RE: [dhcwg] dhc WG last call on draft-ietf-dhc-v4-threat-analysis-02
"Bernie Volz" <volz@cisco.com> Wed, 11 August 2004 22:24 UTC
Received: from megatron.ietf.org (megatron.ietf.org [132.151.6.71]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id SAA26414; Wed, 11 Aug 2004 18:24:26 -0400 (EDT)
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1Bv18i-0007Gw-QL; Wed, 11 Aug 2004 18:00:08 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1Bv0yM-0001rc-4j for dhcwg@megatron.ietf.org; Wed, 11 Aug 2004 17:49:26 -0400
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id RAA21787 for <dhcwg@ietf.org>; Wed, 11 Aug 2004 17:49:23 -0400 (EDT)
Received: from sj-iport-3-in.cisco.com ([171.71.176.72] helo=sj-iport-3.cisco.com) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1Bv139-0004MN-Ht for dhcwg@ietf.org; Wed, 11 Aug 2004 17:54:26 -0400
Received: from sj-core-2.cisco.com (171.71.177.254) by sj-iport-3.cisco.com with ESMTP; 11 Aug 2004 14:52:48 +0000
X-BrightmailFiltered: true
Received: from flask.cisco.com (IDENT:mirapoint@flask.cisco.com [161.44.122.62]) by sj-core-2.cisco.com (8.12.10/8.12.6) with ESMTP id i7BLlYCL009630; Wed, 11 Aug 2004 14:47:40 -0700 (PDT)
Received: from volzw2k ([161.44.65.208]) by flask.cisco.com (MOS 3.4.6-GR) with ESMTP id AKU01460; Wed, 11 Aug 2004 17:48:40 -0400 (EDT)
From: Bernie Volz <volz@cisco.com>
To: 'Ralph Droms' <rdroms@cisco.com>, dhcwg@ietf.org
Subject: RE: [dhcwg] dhc WG last call on draft-ietf-dhc-v4-threat-analysis-02
Date: Wed, 11 Aug 2004 17:48:40 -0400
Organization: Cisco
Message-ID: <002101c47fec$f6df1140$d0412ca1@amer.cisco.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: quoted-printable
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook, Build 10.0.5709
In-Reply-To: <4.3.2.7.2.20040811151653.020898a8@flask.cisco.com>
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4939.300
Importance: Normal
X-Spam-Score: 0.0 (/)
X-Scan-Signature: c0bedb65cce30976f0bf60a0a39edea4
Content-Transfer-Encoding: quoted-printable
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: dhcwg.ietf.org
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
Sender: dhcwg-bounces@ietf.org
Errors-To: dhcwg-bounces@ietf.org
Content-Transfer-Encoding: quoted-printable
I, as one of the authors, fully support this document moving forward. - Bernie > -----Original Message----- > From: dhcwg-bounces@ietf.org [mailto:dhcwg-bounces@ietf.org] > On Behalf Of Ralph Droms > Sent: Wednesday, August 11, 2004 3:18 PM > To: dhcwg@ietf.org > Subject: [dhcwg] dhc WG last call on > draft-ietf-dhc-v4-threat-analysis-02 > > > This message announces a second WG last call on "Dynamic Host > Configuration Protocol for IPv4 (DHCPv4) Threat Analysis" > <draft-ietf-dhc-v4-threat-analysis-02>. There was > insufficient (that is, > none) response to the first WG last call. This document can > not be submitted to the IESG without positive response during > the WG last call. This last call will conclude at 1700 EDT, > 2004-08-27. > > Please respond to this WG last call. If you support > acceptance of the document without change, respond with a > simple acknowledgment, so that support for the document can > be assessed. > > "Dynamic Host Configuration Protocol for IPv4 (DHCPv4) Threat > Analysis" provides a comprehensive threat analysis of the > Dynamic Host Configuration Protocol. DHCPv4 (RFC 2131) is a > stable, widely used protocol for configuration of host > systems in a TCP/IPv4 network. RFC 2131 did not provide for > authentication of clients and servers, nor did it provide for > data confidentiality. This is reflected in the original > "Security Considerations" section of RFC 2131, which > identifies a few threats and leaves development of any > defenses against those threats to future work. Beginning in > about 1995 DHCP security began to attract attention from the > Internet community, eventually resulting in the publication > of RFC 3118 in 2001. Although RFC 3118 was a mandatory > prerequisite for the DHCPv4 Reconfigure Extension, RFC 3203, > it has had no known usage by any commercial or private > implementation since its adoption. The DHC Working Group has > adopted a work item to review and modify or replace RFC 3118 > to afford a workable, easily deployed security mechanism for > DHCPv4. This memo provides a comprehensive threat analysis of > the Dynamic Host Configuration Protocol for use both as RFC > 2131 advances from Draft Standard to Full Standard and to > support our chartered work improving the acceptance and > deployment of RFC 3118. This draft is available as http://www.ietf.org/internet-drafts/draft-ietf-dhc-v4-threat-analysis-02.txt - Ralph Droms _______________________________________________ dhcwg mailing list dhcwg@ietf.org https://www1.ietf.org/mailman/listinfo/dhcwg _______________________________________________ dhcwg mailing list dhcwg@ietf.org https://www1.ietf.org/mailman/listinfo/dhcwg _______________________________________________ dhcwg mailing list dhcwg@ietf.org https://www1.ietf.org/mailman/listinfo/dhcwg
- [dhcwg] dhc WG last call on draft-ietf-dhc-v4-thr… Ralph Droms
- [dhcwg] dhc WG last call on draft-ietf-dhc-v4-thr… Ralph Droms
- RE: [dhcwg] dhc WG last call on draft-ietf-dhc-v4… Bernie Volz