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:(192374486261705);
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(6040375)(601004)(2401047)(8121501046)(5005006)(10201501046)(3002001)(6055026)(6041248)(20161123555025)(20161123562025)(20161123564025)(20161123560025)(6072148); SRVR:SN2PR05MB2509; BCL:0; PCL:0; RULEID:; SRVR:SN2PR05MB2509;
X-Microsoft-Exchange-Diagnostics: 1; SN2PR05MB2509; 4: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
X-Forefront-PRVS: 0142F22657
X-Forefront-Antispam-Report: SFV:NSPM; SFS:(10019020)(4630300001)(6009001)(6049001)(7916002)(199003)(189002)(377454003)(24454002)(6666003)(2950100002)(92566002)(68736007)(76176999)(50986999)(8676002)(229853002)(8746002)(81166006)(36756003)(47776003)(42186005)(33656002)(81156014)(38730400001)(6916009)(7846002)(6486002)(7736002)(50466002)(46406003)(77096006)(230783001)(2906002)(39450400002)(189998001)(82746002)(93886004)(83716003)(3846002)(733004)(110136003)(39410400001)(305945005)(4326007)(105586002)(6116002)(66066001)(101416001)(23726003)(86362001)(106356001)(97756001)(97736004)(57306001)(50226002)(5660300001)(104396002)(42262002); DIR:OUT; SFP:1102; SCL:1; SRVR:SN2PR05MB2509; H:[172.29.33.83]; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
Received-SPF: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
X-Microsoft-Exchange-Diagnostics: 1; SN2PR05MB2509; 23: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
X-Microsoft-Exchange-Diagnostics: 1; SN2PR05MB2509; 6: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; 5:T0WuDIU7rzZimRk/eKqGF8Dvi1ZVU1DS0kRnOc0uONob97xKHQ86qfGaO4HK2q8P/pkhG8cszFKSPlgbFG9LiZ1BRZdvHhQ0Rmbhe4oEHR5uzltFxeNV6bVNso3TVcQo5PYIqYgxDD8MnITdA9gPZyODVsQlaYib92RhBVID3eQ=; 24:axUhMaJOk7gBZVkOsXeM0vxd+iw8auxHdKcigDSqLCB+YI1hWSyla4CjTT5miATID25NkHHwVU7jvpSHhrMwqZksIOUI15bebQ/f6kw8O1Q=
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-Microsoft-Exchange-Diagnostics: 1; SN2PR05MB2509; 7:xLvUdRLRHPjKyLfYdoQMQ14sGShnvLCXxyo7v+E2QetRMxVQD6M+unO6EFj/YH1zyXMChVjsr5zEE7pcyCLKmIoBt67NHbz59t3cAD3fuvdl9/5s0ok2Rq1HvpLqu7pLXsR8R4UyOdngJJ8f+JGEzmUEPbfAVfyGJxFuaFS+joyJ1ckaTTIQIjld/JOL/gil31MnNL8SJ8qwaQNUjp+4QqOmF0UzjiJvDy0v84Pse5gjzXpM2SyVREMIFatfYdWH7HCdMn6gNx2gkuLeU7h1L7UIBSVXsny5pC/TnDKoJNYW0qyMoHID2lx1P/QmMK9uDpUSu77eMhx7+YF9kJbIEBVDDg2UgUUcfKBJtaH5RUudMTEtET0BLcRrcmHYPlwsXMLT14/9RV2IJhCPPR9r9adyFSGt733uw49PuPMWjIBWN3Hu+C2BlYCU57OYYX6KPqnKBgHb0QwbI4ORWH+Hwg==
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 30 Nov 2016 16:20:47.7733 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN2PR05MB2509
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidr/zH00L1TxHTgEEZKLKxs418nqvrw>
Cc: sidr wg list <sidr@ietf.org>
Subject: Re: [sidr] AD Review of sidr-origin-validation-signaling-09
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidr/>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 30 Nov 2016 16:35:31 -0000

On Nov 30, 2016, at 9:18 AM, Randy Bush <randy@psg.com> wrote:
> section 4.5 of 4593 is relevant, or all of sec 4

Thanks, used in the text below.

> i am kinda sad that 7132 is not too good on this

I looked there first but it's a *path* security threat model so can't really be blamed for not covering this.

Candidate new security section below. I'd appreciate an ack from Alvaro that this addresses his concern before I publish.

--John

6.  Security Considerations

   Security considerations such as those described in [RFC4272] continue
   to apply.  Since this document introduces an extended community that
   will generally be used to affect route selection, the analysis in
   Section 4.5 ("Falsification") of [RFC4593] is relevant.  These issues
   are neither new, nor unique to the origin validation extended
   community.

   The security considerations provided in [RFC6811] apply equally to
   this application of origin validation.  In addition, this document
   describes a scheme where router A outsources validation to some
   router B.  If this scheme is used, the participating routers should
   have the appropriate trust relationship -- B should trust A either
   because they are under the same administrative control or for some
   other reason (for example, consider
   [I-D.ietf-sidr-route-server-rpki-light]).  The security properties of
   the propagation path between the two routers should also be
   considered.  See [RFC7454] Section 5.1 for advice regarding
   protection of the propagation path.

(all the refs above are in the "informative" section)

v2.35.0 | Report a Bug | By Email | System Status