IETF Logo Mail Archive

[tcpm] tcpsecure: how strong to recommend?

Mark Allman <mallman@icir.org> Mon, 24 September 2007 17:45 UTC

Return-path: <tcpm-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1IZs0L-00083E-5M; Mon, 24 Sep 2007 13:45:57 -0400
Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1IZs0J-000830-FO for tcpm@ietf.org; Mon, 24 Sep 2007 13:45:55 -0400
Received: from pork.icsi.berkeley.edu ([192.150.186.19]) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1IZs0I-0001EL-RQ for tcpm@ietf.org; Mon, 24 Sep 2007 13:45:55 -0400
Received: from guns.icir.org (adsl-69-222-35-58.dsl.bcvloh.ameritech.net [69.222.35.58]) by pork.ICSI.Berkeley.EDU (8.12.11.20060308/8.12.11) with ESMTP id l8OHjsGl020799 for <tcpm@ietf.org>; Mon, 24 Sep 2007 10:45:54 -0700
Received: from lawyers.icir.org (adsl-69-222-35-58.dsl.bcvloh.ameritech.net [69.222.35.58]) by guns.icir.org (Postfix) with ESMTP id 8428EFD7E6C for <tcpm@ietf.org>; Mon, 24 Sep 2007 13:45:48 -0400 (EDT)
Received: from lawyers.icir.org (localhost [127.0.0.1]) by lawyers.icir.org (Postfix) with ESMTP id F2C662A7182 for <tcpm@ietf.org>; Mon, 24 Sep 2007 13:44:44 -0400 (EDT)
To: tcpm@ietf.org
From: Mark Allman <mallman@icir.org>
Organization: ICSI Center for Internet Research (ICIR)
Song-of-the-Day: Car Phone
MIME-Version: 1.0
Date: Mon, 24 Sep 2007 13:44:44 -0400
Message-Id: <20070924174444.F2C662A7182@lawyers.icir.org>
X-Spam-Score: 0.0 (/)
X-Scan-Signature: cab78e1e39c4b328567edb48482b6a69
Subject: [tcpm] tcpsecure: how strong to recommend?
X-BeenThere: tcpm@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: mallman@icir.org
List-Id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:tcpm@ietf.org>
List-Help: <mailto:tcpm-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
Content-Type: multipart/mixed; boundary="===============1579756908=="
Errors-To: tcpm-bounces@ietf.org

 
Folks-

The seeming last issue with the tcpsecure document is how strong to
recommend the various mitigations.  To review, there are three
mitigations for RST, SYN and data injection attacks.  The question is
whether to say that a TCP (1) MAY use all these mitigations, (2) SHOULD
use all these mitigations or (3) SHOULD use the mitigations for the RST
& SYN attacks and MAY use the data injection mitigation.  Clearly there
are other permutations (and one could also bring MUST and MUST NOT into
the conversation), however these three options have been voiced.  If you
have some other permutation then voice it.

In the meeting in Chicago we took a "visual hum" and the tally looks
like this:

      all SHOULDs: 4
      all MAYs: 3
      two SHOULDs and a MAY: 8

So, our inclination is to go with option (3) from my list above.  If you
think this is the wrong way to go please yell---especially if you are
not reflected in the 15 folks who took part in the visual hum.

Thanks,
allman




_______________________________________________
tcpm mailing list
tcpm@ietf.org
https://www1.ietf.org/mailman/listinfo/tcpm

v2.23.0 | Report a Bug | By Email