Re: [Spud] updated draft PLUS charter, rev. 1 June

Christian Huitema <huitema@microsoft.com> Fri, 10 June 2016 20:12 UTC

From: Christian Huitema <huitema@microsoft.com>
To: Tom Herbert <tom@herbertland.com>, Brian Trammell <ietf@trammell.ch>
Thread-Topic: [Spud] updated draft PLUS charter, rev. 1 June
Thread-Index: AQHRu/KkknslUV6vnUS4tzs14whv9J/eT28AgAABG4CAAB43AIAABfgAgAADLQCAABjYgIAABqUAgAACJQCAAAEtgIAAAqWAgAAEkgCAAGJBAIAAZ68AgAHaSoCAABM7AIABf52AgAAH0gCAAAqNAIAAQ7cA
Date: Fri, 10 Jun 2016 20:12:41 +0000
Message-ID: <DM2PR0301MB06554C7A8277C06E0119AA7EA8500@DM2PR0301MB0655.namprd03.prod.outlook.com>
References: <85E24D9D-F666-49C3-A022-2F207227A153@trammell.ch> <CAD62q9UiLi1ffGPm=xEXOSH=sqZPv7hYiNBTGvAX52a9dhV8yg@mail.gmail.com> <CAD62q9U7XL8hDqY1VdzuvUvoz0Ec5DDLAS6=kaLxRExu7FY0Kg@mail.gmail.com> <86027402-2F05-4E3B-B9CD-26517A4F007C@tik.ee.ethz.ch> <A4C63A75-9D7E-430E-B986-9981FB929D46@gmail.com> <CA+9kkMBhJ2oCJ1avnGUY4NYTX0VWA_g=YoJSiLcy6u9hJnH-eA@mail.gmail.com> <57573DCF.1030402@isi.edu> <F6BE4EE1-D320-421E-9D86-2F30B2A88792@tik.ee.ethz.ch> <CALx6S35Z7iEp2F7+1PHzAe0qu9st_CNXB9GCzF278HehFiv0Qg@mail.gmail.com> <0f5628e2-a142-8d83-b427-d6b07183cb9e@isi.edu> <CALx6S35KXOioEK60p-m5tGE_H9MWbB=YhJ_sOcW0KP2vR80vvw@mail.gmail.com> <57574C38.6070402@isi.edu> <F44FFD3B-CE7E-45E8-9F04-233C56CA95A0@trammell.ch> <890FE014-D3F8-4D64-8BF8-95B3E4773075@trammell.ch> <CALx6S34jbmaV7vAxr1+-p2HW9i2oKv7Bb138MzsaP71zVh=PQw@mail.gmail.com> <76A9F36B-9C21-4268-8267-16D0D9A78834@trammell.ch> <CALx6S37uONysFMNJgUs430eFEUuNTMuhcYKtCPBPMs5W6godVQ@mail.gmail.com> <780953BA-CE7B-4B17-AB9A-27324246FB86@trammell.ch> <CALx6S374mn6pwrSMmEdE5p60zPOu+77+M6HkA8w43GBO1xLvFg@mail.gmail.com>
In-Reply-To: <CALx6S374mn6pwrSMmEdE5p60zPOu+77+M6HkA8w43GBO1xLvFg@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-originalarrivaltime: 10 Jun 2016 20:12:41.6187 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM2PR0301MB0654
Archived-At: <https://mailarchive.ietf.org/arch/msg/spud/mHnRGEdhl0AFvoQyjX3Ml1-vJgY>
Cc: spud <spud@ietf.org>
Subject: Re: [Spud] updated draft PLUS charter, rev. 1 June
X-BeenThere: spud@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Session Protocol Underneath Datagrams <spud.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spud>, <mailto:spud-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spud/>
List-Post: <mailto:spud@ietf.org>
List-Help: <mailto:spud-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spud>, <mailto:spud-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 10 Jun 2016 20:12:46 -0000

On Friday, June 10, 2016 9:04 AM, Tom Herbert wrote:
> ...
> Plus introduces new issues. All prior uses of UDP on the Internet have been end
> to end communications, application to application. PLUS is introducing the
> notion that UDP is used for application to network and network to application
> communications also. For end to end communications we can apply strong
> security (e.g. DTLS) so that spoofed or reflected UDP packets are not accepted.

I think Tom has a good point here. PLUS does introduce new communication patterns, passing information to intermediate routers and expecting routers to act on the information. These communication patterns can very well introduce new attack vectors. We actually discussed a few of those on the list some time back. For example, an attacker could inject a packet that mimics the closure of a flow, and cause intermediate firewalls to close the holes open for that flow.

I suggest that we recognize the link between new patterns and new attacks in the charter, and have an explicit goal to investigate these attacks and their mitigations. 

-- Christian Huitema

Re: [Spud] updated draft PLUS charter, rev. 1 June 🔓Dan Wing
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Ca By
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Yoav Nir
Re: [Spud] updated draft PLUS charter, rev. 1 June Christian Huitema
[Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Szilveszter Nadas
Re: [Spud] updated draft PLUS charter, rev. 1 June Ca By
Re: [Spud] updated draft PLUS charter, rev. 1 June Aaron Falk
Re: [Spud] updated draft PLUS charter, rev. 1 June Aaron Falk
Re: [Spud] updated draft PLUS charter, rev. 1 June Mirja Kühlewind
Re: [Spud] updated draft PLUS charter, rev. 1 June Aaron Falk
Re: [Spud] updated draft PLUS charter, rev. 1 June Ted Hardie
Re: [Spud] updated draft PLUS charter, rev. 1 June Aaron Falk
Re: [Spud] updated draft PLUS charter, rev. 1 June Ted Hardie
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Aaron Falk
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Aaron Falk
Re: [Spud] updated draft PLUS charter, rev. 1 June Ted Hardie
Re: [Spud] updated draft PLUS charter, rev. 1 June Mirja Kühlewind
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Mirja Kühlewind
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Ted Hardie
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Christian Huitema
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
Re: [Spud] updated draft PLUS charter, rev. 1 June Szilveszter Nadas
Re: [Spud] updated draft PLUS charter, rev. 1 June Szilveszter Nadas
Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch