[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [rddp] Terminate message a security threat?

To: RDDP <rddp at ietf.org>
Subject: Re: [rddp] Terminate message a security threat?
From: "Mallikarjun C." <cbm at rose.hp.com>
Date: Wed, 05 Jan 2005 09:43:19 -0800
In-reply-to: <6.2.0.14.2.20050104111525.020af990@esmail.cup.hp.com>
List-help: <mailto:rddp-request@ietf.org?subject=help>
List-id: "IETF Remote Direct Data Placement \(rddp\) WG" <rddp.ietf.org>
List-post: <mailto:rddp@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/rddp>, <mailto:rddp-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/rddp>, <mailto:rddp-request@ietf.org?subject=unsubscribe>
References: <E6564B8F86852D46A4E98C485FB33B8F0B7EDC19@WIN-MSG-10.wingroup.windeploy.ntdev.microsoft.com> <6.2.0.14.2.20050104111525.020af990@esmail.cup.hp.com>
Sender: rddp-bounces at ietf.org
User-agent: Mozilla Thunderbird 0.9 (Windows/20041103)

Thanks Jim for patiently working through all the comments.

The note I wrote to Jim was:

"It may be worth dealing with for two reasons - (1) Terminate has a role in DoS attacks, (2) the current description of DDP/RDMAP message processing is seemingly comprehensive but is not due to the exclusion of Terminate."

Wrt #1 above, it so far appears that the WG believes that Terminate is not any worse than other security threats that were discussed. I can go with this, some new text (summarizing the sentiments on this thread) & to address #2 might still be appropriate. However, I will leave it to the authors at this point, I expect to be slow in responding to emails for the next 2 weeks.

Mallikarjun

Mallikarjun Chadalapaka
Networked Storage Architecture
Network Storage Solutions
Hewlett-Packard MS 5668
Roseville CA 95747
cbm [at] rose.hp.com

Michael Krause wrote:

At 06:12 AM 1/4/2005, Jim Pinkerton wrote:
Content-class: urn:content-classes:message
Content-Type: multipart/alternative;
         boundary="----_=_NextPart_001_01C4F267.6FD91653"
To date the security ID doesn’t discuss the Terminate Message. It was suggested to me by Mallikarjun as part of his detailed review that since all other messages are discussed, shouldn’t Terminate be? In thinking this through, I don’t believe this represents any new attacks. If the Remote Peer is sending you a Terminate Message, then that ½ of the Stream is terminated. So he just clobbered himself, but hasn’t been able to affect any other connections – thus this is not a security issue. If a third party is able to inject a Terminate Message into the data stream, then it is a spoofing attack. The spoofing attack and mitigations are already discussed. So I think at best the Terminate Message could be added as an example of a spoofing attack, but honestly there are a ton of things the spoofer could do, so I’m not sure I’d revise the draft just to add another example. Does anyone see a hole in my reasoning?
I do not see this as a security threat - at best, just another example of existing issues that should be examined in any robust design.
Mike
Jim _______________________________________________ rddp mailing list rddp at ietf.org https://www1.ietf.org/mailman/listinfo/rddp
------------------------------------------------------------------------
_______________________________________________
rddp mailing list
rddp at ietf.org
https://www1.ietf.org/mailman/listinfo/rddp

_______________________________________________
rddp mailing list
rddp at ietf.org
https://www1.ietf.org/mailman/listinfo/rddp

References:
- [rddp] Terminate message a security threat?
  - From: Jim Pinkerton
- Re: [rddp] Terminate message a security threat?
  - From: Michael Krause

Prev by Date: RE: [rddp] Question on RDMAP Spec
Next by Date: [no subject]
Previous by thread: Re: [rddp] Terminate message a security threat?
Next by thread: RE: [rddp] Terminate message a security threat?
Index(es):
- Date
- Thread