IETF Logo Mail Archive

Re: [Sidrops] draft-sidrops-maxlen - questions from 110 session

"Sriram, Kotikalapudi (Fed)" <kotikalapudi.sriram@nist.gov> Tue, 23 March 2021 14:11 UTC

Return-Path: <kotikalapudi.sriram@nist.gov>
X-Original-To: sidrops@ietfa.amsl.com
Delivered-To: sidrops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0B4093A0E7B for <sidrops@ietfa.amsl.com>; Tue, 23 Mar 2021 07:11:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.353
X-Spam-Level:
X-Spam-Status: No, score=-2.353 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.251, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FROM_GOV_DKIM_AU=-0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nist.gov
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4HTrUu9iRzbF for <sidrops@ietfa.amsl.com>; Tue, 23 Mar 2021 07:11:20 -0700 (PDT)
Received: from GCC02-DM3-obe.outbound.protection.outlook.com (mail-dm3gcc02on2114.outbound.protection.outlook.com [40.107.91.114]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 091543A0E55 for <sidrops@ietf.org>; Tue, 23 Mar 2021 07:11:19 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=ZY09dsV+SVS1oyhbmYP/lKK7le+jEfbnrzb0pfdaLUvezVypBebU5YhiNa7jkUGT1He0JzxEhMbhxzwspeqH9dG7dHYLQ9zMRi4wigWk2uT4P6HAswl8nJ+nD4oyuSaKJmhhpWcS0kBTmV6KFA31vBRt6KewwdY9jZHnYshuMMrKkzyA/ly1Sy2cuE4Mpxeu/xR/8/BbCeka6+FO7F3ELMSRfE8zvTzSp6MMh2VaXelewbApvQLQD+Xi0SeZd3VXw/jKCxtx/jJAmjBmKI8y08TtyZ295DYNFfcl9D2b1K6ArJY2jyBAHq7BVPBgWG1M1aA+5rRxIYBrDfTCsajHsQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=39q1iZPgSgD0V5mlD+SLkqEyKhUC2vO9GYwBN758sAs=; b=Vlu81zrVASAn+to/aTjMMyZPbG/SXn7kOtgMRAVFjQv54CVtdvStMZkg26ffINsbxqufpJZST669JyJLggvQlFOl0zLmPJYvlYLWcVVnMyctfrjV1GVcEVwe0B7FXLWDyUVFCAAqCg0IqRdCxe1MjbksoOtFUf0Xhz5xgakJavu9fJSmSArdjM0Kk7D8NoRnuYE81QF2Rl0U/B9F+uj3n/EHO3h6/qKme8ttO8AwEDmjSeuXsK6dnueFiRirf4W4nI+qk6C+ZZRc4JVVZaO+I79/MEFL/2V1IFjAMsanXVcO7sosoDycggff0PtTkjuBbep/ZvjaqPVLShz6ktnVcA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=nist.gov; dmarc=pass action=none header.from=nist.gov; dkim=pass header.d=nist.gov; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nist.gov; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=39q1iZPgSgD0V5mlD+SLkqEyKhUC2vO9GYwBN758sAs=; b=YaBje1dMe0Oq+yc3njV5UsqRU05DCa9Npz0ofCgvQcEi0SQ0XStibA0NPdiVWKAjMZu4GhCYz/h0NAItWBVTjI1lWTPz65alqXRAhQxG/DYerXg8wPHHQQZz0Eou51zJOk5llfXz//XROGfvIxRltWQThvqiGOjZ2tKLfu0DES0=
Received: from SA1PR09MB8142.namprd09.prod.outlook.com (2603:10b6:806:171::8) by SA1PR09MB7501.namprd09.prod.outlook.com (2603:10b6:806:179::8) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3955.18; Tue, 23 Mar 2021 14:11:18 +0000
Received: from SA1PR09MB8142.namprd09.prod.outlook.com ([fe80::7597:d013:e35a:5957]) by SA1PR09MB8142.namprd09.prod.outlook.com ([fe80::7597:d013:e35a:5957%7]) with mapi id 15.20.3955.027; Tue, 23 Mar 2021 14:11:18 +0000
From: "Sriram, Kotikalapudi (Fed)" <kotikalapudi.sriram@nist.gov>
To: Alexander Azimov <a.e.azimov@gmail.com>, Ben Maddison <benm@workonline.africa>
CC: "sidrops@ietf.org" <sidrops@ietf.org>
Thread-Topic: [Sidrops] draft-sidrops-maxlen - questions from 110 session
Thread-Index: AQHXH+pU+zYJVsUrlEC5ARdn8SeodQ==
Date: Tue, 23 Mar 2021 14:11:18 +0000
Message-ID: <SA1PR09MB814209A1ACC1B63131D5CC6884649@SA1PR09MB8142.namprd09.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=nist.gov;
x-originating-ip: [129.6.152.33]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: a3e015b3-3479-4223-a83f-08d8ee058718
x-ms-traffictypediagnostic: SA1PR09MB7501:
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <SA1PR09MB750112F2C58DA01B2427DCDE84649@SA1PR09MB7501.namprd09.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:3968;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SA1PR09MB8142.namprd09.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(396003)(39850400004)(366004)(136003)(376002)(346002)(2906002)(71200400001)(7696005)(478600001)(110136005)(316002)(6506007)(38100700001)(5660300002)(66556008)(66446008)(66476007)(8936002)(86362001)(76116006)(66946007)(91956017)(55016002)(4326008)(9686003)(8676002)(33656002)(52536014)(26005)(64756008)(186003); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: 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
Content-Type: text/plain; charset="Windows-1252"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: nist.gov
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SA1PR09MB8142.namprd09.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: a3e015b3-3479-4223-a83f-08d8ee058718
X-MS-Exchange-CrossTenant-originalarrivaltime: 23 Mar 2021 14:11:18.0647 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 2ab5d82f-d8fa-4797-a93e-054655c61dec
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SA1PR09MB7501
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/47Dh7u0DRZpfcDejmkblndxwggk>
Subject: Re: [Sidrops] draft-sidrops-maxlen - questions from 110 session
X-BeenThere: sidrops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidrops>, <mailto:sidrops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops/>
List-Post: <mailto:sidrops@ietf.org>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidrops>, <mailto:sidrops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 23 Mar 2021 14:11:31 -0000

