IETF Logo Mail Archive

Re: [Tcpcrypt] New version of the charter text

John-Mark Gurney <jmg@funkthat.com> Thu, 24 April 2014 15:55 UTC

Return-Path: <jmg@h2.funkthat.com>
X-Original-To: tcpcrypt@ietfa.amsl.com
Delivered-To: tcpcrypt@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 034BA1A036B for <tcpcrypt@ietfa.amsl.com>; Thu, 24 Apr 2014 08:55:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.174
X-Spam-Level:
X-Spam-Status: No, score=-2.174 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.272, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ST-JK9vWcLht for <tcpcrypt@ietfa.amsl.com>; Thu, 24 Apr 2014 08:55:40 -0700 (PDT)
Received: from h2.funkthat.com (gate2.funkthat.com [208.87.223.18]) by ietfa.amsl.com (Postfix) with ESMTP id 1BE4B1A0227 for <tcpcrypt@ietf.org>; Thu, 24 Apr 2014 08:55:40 -0700 (PDT)
Received: from h2.funkthat.com (localhost [127.0.0.1]) by h2.funkthat.com (8.14.3/8.14.3) with ESMTP id s3OFtXv9031036 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 24 Apr 2014 08:55:33 -0700 (PDT) (envelope-from jmg@h2.funkthat.com)
Received: (from jmg@localhost) by h2.funkthat.com (8.14.3/8.14.3/Submit) id s3OFtX7c031035; Thu, 24 Apr 2014 08:55:33 -0700 (PDT) (envelope-from jmg)
Date: Thu, 24 Apr 2014 08:55:33 -0700
From: John-Mark Gurney <jmg@funkthat.com>
To: Wesley Eddy <wes@mti-systems.com>
Message-ID: <20140424155532.GR43976@funkthat.com>
References: <53576572.5030805@it.uc3m.es> <53589161.4090700@mti-systems.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <53589161.4090700@mti-systems.com>
User-Agent: Mutt/1.4.2.3i
X-Operating-System: FreeBSD 7.2-RELEASE i386
X-PGP-Fingerprint: 54BA 873B 6515 3F10 9E88 9322 9CB1 8F74 6D3F A396
X-Files: The truth is out there
X-URL: http://resnet.uoregon.edu/~gurney_j/
X-Resume: http://resnet.uoregon.edu/~gurney_j/resume.html
X-TipJar: bitcoin:13Qmb6AeTgQecazTWph4XasEsP7nGRbAPE
X-to-the-FBI-CIA-and-NSA: HI! HOW YA DOIN? can i haz chizburger?
X-Greylist: Sender passed SPF test, not delayed by milter-greylist-4.2.2 (h2.funkthat.com [127.0.0.1]); Thu, 24 Apr 2014 08:55:33 -0700 (PDT)
Archived-At: http://mailarchive.ietf.org/arch/msg/tcpcrypt/z264Zfe1qDrZkl-fvpslVktA6jM
Cc: tcpcrypt@ietf.org
Subject: Re: [Tcpcrypt] New version of the charter text
X-BeenThere: tcpcrypt@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Discussion list for adding encryption to TCP." <tcpcrypt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tcpcrypt>, <mailto:tcpcrypt-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tcpcrypt/>
List-Post: <mailto:tcpcrypt@ietf.org>
List-Help: <mailto:tcpcrypt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpcrypt>, <mailto:tcpcrypt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 24 Apr 2014 15:55:42 -0000

Wesley Eddy wrote this message on Thu, Apr 24, 2014 at 00:21 -0400:
> On 4/23/2014 3:02 AM, marcelo bagnulo braun wrote:
> > 
> > The TCP Inc. WG will develop the TCP extensions to provide unauthenticated
> > encryption and integrity protection of TCP streams. The WG will define the
> > TCP extensions to perform an unauthenticated key exchange resulting in
> > encryption
> > without authentication.  This is better than plain-text because it thwarts
> > passive eavesdropping, but is weaker than using authenticated keys,
> > because it
> > is vulnerable to man-in-the-middle attacks.  This work is part of the IETF
> > effort to harness the Internet architecture given the latest events of
> > pervasive
> > monitoring (see draft-farrell-perpass-attack).
> 
> 
> I'm probably just very bad at locating this in all the discussion, but
> I have a sort of fundamental question ... why are we trying to do this
> inside TCP rather than just running TCP over IPsec w/ BTNS (over UDP,
> if NAT is the concern), or over DTLS?

Have you read the original tcpcrypt paper?

> I know it's more fun to do it inside TCP, of course, but I wonder a
> little bit whether building a security sub-layer inside TCP (which
> is already hella complex and full of edge cases) is really a good
> idea when there are already a couple of reasonably decent security
> protocols designed to be layered over.
> 
> Sorry for such a silly question, but it seems like it will come up
> during chartering and should be clearly motivated, as reading the
> requirements later on in the draft charter, it looks like you could
> cook up something with BTNS or DTLS under normal TCP to do all that,
> and it would protect the SYNs (which Joe mentioned is a challenge
> for TCP-based approaches).
> 
> I think the charter should speak to this, at least very briefly.

It does very briefly:
- The protocol must be usable by unmodified applications.

All the things you mentioned seems like it would require agreement
between systems and management by a sysadmin, but this is targeted to
end users system (like smart phones) too...  If TCP is the only
protocol allowed through a firewall, how are any of your other solutions
going to work?

The goal is to make it very easy for everyone to deploy...  Configuring
IPSEC is a pain, and as Joe mentions, most implementations don't handle
key roll over properly (even though apparently, you're allowed to keep
both the old key and the new key around for the transition period to
handle this case)...

-- 
  John-Mark Gurney				Voice: +1 415 225 5579

     "All that I will do, has been done, All that I have, has not."

v2.23.0 | Report a Bug | By Email