[tcpm] 793bis: New security considerations section
Wesley Eddy <wes@mti-systems.com> Mon, 13 November 2017 19:23 UTC
Return-Path: <wes@mti-systems.com>
X-Original-To: tcpm@ietfa.amsl.com
Delivered-To: tcpm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4CE41124C27 for <tcpm@ietfa.amsl.com>; Mon, 13 Nov 2017 11:23:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mti-systems-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fw1dOueD7uMt for <tcpm@ietfa.amsl.com>; Mon, 13 Nov 2017 11:22:58 -0800 (PST)
Received: from mail-io0-x229.google.com (mail-io0-x229.google.com [IPv6:2607:f8b0:4001:c06::229]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9D253120721 for <tcpm@ietf.org>; Mon, 13 Nov 2017 11:22:58 -0800 (PST)
Received: by mail-io0-x229.google.com with SMTP id 189so21800144iow.10 for <tcpm@ietf.org>; Mon, 13 Nov 2017 11:22:58 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mti-systems-com.20150623.gappssmtp.com; s=20150623; h=to:from:subject:message-id:date:user-agent:mime-version :content-transfer-encoding:content-language; bh=/UIQogl9e9Cj5rZ4MklCVrmiRlDCpPOMtVgxJSO4amQ=; b=f0HCdhocRxtD4eTG3nHwva1Y5D0fzFKqy7deN1/r4QXgdmeEIdXlAGot2Ns/b8PZNp vlslveSu6gbEadHvezuP6mze9uIIFuI5jPiEHTgssis0c4CIBPPdVkKSw4DNstnMHhkX 13Ugq2uemrMq1fNzbDwZZyWEk7H6xWm2RVeaCoqDX5VzziYbhfWWDjJXy8izfhQbZ0EK 9U71jJ3VhwLZcugUBrXSMkb7Mc2zWwD2yvK20XqJKmVqf+9sr/Edl4itGmPOz4csHoVd 43m8DcDaZF56RrqPiaUOMgkh/8YOx6MgTrneCQrE8yTNurRzroW3SqkK8xwjMyTMGgy0 Pd4Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:to:from:subject:message-id:date:user-agent :mime-version:content-transfer-encoding:content-language; bh=/UIQogl9e9Cj5rZ4MklCVrmiRlDCpPOMtVgxJSO4amQ=; b=EAf0Do/nRnnW6gglXcgLs4IzBezKt7c+ligNfmIe21awW3MbZHiQ+dTbnalvhBSG6H xesFTzqql8Ix+vszaKlOBE8yqtlNuAQxG+swdsTRw9tCW4a6Sqil/+an368gMwYTYkKi KQpfTrrvVOmIRAZfVU3UH9AMZ5S5n9TaPyIOZ7m0vJzw0N5reOcIPBfegjIz4wtmG7h/ Noqav/jAbjXS6IMjxp92AzlWBOXaVszfoUk4W6X2W/QLALSjp+thUb9WLBQYx+mcM9Iq W+mk1UJW5sEyV0HVp4cWObraJ/sgFL3pFQ6ODuBvgb7fogz0r4mLa6rDz4En0bcEE7Zy FGew==
X-Gm-Message-State: AJaThX7EwwNdmYX22VqkY0yzzAV2/iG1QMWcekoTMKgR0RSB7oZ8D9VJ JkkaRjS5c4O+5E2jPvsTN2elQ3GZQZg=
X-Google-Smtp-Source: AGs4zMalzvwd23KrQHtU9BPEQ8FlKi5oDQ5QxvPYosodEJ4mZ4UWU/dPAzoxGGUMq1MslhV7upvuxw==
X-Received: by 10.107.16.86 with SMTP id y83mr767220ioi.107.1510600976478; Mon, 13 Nov 2017 11:22:56 -0800 (PST)
Received: from [192.168.1.105] (cpe-76-188-215-129.neo.res.rr.com. [76.188.215.129]) by smtp.gmail.com with ESMTPSA id e203sm4633841itb.32.2017.11.13.11.22.55 for <tcpm@ietf.org> (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 13 Nov 2017 11:22:56 -0800 (PST)
To: tcpm@ietf.org
From: Wesley Eddy <wes@mti-systems.com>
Message-ID: <5043d1eb-c98b-647d-af66-8fb47def432f@mti-systems.com>
Date: Mon, 13 Nov 2017 14:22:55 -0500
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Thunderbird/52.4.0
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/tcpm/tsCAoUG3_vml_2vdjJurTsph2p8>
Subject: [tcpm] 793bis: New security considerations section
X-BeenThere: tcpm@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tcpm/>
List-Post: <mailto:tcpm@ietf.org>
List-Help: <mailto:tcpm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Nov 2017 19:23:00 -0000
Hi, one thing that I want to make the WG aware of in the latest RFC 793bis draft is the new security and privacy considerations section. https://tools.ietf.org/html/draft-ietf-tcpm-rfc793bis-07#section-6 The original RFC 793 predates security considerations sections, so I didn't have much to start from. My goal was to point to relevant references without creating dozens of pages of meandering text on every little possible security issue (most of which are well-known by now). This is a first crack at it, and it could likely be improved in big ways. Your feedback, suggestions, corrections, etc. is appreciated.