I understand Alexander's point of view and Ben's detailed analysis. Yet I think it would never make sense to not implement minimal ROAs because of the following reasons:

1. Looking at the available long history of events, it would be generally correct to say that the vast majority of hijacks of more specific prefixes are accidental (invalid origin AS) rather than malicious (forged-origin). For example, accidental leaks of more specific prefixes from route optimizers. For that reason, keeping the attack surface minimal is crucial.

2. “65666 is a relatively sophisticated adversary” per Ben's characterization. Scenario C could play out quite differently than how Ben envisioned it. The adversary sees a large attack surface – there are s = 2^(m-k) choices of vulnerable more specific prefixes of length k. Example: m = 18, k = 24, then s = 64. Let us say, the vulnerable /24 subprefixes are q(1)/24, q(2)/24, …, q(64)/24. The adversary announces q(1)/24 (forged-origin attack), conducts spam, and then withdraws it. They keep the duration of this attack cycle comparable to the time taken for the defensive announcement (by the victim) of the q(1)/24 and its ballpark propagation time. Then the adversary repeats the attack exploiting q(2)/24 and rotates through all 64 available q(i)/24 subprefixes. The victim’s defensive announcements are rendered ineffective (adversary already withdrew the /24 seeking to stay under the radar). There will be a much larger attack surface that the adversary can rotate through if he/she chooses to randomly mix the vulnerable subprefixes of many potential victims who have non-minimal ROAs. The victims’ defensive announcements would be useless (redundant). So, I think this scenario analysis also weighs in for keeping the attack surface minimal.    
     
Sriram

v2.23.0 | Report a Bug | By Email