Re: [Spud] updated draft PLUS charter, rev. 1 June

Tom Herbert <tom@herbertland.com> Fri, 10 June 2016 16:03 UTC

MIME-Version: 1.0
In-Reply-To: <780953BA-CE7B-4B17-AB9A-27324246FB86@trammell.ch>
References: <85E24D9D-F666-49C3-A022-2F207227A153@trammell.ch> <CAD62q9UiLi1ffGPm=xEXOSH=sqZPv7hYiNBTGvAX52a9dhV8yg@mail.gmail.com> <CAD62q9U7XL8hDqY1VdzuvUvoz0Ec5DDLAS6=kaLxRExu7FY0Kg@mail.gmail.com> <86027402-2F05-4E3B-B9CD-26517A4F007C@tik.ee.ethz.ch> <A4C63A75-9D7E-430E-B986-9981FB929D46@gmail.com> <CA+9kkMBhJ2oCJ1avnGUY4NYTX0VWA_g=YoJSiLcy6u9hJnH-eA@mail.gmail.com> <57573DCF.1030402@isi.edu> <F6BE4EE1-D320-421E-9D86-2F30B2A88792@tik.ee.ethz.ch> <CALx6S35Z7iEp2F7+1PHzAe0qu9st_CNXB9GCzF278HehFiv0Qg@mail.gmail.com> <0f5628e2-a142-8d83-b427-d6b07183cb9e@isi.edu> <CALx6S35KXOioEK60p-m5tGE_H9MWbB=YhJ_sOcW0KP2vR80vvw@mail.gmail.com> <57574C38.6070402@isi.edu> <F44FFD3B-CE7E-45E8-9F04-233C56CA95A0@trammell.ch> <890FE014-D3F8-4D64-8BF8-95B3E4773075@trammell.ch> <CALx6S34jbmaV7vAxr1+-p2HW9i2oKv7Bb138MzsaP71zVh=PQw@mail.gmail.com> <76A9F36B-9C21-4268-8267-16D0D9A78834@trammell.ch> <CALx6S37uONysFMNJgUs430eFEUuNTMuhcYKtCPBPMs5W6godVQ@mail.gmail.com> <780953BA-CE7B-4B17-AB9A-27324246FB86@trammell.ch>
Date: Fri, 10 Jun 2016 09:03:30 -0700
Message-ID: <CALx6S374mn6pwrSMmEdE5p60zPOu+77+M6HkA8w43GBO1xLvFg@mail.gmail.com>
From: Tom Herbert <tom@herbertland.com>
To: Brian Trammell <ietf@trammell.ch>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/spud/hmdgKGDvxeIYO8cqJ-ETdz7dUfw>
Cc: spud <spud@ietf.org>
Subject: Re: [Spud] updated draft PLUS charter, rev. 1 June
Precedence: list

> You're raising an issue with any protocol that runs over UDP in an Internet with echo servers in it, and my understanding is the arrangement you're proposing here is:

Plus introduces new issues. All prior uses of UDP on the Internet have
been end to end communications, application to application. PLUS is
introducing the notion that UDP is used for application to network and
network to application communications also. For end to end
communications we can apply strong security (e.g. DTLS) so that
spoofed or reflected UDP packets are not accepted.

The issues are even worse if intermediate devices are allowed to
modify payloads. Consider that we can not retroactively reserve a
stream of bits at the beginning of every UDP payload to indicate PLUS.
Regardless of how much data we collect on a set of safe bits to use,
eventually some user will happen send those same exact bits in their
application protocol. If such packets are modified by PLUS we now have
introduced a silent data corruption. A protocol that allows silent
data corruptions cannot be considered correct.

>
> ip
>  (EH for path exposure)
> udp
>   dtls
>      (new protocols)
>
> whereas the one I think works is:
>
> ip
> udp
>   plus for path exposure
>     dtls
>       (new protocols)
>
> I don't see how these are any different with respect to how they have to handle the echo server attack. What am I missing here?
>
The difference is that in case one the EH headers in a packet sent an
echo server and not automatically reflected in the reply packet. In
case #2 the whole UDP payload is reflected so the faux PLUS header is
reflected and devices on the return path will process that information
as signals to the network being sent from the Echo Server. This allows
an attacker to affect the affect the devices in the reverse path.

> My impression is that HBH options were being more or less deprecated, because they're largely unimplementable in hardware, due to unpredictable header chain lengths and header chain walking time. Am I incorrect here?
>
If nodes can't process HBH headers they can be ignored. This needs to
be clarified in 2460bis.

Tom

Re: [Spud] updated draft PLUS charter, rev. 1 June 🔓Dan Wing
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Ca By
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Yoav Nir
Re: [Spud] updated draft PLUS charter, rev. 1 June Christian Huitema
[Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Szilveszter Nadas
Re: [Spud] updated draft PLUS charter, rev. 1 June Ca By
Re: [Spud] updated draft PLUS charter, rev. 1 June Aaron Falk
Re: [Spud] updated draft PLUS charter, rev. 1 June Aaron Falk
Re: [Spud] updated draft PLUS charter, rev. 1 June Mirja Kühlewind
Re: [Spud] updated draft PLUS charter, rev. 1 June Aaron Falk
Re: [Spud] updated draft PLUS charter, rev. 1 June Ted Hardie
Re: [Spud] updated draft PLUS charter, rev. 1 June Aaron Falk
Re: [Spud] updated draft PLUS charter, rev. 1 June Ted Hardie
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Aaron Falk
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Aaron Falk
Re: [Spud] updated draft PLUS charter, rev. 1 June Ted Hardie
Re: [Spud] updated draft PLUS charter, rev. 1 June Mirja Kühlewind
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Mirja Kühlewind
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Ted Hardie
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Christian Huitema
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Szilveszter Nadas
Re: [Spud] updated draft PLUS charter, rev. 1 June Szilveszter Nadas
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch