IETF Logo Mail Archive

Re: [tcpm] [OPSEC] draft-gont-tcp-security

Joel Jaeggli <joelja@bogus.com> Tue, 14 April 2009 14:56 UTC

Return-Path: <joelja@bogus.com>
X-Original-To: tcpm@core3.amsl.com
Delivered-To: tcpm@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 738513A68ED; Tue, 14 Apr 2009 07:56:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id y8cFYg57EBUF; Tue, 14 Apr 2009 07:56:34 -0700 (PDT)
Received: from nagasaki.bogus.com (nagasaki.bogus.com [IPv6:2001:418:1::81]) by core3.amsl.com (Postfix) with ESMTP id 3A3213A6B0D; Tue, 14 Apr 2009 07:56:34 -0700 (PDT)
Received: from [172.168.1.113] (adsl-76-205-24-189.dsl.pltn13.sbcglobal.net [76.205.24.189]) (authenticated bits=0) by nagasaki.bogus.com (8.14.3/8.14.3) with ESMTP id n3EEvdsG047791 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Tue, 14 Apr 2009 14:57:41 GMT (envelope-from joelja@bogus.com)
Message-ID: <49E4A45B.4040402@bogus.com>
Date: Tue, 14 Apr 2009 07:57:31 -0700
From: Joel Jaeggli <joelja@bogus.com>
User-Agent: Thunderbird 2.0.0.21 (X11/20090409)
MIME-Version: 1.0
To: Lars Eggert <lars.eggert@nokia.com>
References: <C304DB494AC0C04C87C6A6E2FF5603DB221318F5E8@NDJSSCC01.ndc.nasa.g ov><49E36AB9.40507@isi.edu> <49E384E9.1050106@gont.com.ar><49E3878C.9080200@isi.edu> <49E39119.1060902@gont.com.ar> <B01905DA0C7CDC478F42870679DF0F1004BC4176D0@qtdenexmbm24.AD.QINTRA.COM> <49E3A88F.9060301@gont.com.ar> <49E3ABC0.1050601@isi.edu> <49E3B9BF.1060901@gont.com.ar> <49E3BED9.1030701@isi.edu> <C9E987CC-0213-4C67-BA0A-11C736772EE7@nokia.com>
In-Reply-To: <C9E987CC-0213-4C67-BA0A-11C736772EE7@nokia.com>
X-Enigmail-Version: 0.95.7
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: ClamAV 0.94.2/9233/Tue Apr 14 09:45:01 2009 on nagasaki.bogus.com
X-Virus-Status: Clean
X-Mailman-Approved-At: Tue, 14 Apr 2009 08:24:13 -0700
Cc: "Smith, Donald" <Donald.Smith@qwest.com>, 'Joe Abley' <jabley@ca.afilias.info>, "'opsec@ietf.org'" <opsec@ietf.org>, "'tcpm@ietf.org'" <tcpm@ietf.org>, Joe Touch <touch@ISI.EDU>
Subject: Re: [tcpm] [OPSEC] draft-gont-tcp-security
X-BeenThere: tcpm@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tcpm>
List-Post: <mailto:tcpm@ietf.org>
List-Help: <mailto:tcpm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 14 Apr 2009 14:56:35 -0000

IETF list omitted for brevity...

I think this is exactly the kind of discussion that this document
needed, and I glad that we've finally managed to stimulate it.

In my own opinion:

I do belive that implementation advice is in scope for the ietf.

We should plow operational experience with our protocol stack and it's
limitations back into the standards process,

We should avoid producing advice on general cases that would result in
protocols becoming more rather than less brittle except when absolutely
necessary.

We should be mindful that existing deployed implementations are unlikely
to change based solely on recommendations.

joel

Lars Eggert wrote:
> Hi,
> 
> <all hats off>
> 
> On 2009-4-14, at 1:38, Joe Touch wrote:
>>>> Advice in making a hardened version of TCP would be useful to the
>>>> implementation community.
>>>
>>> To a large extent this is what draft-gont-tcp-security is about.
>>
>> Implementation advice is outside the scope of the IETF. It's not even
>> operational, IMO.
> 
> I do believe there is value in having a document that would inform a
> stack vendor of various potential attack vectors against a TCP stack and
> what techniques exist to harden their stacks.
> 
> I agree with Joe that some of the hardening techniques that vendors are
> implementing come with consequences (make TCP more brittle). To me, this
> is a *reason* this document should be published via the IETF (i.e.,
> TCPM) - we are probably in the best position to correctly evaluate and
> classify the impact of various hardening techniques. Stack vendors have
> been putting these mechanisms in to their stacks without clear
> specifications and discussions of the potential upsides and downsides
> that would let them make an educated decision. It seems clear to me that
> the vendor community is looking for guidance here, and I do believe the
> IETF should give it.
> 
> Yes, there is a fine line here, where some of the hardening techniques
> introduce some new assumptions on what the segment flow of a valid
> connection looks like, etc. It will be important to accurately describe
> the downsides of some of these techniques, especially where they could
> result in valid connections being dropped.
> 
> Lars
> 
> 
> ------------------------------------------------------------------------
> 
> _______________________________________________
> Ietf mailing list
> Ietf@ietf.org
> https://www.ietf.org/mailman/listinfo/ietf

v2.23.0 | Report a Bug | By Email