Re: [tcpm] WGLC: draft-ietf-tcpm-tcpsecure-10.txt

Joe Touch <touch@ISI.EDU> Fri, 29 August 2008 21:40 UTC

Return-Path: <tcpm-bounces@ietf.org>
X-Original-To: tcpm-archive@megatron.ietf.org
Delivered-To: ietfarch-tcpm-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 1A63E3A6AA2; Fri, 29 Aug 2008 14:40:09 -0700 (PDT)
X-Original-To: tcpm@core3.amsl.com
Delivered-To: tcpm@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 2DFAD3A6AA2 for <tcpm@core3.amsl.com>; Fri, 29 Aug 2008 14:40:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IMeS4YL0iSAv for <tcpm@core3.amsl.com>; Fri, 29 Aug 2008 14:40:06 -0700 (PDT)
Received: from vapor.isi.edu (vapor.isi.edu [128.9.64.64]) by core3.amsl.com (Postfix) with ESMTP id 446E93A68A8 for <tcpm@ietf.org>; Fri, 29 Aug 2008 14:40:06 -0700 (PDT)
Received: from [128.9.160.144] (nib.isi.edu [128.9.160.144]) by vapor.isi.edu (8.13.8/8.13.8) with ESMTP id m7TLdnOf012458 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Fri, 29 Aug 2008 14:39:51 -0700 (PDT)
Message-ID: <48B86C64.6070903@isi.edu>
Date: Fri, 29 Aug 2008 14:38:44 -0700
From: Joe Touch <touch@ISI.EDU>
User-Agent: Thunderbird 2.0.0.16 (Windows/20080708)
MIME-Version: 1.0
To: Fernando Gont <fernando@gont.com.ar>
References: <FE34F27F-8DDF-4C94-BC6E-E2ABF6000309@windriver.com> <B5A5E01F9387F4409E67604C0257C71E409513@NDJSEVS25A.ndc.nasa.gov> <24D2F5D3-93E7-4B64-BA96-2086F3E5754E@windriver.com> <200808282159.m7SLx23E013917@venus.xmundo.net> <0C53DCFB700D144284A584F54711EC5805B5019B@xmb-sjc-21c.amer.cisco.com> <200808291948.m7TJmWUS006817@venus.xmundo.net>
In-Reply-To: <200808291948.m7TJmWUS006817@venus.xmundo.net>
X-Enigmail-Version: 0.95.7
X-ISI-4-43-8-MailScanner: Found to be clean
X-MailScanner-From: touch@isi.edu
Cc: David Borman <david.borman@windriver.com>, rrs@cisco.com, tcpm@ietf.org, "Anantha Ramaiah \(ananth\)" <ananth@cisco.com>, "Mitesh Dalal \(mdalal\)" <mdalal@cisco.com>
Subject: Re: [tcpm] WGLC: draft-ietf-tcpm-tcpsecure-10.txt
X-BeenThere: tcpm@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://www.ietf.org/mailman/private/tcpm>
List-Post: <mailto:tcpm@ietf.org>
List-Help: <mailto:tcpm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: tcpm-bounces@ietf.org
Errors-To: tcpm-bounces@ietf.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

>> IMO, all the recent TCP connection robustness related drafts (port 
>> randomization, ICMP attacks etc.,) should have a reference to TCP
>> secure since most of these drafts were inspired by TCP secure!

Above Ananth is claiming that the recent burst of activity in this space
is due to his draft, though Watson (CanSec West, March 2004) is the
origin of the RST issue in public forums (tcpsecure-00 wasn't out until
April 2004).

Other solutions in this space were Larsen's port-randomisation-00 in
June 2004 (later Larsen and Gont), and Poon's timestamp-00 also in June
2004, though port-randomisation closely parallels Bellovin's ISN
randomization in RFC1948 from 1996. (and port randomization may have
been deployed before 2004 - does anyone recall?)

However, I would be glad to credit Ananth with the large number of
'attacks' on Postel's RFC793 design principle, "be liberal in what you
accept from others" from 1981. ;-)

Joe
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAki4bGQACgkQE5f5cImnZrs5igCeKhNfbUiHweoYHQTvJDaxn/8L
s7QAoMQvLTK91Nxg95tPnccyYwGULhp9
=Ou+1
-----END PGP SIGNATURE-----
_______________________________________________
tcpm mailing list
tcpm@ietf.org
https://www.ietf.org/mailman/listinfo/tcpm