Re: [Dhcpv6bis] Security / Privacy Considerations for draft-ietf-dhc-rfc3315bis
"Bernie Volz (volz)" <volz@cisco.com> Tue, 29 August 2017 01:33 UTC
Return-Path: <volz@cisco.com>
X-Original-To: dhcpv6bis@ietfa.amsl.com
Delivered-To: dhcpv6bis@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 301261321A4 for <dhcpv6bis@ietfa.amsl.com>; Mon, 28 Aug 2017 18:33:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.52
X-Spam-Level:
X-Spam-Status: No, score=-14.52 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vB1zZLsqolgg for <dhcpv6bis@ietfa.amsl.com>; Mon, 28 Aug 2017 18:33:21 -0700 (PDT)
Received: from alln-iport-6.cisco.com (alln-iport-6.cisco.com [173.37.142.93]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 29BC2126BF3 for <dhcpv6bis@ietf.org>; Mon, 28 Aug 2017 18:33:21 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2689; q=dns/txt; s=iport; t=1503970401; x=1505180001; h=from:to:subject:date:message-id:references:in-reply-to: content-transfer-encoding:mime-version; bh=7VrbtSZOo/DDVc+va4CSgHE07cyKk0JA+LC5DyyVa8A=; b=lN/2CBqQ16JYeHydmb5gzBWt1/TpjrSs/vMMlKSnopHv4RFlVihJO0fH 2qFdEuRPEkv9v/NrDhuJGlzxrEIfkxLnDKD/XBlEciTEY2KyAijHGnAIG sYXAL4Micmp4rl29hb0EUXwo17mGpu/tdxyrHrLcJDgU7/cUjlBm+p9p5 w=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0BXAABMw6RZ/5xdJa1aAxkBAQEBAQEBAQEBAQcBAQEBAYNaZIEVjhSQGoFPIpYmgSoFYzCESE8Cg34/GAECAQEBAQEBAWsdC4UYAQEBAQEBAWYYCQICAQgYFBobFyQBAQEEE4opCBCxbItmAQEBAQEBAQEBAQEBAQEBAQEBAQEBGAUFgyWCAoMxKwuCcoMmgUAPISaCfIIxBaBkAodUhyuFRYISG4VLinCWPAEfOE4/dxVbAYI9g3xPdgGLGwEBAQ
X-IronPort-AV: E=Sophos;i="5.41,443,1498521600"; d="scan'208";a="478247598"
Received: from rcdn-core-5.cisco.com ([173.37.93.156]) by alln-iport-6.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 29 Aug 2017 01:33:20 +0000
Received: from XCH-ALN-003.cisco.com (xch-aln-003.cisco.com [173.36.7.13]) by rcdn-core-5.cisco.com (8.14.5/8.14.5) with ESMTP id v7T1XKF4015097 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL) for <dhcpv6bis@ietf.org>; Tue, 29 Aug 2017 01:33:20 GMT
Received: from xch-aln-003.cisco.com (173.36.7.13) by XCH-ALN-003.cisco.com (173.36.7.13) with Microsoft SMTP Server (TLS) id 15.0.1263.5; Mon, 28 Aug 2017 20:33:19 -0500
Received: from xch-aln-003.cisco.com ([173.36.7.13]) by XCH-ALN-003.cisco.com ([173.36.7.13]) with mapi id 15.00.1263.000; Mon, 28 Aug 2017 20:33:19 -0500
From: "Bernie Volz (volz)" <volz@cisco.com>
To: "dhcpv6bis@ietf.org" <dhcpv6bis@ietf.org>
Thread-Topic: Security / Privacy Considerations for draft-ietf-dhc-rfc3315bis
Thread-Index: AdMRRggprtY+yKy3RsqMREz6Q/gSsQAALnZAA8gCUzU=
Date: Tue, 29 Aug 2017 01:33:19 +0000
Message-ID: <6A8CC92B-6254-4396-B954-F00BB5CA386C@cisco.com>
References: <fdb3cc5859474cbb973758f00e073290@XCH-ALN-003.cisco.com>
In-Reply-To: <fdb3cc5859474cbb973758f00e073290@XCH-ALN-003.cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
Content-Type: text/plain; charset="Windows-1252"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/dhcpv6bis/bTGiHzxXR1QCXGCniYLQWt4QzhY>
Subject: Re: [Dhcpv6bis] Security / Privacy Considerations for draft-ietf-dhc-rfc3315bis
X-BeenThere: dhcpv6bis@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "DHCPv6 \(RFC3315\) bis discussion list" <dhcpv6bis.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dhcpv6bis>, <mailto:dhcpv6bis-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dhcpv6bis/>
List-Post: <mailto:dhcpv6bis@ietf.org>
List-Help: <mailto:dhcpv6bis-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcpv6bis>, <mailto:dhcpv6bis-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 29 Aug 2017 01:33:23 -0000
Just a reminder about this meeting on Wednesday. I know Ted reviewed and cleaned up my text a bit -- thanks Ted. See https://docs.google.com/document/d/1sIH0vbaM26zEuOlneTFSB_0TOK56pZKVLlA1R-KelLQ/edit - Bernie (from iPad) > On Aug 9, 2017, at 3:36 PM, Bernie Volz (volz) <volz@cisco.com> wrote: > > Hi: > > This meeting is to discuss the Security/Privacy Considerations for draft-ietf-dhc-rfc3315bis so we can publish the -10 which: > > 1. Removes reference to draft-ietf-dhc-sedhcpv6 > 2. Provides sufficient discussion of why something like sedhcpv6 isn’t needed (to head off the question from the IESG about why DHCPv6 has no security) > > I have drafted an initial proposal at https://docs.google.com/document/d/1sIH0vbaM26zEuOlneTFSB_0TOK56pZKVLlA1R-KelLQ/edit which you should review and definitely feel free to work to improve – I’m not that happy with it as is (new text is mostly at the end). Is there enough there? Should it be organized differently? … > > PLEASE RSVP SO WE CAN MAKE SURE THERE IS SUFFICIENT QUORUM. If you can’t make it, please suggest alternative dates/times. > > - Bernie > > > -- Do not delete or change any of the following text. -- > > > Join me now in my Personal Room. > > Join WebEx meeting > https://cisco.webex.com/join/volz | 207 497 612 > > Join from a video conferencing system or application > Dial volz@cisco.webex.com<sip:volz@cisco.webex.com> > From the Cisco internal network, dial *267* and the 9-digit meeting number. If you are the host, enter your PIN when prompted. > If you are the host, you can also enter your host PIN in your video conferencing system or application to start the meeting. > > Join by phone > +1-408-525-6800 Call-in toll number (US/Canada) > +1-866-432-9903 Call-in toll-free number (US/Canada) > Access code: 207 497 612 > Global call-in numbers<https://cisco.webex.com/cmp3200/webcomponents/widget/globalcallin/globalcallin.do?siteurl=cisco&serviceType=MC&ED=303966212&tollFree=1> | Toll-free calling restrictions<https://www.webex.com/pdf/tollfree_restrictions.pdf> > > Can't join the meeting? Contact support.<https://cisco.webex.com/mc> > > IMPORTANT NOTICE: Please note that this WebEx service allows audio and other information sent during the session to be recorded, which may be discoverable in a legal matter. By joining this session, you automatically consent to such recordings. If you do not consent to being recorded, discuss your concerns with the host or do not join the session. > > > <meeting.ics>
- [Dhcpv6bis] Security / Privacy Considerations for… Bernie Volz (volz)
- Re: [Dhcpv6bis] Security / Privacy Considerations… Bernie Volz (volz)