Re: [tsvwg] [saag] Comments on draft-ietf-tsvwg-transport-encrypt-08.txt

[Gorry Fairhurst <gorry@erg.abdn.ac.uk>]

On 07/11/2019, 19:10, Colin Perkins wrote:
> David,
>
> I don’t know what Mirja thinks is the desired outcome, but my intent – 
> as an author of the draft – is that you think about the issues raised 
> and how they relate to your protocol, then make an informed decision 
> about what parts of the headers to protect and what parts it might 
> make sense to expose.
>
> And, to be explicit, if you think about the issues discussed in the 
> draft and then decide to encrypt all the transport layer headers, 
> /that’s fine by me. /
>
> Colin
>
+1.

My personal view is that this seeks to provide input to those developing 
IETF specifications to describe how they have considered PM, and, if the 
attack is relevant to the work to be published, be able to justify 
related design decisions.

Gorry

>
>> On 6 Nov 2019, at 17:52, David Schinazi <dschinazi.ietf@gmail.com 
>> <mailto:dschinazi.ietf@gmail.com>> wrote:
>>
>> Hi Mirja,
>>
>> Perhaps I misunderstood the document. The draft makes a lists
>> of issues that arise when you encrypt transport headers, then
>> concludes with a call to action to take these issues into
>> consideration. In your reading, what is the desired outcome of
>> this document? As a protocol designer, what do you expect me
>> to do differently when I design my next protocol after reading this
>> document? The tone seems to imply that I should leave some
>> headers unencrypted in order "to ensure network operators,
>> researchers and other stakeholders have appropriate tools to
>> manage their networks". If this is not the intent of this draft, then
>> what is it? What exact outcome or we hoping for?
>>
>> Thanks,
>> David
>>
>>
>> On Tue, Nov 5, 2019 at 11:14 PM Mirja Kuehlewind 
>> <mirja.kuehlewind@ericsson..com 
>> <mailto:mirja.kuehlewind@ericsson.com>> wrote:
>>
>>     Hi David,
>>
>>     This document is not intended to discourage header encryption but
>>     to make sure that operational considerations are taken into
>>     account when exactly design new protocols that should have header
>>     encryption (as well as payload encryption). If you think this
>>     document discourages header encryption, we need to fix that.
>>     Would be helpful if you could indicate to the authors where you
>>     think this is the case.
>>
>>     Mirja
>>
>>
>>     Am 05.11.2019 um 23:10 schrieb David Schinazi
>>     <dschinazi.ietf@gmail.com <mailto:dschinazi.ietf@gmail.com>>:
>>
>>>     I also oppose publication of draft-ietf-tsvwg-transport-encrypt.
>>>     This document discourages transport header encryption and
>>>     publishing it could harm future protocol development.
>>>
>>>     David
>>>
>>>     On Tue, Nov 5, 2019 at 1:04 PM Joe Touch <touch@strayalpha.com
>>>     <mailto:touch@strayalpha.com>> wrote:
>>>
>>>
>>>
>>>         > On Nov 5, 2019, at 12:35 PM, Mirja Kuehlewind
>>>         <mirja.kuehlewind=40ericsson.com@dmarc.ietf.org
>>>         <mailto:40ericsson.com@dmarc.ietf.org>> wrote:
>>>         >
>>>         > What I’m hearing is that 2-3 people think this is not
>>>         aligned but don’t actually say why exactly they think that
>>>
>>>         That’s not what we’re saying. We gave reasons.
>>>
>>>         Joe
>>>
>> _______________________________________________
>> saag mailing list
>> saag@ietf.org <mailto:saag@ietf.org>
>> https://www.ietf.org/mailman/listinfo/saag
>
>
>
> -- 
> Colin Perkins
> https://csperkins.org/
>
>
>
>