Re: [trill] Kathleen Moriarty's No Objection on draft-ietf-trill-directory-assisted-encap-09: (with COMMENT)

Donald Eastlake <d3e3e3@gmail.com> Sun, 04 March 2018 22:55 UTC

Return-Path: <d3e3e3@gmail.com>
X-Original-To: trill@ietfa.amsl.com
Delivered-To: trill@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 870A9124217; Sun, 4 Mar 2018 14:55:20 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.449
X-Spam-Level:
X-Spam-Status: No, score=-2.449 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8ROSOaRiVAYL; Sun, 4 Mar 2018 14:55:18 -0800 (PST)
Received: from mail-io0-x22a.google.com (mail-io0-x22a.google.com [IPv6:2607:f8b0:4001:c06::22a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 892CD120227; Sun, 4 Mar 2018 14:55:18 -0800 (PST)
Received: by mail-io0-x22a.google.com with SMTP id m22so15948895iob.12; Sun, 04 Mar 2018 14:55:18 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=5kyIb1pMJFEUlZsUy7cEZsXQG/ZVr81sepoBPdi4Wuo=; b=i0YhSoAgiMqcVVOocf4mimHit0/g9sfWYCifZvJFlSevY6KX4OWHJWF1kHjzSBCV/d kuDEBFy+zgYbVLpGY9vKeB4A1/Bdmcx5fm9hcTu3671oAC0HRCdrC2K1lbPcye5xCGSa vZIe2rFB15izK1p7qWbtkoc0xBkR85tyYMsMxp5zX1ZY3j43O/yv9lXle0KWQ2oOm8JE adoh04454iPklSOlFvN+mEuw+0OHI0AdhNtKFRlUHmJqyVlj6K9StlkuU9K+CynCg3kh nqGBcM88Fx0ITqsrdYOfz5odn6sq7ho9+GPFx7j2+t1Cx/XOPbvJemjCmWCumZNNLRPF HviA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=5kyIb1pMJFEUlZsUy7cEZsXQG/ZVr81sepoBPdi4Wuo=; b=Hpd872y5QBZb5OJCchIM4/NhLFslTqs4b6OU302t0ykSeP5c2q9oaKcqieuKJeeMls sevDXSf/FEv2eKo69SxDDFxlHF+snvVr2JaWrhFKvN/VPkbmh/evZLx9LvepEjqzZj0P 2Md4QvWQJdeZUSDha4At3v5czQa7eAnWaDf/JjA3J5SXn0BLiVC99guwVXBq5jlCXkEf uIkU8StE1O4zwNCIvUlioP+bWgYoGGdK3Se6gXgzX9clbBCND+UFoz0L8bQiJF3RbAQY QVfLuUcaTeNIKcbf/ZofYv3+g9lAbS8ZXTtPM9SMI78MD/rpdnbBJuxDMAkAWfuslIc3 FEFA==
X-Gm-Message-State: APf1xPBMwch4Z/1oXrPmI1NxyCEO4/mXqS9R5lg5XxO5QQl0lyeO5Ir0 9Jm9L75VWUz8BdtDpucYo2SEsztgfgjA8Us36N8=
X-Google-Smtp-Source: AG47ELsypbITNbK3605Rca5LbymT6bIPWiz6dGe6rj9LaUnQEnZVsbNU0TsSL2Y776WMpnDchBd9a02aXpnG4Seb3j4=
X-Received: by 10.107.95.23 with SMTP id t23mr15230196iob.14.1520204117838; Sun, 04 Mar 2018 14:55:17 -0800 (PST)
MIME-Version: 1.0
Received: by 10.107.58.193 with HTTP; Sun, 4 Mar 2018 14:55:02 -0800 (PST)
In-Reply-To: <152010755972.8330.8150851747360453132.idtracker@ietfa.amsl.com>
References: <152010755972.8330.8150851747360453132.idtracker@ietfa.amsl.com>
From: Donald Eastlake <d3e3e3@gmail.com>
Date: Sun, 4 Mar 2018 17:55:02 -0500
Message-ID: <CAF4+nEFOtkxRWQdiCa3ZrPjB7rRbgeRGfy_3RR1p3dqPBAeQTw@mail.gmail.com>
To: Kathleen Moriarty <Kathleen.Moriarty.ietf@gmail.com>
Cc: The IESG <iesg@ietf.org>, draft-ietf-trill-directory-assisted-encap@ietf.org, trill-chairs@ietf.org, Susan Hares <shares@ndzh.com>, trill IETF mailing list <trill@ietf.org>
Content-Type: multipart/alternative; boundary="089e08e55ceb6e117e05669e1ad1"
Archived-At: <https://mailarchive.ietf.org/arch/msg/trill/V2RZNREA3j2bnBMdt8_9YTrgZpc>
Subject: Re: [trill] Kathleen Moriarty's No Objection on draft-ietf-trill-directory-assisted-encap-09: (with COMMENT)
X-BeenThere: trill@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Developing a hybrid router/bridge." <trill.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/trill>, <mailto:trill-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/trill/>
List-Post: <mailto:trill@ietf.org>
List-Help: <mailto:trill-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/trill>, <mailto:trill-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 04 Mar 2018 22:55:20 -0000

Hi Kathleen,

Thanks for you comment, which seems like a reasonable suggestion. We have
uploaded a -10 with that change and also a typo fix.

Thanks,
Donald
===============================
 Donald E. Eastlake 3rd   +1-508-333-2270 (cell)
 155 Beaver Street, Milford, MA 01757 USA
 d3e3e3@gmail.com

On Sat, Mar 3, 2018 at 3:05 PM, Kathleen Moriarty <
Kathleen.Moriarty.ietf@gmail.com> wrote:

> Kathleen Moriarty has entered the following ballot position for
> draft-ietf-trill-directory-assisted-encap-09: No Objection
>
> When responding, please keep the subject line intact and reply to all
> email addresses included in the To and CC lines. (Feel free to cut this
> introductory paragraph, however.)
>
>
> Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
> for more information about IESG DISCUSS and COMMENT positions.
>
>
> The document, along with other ballot positions, can be found here:
> https://datatracker.ietf.org/doc/draft-ietf-trill-
> directory-assisted-encap/
>
>
>
> ----------------------------------------------------------------------
> COMMENT:
> ----------------------------------------------------------------------
>
> Thanks for your work on this document.  I'd like to see stronger language
> used
> in the security considerations section.  I'll propose edits for you to
> consider:
>
> OLD:
> Therefore, there could be a potential security risk
>    when the TRILL-ENs are not trusted.  In addition, if the path between
>    the directory and the TRILL-ENs are attacked, false mappings can be
>    sent to the TRILL-EN causing packets from the TRILL-EN to be sent to
>    wrong destinations, possibly violating security policy. Therefore, a
>    combination of authentication and encryption should be used between
>    the Directory and TRILL-EN. The entities involved will need to
>    properly authenticate with each other to protect sensitive
>    information.
>
> NEW:
>    Therefore, there could be a potential security risk
>    when the TRILL-ENs are not trusted or are compromised.  In addition, if
> the
>    path between the directory and the TRILL-ENs are attacked, false
> mappings
>    can be sent to the TRILL-EN causing packets from the TRILL-EN to be
> sent to
>    wrong destinations, possibly violating security policy. Therefore, a
>    combination of authentication and encryption is RECOMMENDED between the
>    Directory and TRILL-EN. The entities involved will need to properly
>    authenticate with each other, provide session encryption, maintain
> security
>    patch levels, and configure their systems to allow minimal access and
>    running processes to protect sensitive information.
>
>
>