IETF Logo Mail Archive

Re: [Sidrops] WGLC = draft-ietf-sidrops-aspa-verification - ENDS 03/22/2023 (Mar 22 2023)

Yangyang Wang <wangyy@cernet.edu.cn> Thu, 09 March 2023 03:00 UTC

Return-Path: <wangyy@cernet.edu.cn>
X-Original-To: sidrops@ietfa.amsl.com
Delivered-To: sidrops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4B31FC14F738 for <sidrops@ietfa.amsl.com>; Wed, 8 Mar 2023 19:00:21 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KkYAQRDqgbef for <sidrops@ietfa.amsl.com>; Wed, 8 Mar 2023 19:00:16 -0800 (PST)
Received: from azure-sdnproxy.icoremail.net (azure-sdnproxy.icoremail.net [207.46.229.174]) by ietfa.amsl.com (Postfix) with SMTP id 4593DC14EB17 for <sidrops@ietf.org>; Wed, 8 Mar 2023 19:00:13 -0800 (PST)
Received: from LAPTOPL2PP3VPI (unknown [123.112.65.93]) by web4 (Coremail) with SMTP id ywQGZQDHuVO6SwlkfMPJDA--.47599S2; Thu, 09 Mar 2023 11:00:10 +0800 (CST)
From: Yangyang Wang <wangyy@cernet.edu.cn>
To: sidrops@ietf.org
Cc: "'Sriram, Kotikalapudi (Fed)'" <kotikalapudi.sriram@nist.gov>
References: <SA1PR09MB814243FD29C35FBE4B21153884B49@SA1PR09MB8142.namprd09.prod.outlook.com> <SA1PR09MB8142A8E3804BE539A7A5790E84B49@SA1PR09MB8142.namprd09.prod.outlook.com> <SA1PR09MB814246CCEC40A9A5D157187784B49@SA1PR09MB8142.namprd09.prod.outlook.com>
In-Reply-To: <SA1PR09MB814246CCEC40A9A5D157187784B49@SA1PR09MB8142.namprd09.prod.outlook.com>
Date: Thu, 09 Mar 2023 11:00:11 +0800
Message-ID: <000201d95233$43b62300$cb226900$@cernet.edu.cn>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Outlook 16.0
Thread-Index: AQJ3ecZgNIUADZW04+Uzz2iXbGGmxwIVEPCGAoNvNUWtkKkeYA==
Content-Language: zh-cn
X-CM-TRANSID: ywQGZQDHuVO6SwlkfMPJDA--.47599S2
X-Coremail-Antispam: 1UD129KBjvJXoW7tF1rGrW7trykZrykXrWxXrb_yoW8uF1UpF yxJrnru39rGFyUAFn7Aw1vgrWDC39Yqa1UJFWYyry8Z3y5tF4IganxKryUta47ur1kZFWj vry0y39xWr4Yy37anT9S1TB71UUUUUUqnTZGkaVYY2UrUUUUjbIjqfuFe4nvWSU5nxnvy2 9KBjDU0xBIdaVrnRJUUUyab7Iv0xC_Zr1lb4IE77IF4wAFF20E14v26r1j6r4UM7CY07I2 0VC2zVCF04k26cxKx2IYs7xG6rWj6s0DM7CIcVAFz4kK6r1j6r18M28lY4IEw2IIxxk0rw A2F7IY1VAKz4vEj48ve4kI8wA2z4x0Y4vE2Ix0cI8IcVAFwI0_Jr0_JF4l84ACjcxK6xII jxv20xvEc7CjxVAFwI0_Jr0_Gr1l84ACjcxK6I8E87Iv67AKxVWxJVW8Jr1l84ACjcxK6I 8E87Iv6xkF7I0E14v26r4UJVWxJr1le2I262IYc4CY6c8Ij28IcVAaY2xG8wAqx4xG64xv F2IEw4CE5I8CrVC2j2WlYx0E2Ix0cI8IcVAFwI0_JrI_JrylYx0Ex4A2jsIE14v26r1j6r 4UMcvjeVCFs4IE7xkEbVWUJVW8JwACjcxG0xvY0x0EwIxGrwCF04k20xvY0x0EwIxGrwCF x2IqxVCFs4IE7xkEbVWUJVW8JwC20s026c02F40E14v26r1j6r18MI8I3I0E7480Y4vE14 v26r106r1rMI8E67AF67kF1VAFwI0_Jrv_JF1lIxkGc2Ij64vIr41lIxAIcVC0I7IYx2IY 67AKxVWUJVWUCwCI42IY6xIIjxv20xvEc7CjxVAFwI0_Jr0_Gr1lIxAIcVCF04k26cxKx2 IYs7xG6r1j6r1xMIIF0xvEx4A2jsIE14v26r1j6r4UMIIF0xvEx4A2jsIEc7CjxVAFwI0_ Jr0_GrUvcSsGvfC2KfnxnUUI43ZEXa7IU8Tmh5UUUUU==
X-CM-SenderInfo: 5zdqw5n16fv2xqhwhvlgxou0/
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/bssvkxtyhv0BuN1LiRBL8tjbrWQ>
Subject: Re: [Sidrops] WGLC = draft-ietf-sidrops-aspa-verification - ENDS 03/22/2023 (Mar 22 2023)
X-BeenThere: sidrops@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidrops>, <mailto:sidrops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops/>
List-Post: <mailto:sidrops@ietf.org>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidrops>, <mailto:sidrops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 09 Mar 2023 03:00:21 -0000

