[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [RAM] Tunnelling Route Reduction Protocol

To: ram at iab.org
Subject: Re: [RAM] Tunnelling Route Reduction Protocol
From: "William Herrin" <bill at herrin.us>
Date: Wed, 22 Aug 2007 19:52:19 -0400
Cc: Noel Chiappa <jnc at mercury.lcs.mit.edu>
Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; b=YHAOLN20FZGSRrPNGhZ5JiZnSMSV0UKnw+6s24cijJ8clkAiUcdN4wGQfMfWclkDuVt5E0i7cp0lgalygd70ffEDBCkpe0+nO/S7geDm3Stw/R+Act12zo7Qid7ErIxdZRr3plgXkIoY8PtzftmBMupOQLkRILUTdOHT6swcV+M=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; b=Y0avGEAVhniyhNHa9vXc18sCVAZxFM4utyKAtaEtVdJeMdoCLx/aEsJDBXlNaUIUvah9spyeCKRUO2uKBvTasVns1puuGPoDMJpYygDr8Vv99MW12IOUz2It3cu9kjXmpF3Jry8zRQG8Pe9+smxVF11y/45Dmg+C8KKPKWa01bE=
In-reply-to: <20070822231449.B474986AE1@mercury.lcs.mit.edu>
List-archive: <http://www1.ietf.org/pipermail/ram>
List-help: <mailto:ram-request@iab.org?subject=help>
List-id: Routing and Addressing Mailing List <ram.iab.org>
List-post: <mailto:ram@iab.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ram>, <mailto:ram-request@iab.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ram>, <mailto:ram-request@iab.org?subject=unsubscribe>
References: <20070822231449.B474986AE1@mercury.lcs.mit.edu>

On 8/22/07, Noel Chiappa <jnc at mercury.lcs.mit.edu> wrote:
>     > There are several potential problems but the most serious is
>     > authentication.
>
> Yeah, I know - I've been doing some thinking in this area myself recently.
> I know about the authentication - what are the other problems?

Hi Noel,

Well, if the ITR is expected to encode the return information in its
communication with the ETR then every possible ITR for a given source
address needs authoritative knowledge of every possible ETR for that
address and it has to be able to implement the policy rules for
traffic engineering with respect to those addresses. That requires
significant complexity in the ITRs and since the policy rules have to
match what the ITRs are capable of implementing, they're not likely to
be very flexible.

With strictly forward-lookups like what I have in TRRP, traffic
engineering is the responsibility of the route-server and it can be
arbitrarily complex.

>     > Theoretically a man-in-the-middle attack is possible, but
>     > operationally it has proven to be a non-issue.
>
> Well, there's also plain DoS - someone sends a packet claiming to be from
> X, with a mapping for X, and the mapping is bogus, and sends the traffic to
> somewhere random, or non-existent.

I meant that man-in-the-middle is a theoretical issue with a DNS
lookup like proposed in TRRP. A MitM could forge the DNS reply,
causing the ITR to route traffic by way of an ETR on a network that
should never see it.

That's what DNSSEC is all about: it eliminates the attack vector.
DNSSEC hasn't been widely adopted because operationally the attack
vector hasn't proven to be a enough of a problem. If its not a problem
when mapping www.google.com to 1.2.3.4 then its not likely to be a
problem for mapping IP addresses to ETRs.

Regards,
Bill Herrin

-- 
William D. Herrin                  herrin at dirtside.com  bill at herrin.us
3005 Crane Dr.                        Web: <http://bill.herrin.us/>
Falls Church, VA 22042-3004

_______________________________________________
RAM mailing list
RAM at iab.org
https://www1.ietf.org/mailman/listinfo/ram

References:
- Re: [RAM] Tunnelling Route Reduction Protocol
  - From: Noel Chiappa

Prev by Date: Re: [RAM] Tunnelling Route Reduction Protocol
Next by Date: [RAM] How to avoid black-hole in LISP-CONS with aggregation mechanism?
Previous by thread: Re: [RAM] Tunnelling Route Reduction Protocol
Next by thread: [RAM] How to avoid black-hole in LISP-CONS with aggregation mechanism?
Index(es):
- Date
- Thread