IETF Logo Mail Archive

Re: [Tsv-art] [manet] Tsvart early review of draft-ietf-manet-dlep-credit-flow-control-09

Henning Rogge <hrogge@gmail.com> Thu, 25 November 2021 07:22 UTC

Return-Path: <hrogge@gmail.com>
X-Original-To: tsv-art@ietfa.amsl.com
Delivered-To: tsv-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A6B383A0C17; Wed, 24 Nov 2021 23:22:47 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id S3ma4b-4BMso; Wed, 24 Nov 2021 23:22:43 -0800 (PST)
Received: from mail-lf1-x12a.google.com (mail-lf1-x12a.google.com [IPv6:2a00:1450:4864:20::12a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D0AF43A0FCF; Wed, 24 Nov 2021 23:22:39 -0800 (PST)
Received: by mail-lf1-x12a.google.com with SMTP id t26so13903760lfk.9; Wed, 24 Nov 2021 23:22:39 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=tRP1bct2/H0hfQ+7RqRrcEUh6vZWyO04y6Cfgze1n58=; b=YjXOWiYBI7uCfINvJEAKCcjUmAF2i2rj2iMeL1myICNTZtRwMp1myL0YcH+BztMxmy r7QAHSqbVHNaSvSrE8HhGiHu8bontzZSf6hKCTklPKdeTaJiZp+9o2mkaLIMiZr1t9o9 7RBjOFzuGI72wT/cwNUPSvLhuvD+hoVJ0hrOSAGd6G5Mf6K4l+eEckqqLueSUeJc9xKu cIyllPrzyj2hvblt1TiVdEin9ulzuVAGQ8SHRo5XftYV3KdokhtgoMpKi4zoFTzgUAIJ 19y0f77zbPNXhM21Yz5ebfOwqsDL6RoOjdN9CruIXK8crbKJMVCzV7GOK/s+gCxOrfM5 eYAQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=tRP1bct2/H0hfQ+7RqRrcEUh6vZWyO04y6Cfgze1n58=; b=aXCe81Zl2TPTUQ2NFp9mObQRsdbnrxgordQogpuxPxdcnlM52Z1USwq8UThIz/PnaD 47jqhbNEEBJsVZXKWmCHbzc2TVm38UDe9TzPpUgyti97qRI29QtKLZDryJGbAEPFZZo0 MJDG7RJt10nT2exSSgF4UsoLjgmfXihITJLP4ATRYCh5L0/VMyZSxityhEOn52+Qy/iQ 5j3I9F+1e6ZBrdYQOHVBTlL2Fq8G4W4h6CNcU/3paVOxzdz/S6RKEDMvayV5cthNEx3j 7a2wyolQkA5BduJ+KS1/9Dh6jwA5YOrCn9fC4sRrqy/Qs/lRiaAG5425jTyVmvumE4Lr fB7g==
X-Gm-Message-State: AOAM5308RkuKsO+rxEM/NZZdOmJExbpUwztkVi7uAzS2M3Hc9PYGf5kj +l/cH3p7/VTzkPled/ZV6neuXDzkW+4D0SfuFyEffrLumlU=
X-Google-Smtp-Source: ABdhPJycZfkOqw6MnX+CfTrE1KP+plBB6zC+U+o92+lJhyDbUqzHywGaSvmwj5G99VbtmwSDm1ADNGQ+WfP2+j0YKRc=
X-Received: by 2002:a19:7417:: with SMTP id v23mr22146536lfe.19.1637824953935; Wed, 24 Nov 2021 23:22:33 -0800 (PST)
MIME-Version: 1.0
References: <163734132077.29324.1689596626565034298@ietfa.amsl.com>
In-Reply-To: <163734132077.29324.1689596626565034298@ietfa.amsl.com>
From: Henning Rogge <hrogge@gmail.com>
Date: Thu, 25 Nov 2021 08:21:29 +0100
Message-ID: <CAGnRvurUJhLY30kB_TaF6pwb8bkg=EjXQpjqhUC3FoDmWoGqkQ@mail.gmail.com>
To: David Black <david.black@dell.com>
Cc: tsv-art@ietf.org, draft-ietf-manet-dlep-credit-flow-control.all@ietf.org, MANET IETF <manet@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tsv-art/8GOFXn6RNZiGVBPaPm2wAVdj6o4>
Subject: Re: [Tsv-art] [manet] Tsvart early review of draft-ietf-manet-dlep-credit-flow-control-09
X-BeenThere: tsv-art@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Transport Area Review Team <tsv-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tsv-art>, <mailto:tsv-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tsv-art/>
List-Post: <mailto:tsv-art@ietf.org>
List-Help: <mailto:tsv-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tsv-art>, <mailto:tsv-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Nov 2021 07:22:48 -0000

On Fri, Nov 19, 2021 at 6:02 PM David Black via Datatracker
<noreply@ietf.org> wrote:
> -- [6] -- Security Considerations
>
> Although this is a Transport review, I found a security issue that would be
> better dealt with now before the security directorate points it out ;-) - the
> security considerations sections in each of the 3 drafts claims that adding
> credit window control and flow functionality to DLEP does not introduce any new
> security considerations (vulnerabilities). That's a nice try, but it's
> incorrect.
>
> These drafts specify a new resource (credits in a credit window) that is
> subject to resource exhaustion attacks that could cause denial-of-service.  For
> example, suppose an attacker injects a Credit Window Initialization data item
> that contains almost no credits and/or specifies a ridiculously tiny Window
> (Max) Size.  I expect that the protocol contains mechanisms to counter this and
> related attacks on credit resources (e.g., if something looks wrong, the modem
> reinitializes the Credit Window), but the current text incorrectly asserts the
> non-existence of such attacks.  These sorts of attacks definitely exist - I am
> aware of a (subsequently fixed) resource exhaustion problem in another
> credit-based flow control mechanism caused by an unanticipated environmental
> "attack" on signal integrity of credit exchange messages, resulting in message
> discard and credit loss.

I disagree with the security concerns... if the physical link between
router and radio is not secure (e.g. a single ethernet cable), the
DLEP connection should be secured... either by securing the link (e.g.
802.1x or MacSec) or by TLS (which would leave the DATA unprotected!).

If the router itself is not secure, exhausting the radio resources
should be a non-issue... you could just block the radio with more
traffic.

Henning Rogge

v2.23.0 | Report a Bug | By Email