Hi, all


I am reposting my comments in the WGLC thread :)


I have read through this draft v12
https://datatracker.ietf.org/doc/draft-ietf-sidrops-aspa-verification/

Comments as follows.
1. a few typos.
In section 3, "The definition of Provider AS in given in Section 1" -->"The definition of Provider AS is given in Section 1"
Page 7, "If N = 1, then then the procedure" --> remove the extra "then"
Page 10, downstream path verification procedure, step 4 "lowest value of v
(2 <= u <= N)" --> " lowest value of u (2 <= u <= N)"

2. This draft claims that "An AS SHOULD NOT have more than one ASPA". 
If a Customer AS signs only one ASPA object including all its Provider ASes, it needs to resign and update it when any one of the provider ASes changes.
It may affect the validation.

3. In the algorithm for downstream paths, it says that if 1 <= N <=2, then the AS_PATH is trivially Valid.  
If N=2, assuming AS_PATH is (AS2, AS1), the path verification is just hop-check hop(AS(1), AS(2)) and may be one of "Provider", "Not Provider" and "no Attestation". 
If it is "Provider", the AS_PATH is Valid. 
If it is "Not Provider" or "no Attestation", I feel that the AS_PATH is actually unclear, which may be Valid, or forged link as the (AS(5), AS(2)) shown in Section 12.


4. It seems that the algorithms for path verification are not complete to cover all possible cases.

For example, shown in the figure below:

Receiving & validating AS 5 --  AS(4)
				 \
				   \
                                                          AS(3)     AS(1)
                                                              \        /
			 	      \     /
                                                                AS(2)
ASPAs: {AS(2), [AS(3), AS(1)]}

AS5 is the Receiving & Validating AS. And, only AS(2) register an ASPA object in RPKI. 
It assumes that AS5 receives an AS_PATH [AS(4), AS(3), AS(2), AS(1)], and there is a route leak from AS(3) to AS(1) by the customer AS(2) hop(AS(1), AS(2)) = "no attestation"
hop(AS(2), AS(3)) = "Provider"
hop(AS(3), AS(4)) = "no attestation"
According to the step 4 and 5 of the algorithm for upstream paths in section 6.1,  there is not an i for which hop(AS(i-1), AS(i)) = "not Provider". This path is invalid, but will be verified as "Unknown".

Maybe I'm missing something or make a mistake.


Best regards,
Yangyang
2023-03-08

v2.23.0 | Report a Bug | By Email