[Dime] unexpected consequence of deprecating E2E security in RFC 3588 bis
<dieter.jacobsohn@telekom.de> Tue, 02 October 2012 10:40 UTC
Return-Path: <dieter.jacobsohn@telekom.de>
X-Original-To: dime@ietfa.amsl.com
Delivered-To: dime@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6062621F8B15 for <dime@ietfa.amsl.com>; Tue, 2 Oct 2012 03:40:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.249
X-Spam-Level:
X-Spam-Status: No, score=-3.249 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HELO_EQ_DE=0.35, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6avhBSvef8g4 for <dime@ietfa.amsl.com>; Tue, 2 Oct 2012 03:40:30 -0700 (PDT)
Received: from tcmail83.telekom.de (tcmail83.telekom.de [62.225.183.131]) by ietfa.amsl.com (Postfix) with ESMTP id 40B2E21F8B1E for <dime@ietf.org>; Tue, 2 Oct 2012 03:40:30 -0700 (PDT)
Received: from he113470.emea1.cds.t-internal.com ([10.134.93.128]) by tcmail81.telekom.de with ESMTP/TLS/AES128-SHA; 02 Oct 2012 12:40:27 +0200
Received: from HE113456.emea1.cds.t-internal.com ([169.254.3.121]) by HE113470.emea1.cds.t-internal.com ([::1]) with mapi; Tue, 2 Oct 2012 12:40:27 +0200
From: dieter.jacobsohn@telekom.de
To: stephen.farrell@cs.tcd.ie, lionel.morand@orange.com
Date: Tue, 02 Oct 2012 12:40:27 +0200
Thread-Topic: [Dime] unexpected consequence of deprecating E2E security in RFC 3588 bis
Thread-Index: Ac2fEj5qIUyjgkHeRN2PlIhMMiVTugBd9bOA
Message-ID: <1836CE1BA4F81F46921CA0334F7E4274583132FE03@HE113456.emea1.cds.t-internal.com>
References: <5062DD0C.2080300@gmail.com> <27169_1348684002_506348E2_27169_14408_1_6B7134B31289DC4FAF731D844122B36E074A1A@PEXCVZYM13.corporate.adroot.infra.ftgroup> <5063CEC3.9080305@gmail.com> <1836CE1BA4F81F46921CA0334F7E4274583123AEA0@HE113456.emea1.cds.t-internal.com> <5064329D.40203@gmail.com> <20096_1348913297_5066C891_20096_2169_1_6B7134B31289DC4FAF731D844122B36E0758C4@PEXCVZYM13.corporate.adroot.infra.ftgroup> <5066CB47.1070807@gmail.com> <19603_1348915144_5066CFC8_19603_1305_1_6B7134B31289DC4FAF731D844122B36E0758E2@PEXCVZYM13.corporate.adroot.infra.ftgroup>, <5066EA99.3020801@gmail.com> <26184_1349003712_506829C0_26184_9758_1_tTKzDPgZM1TV@TJw0VVKN> <50684D98.8010400@cs.tcd.ie>
In-Reply-To: <50684D98.8010400@cs.tcd.ie>
Accept-Language: en-US, de-DE
Content-Language: de-DE
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US, de-DE
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: draft-ietf-dime-rfc3588bis@tools.ietf.org, Stefan.Schroeder06@telekom.de, dime@ietf.org, turners@ieca.com
Subject: [Dime] unexpected consequence of deprecating E2E security in RFC 3588 bis
X-BeenThere: dime@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Diameter Maintanence and Extentions Working Group <dime.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dime>, <mailto:dime-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dime>
List-Post: <mailto:dime@ietf.org>
List-Help: <mailto:dime-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dime>, <mailto:dime-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 Oct 2012 10:40:31 -0000
Hello all a question for me is also what exactly do we mean by: > "MUST NOT be sent via intermediate nodes unless there is end-to-end > security between the originator and recipient " Which kind of e2e security? There is no such thing in Diameter right now, or did I miss something? We can only do e2e security by hop-by-hop security (IPsec or TLS), if there is NO intermediate (Diameter) node. So, either we have e2e security, then there is no intermediate node - or we have intermediate nodes, then there can't be e2e security. Best regards Dieter Jacobsohn Deutsche Telekom AG Group Technology Dieter Jacobsohn Landgrabenweg 151, 53227 Bonn +49 228 936-18445 (Tel.) +49 391 5801 46624 (Fax) +49 171 2088 710 (Mobil) E-Mail: dieter.jacobsohn@telekom.de www.telekom.com Erleben, was verbindet. Deutsche Telekom AG Aufsichtsrat: Prof. Dr. Ulrich Lehner (Vorsitzender) Vorstand: René Obermann (Vorsitzender), Dr. Manfred Balz, Reinhard Clemens, Niek Jan van Damme, Timotheus Höttges, Claudia Nemat, Prof. Dr. Marion Schick Handelsregister: Amtsgericht Bonn HRB 6794 Sitz der Gesellschaft Bonn USt-IdNr. DE 123475223 Große Veränderungen fangen klein an - Ressourcen schonen und nicht jede E-Mail drucken.
- [Dime] unexpected consequence of deprecating E2E … Glen Zorn
- Re: [Dime] unexpected consequence of deprecating … lionel.morand
- Re: [Dime] unexpected consequence of deprecating … Glen Zorn
- Re: [Dime] unexpected consequence of deprecating … dieter.jacobsohn
- Re: [Dime] unexpected consequence of deprecating … Glen Zorn
- Re: [Dime] unexpected consequence of deprecating … lionel.morand
- Re: [Dime] unexpected consequence of deprecating … Glen Zorn
- Re: [Dime] unexpected consequence of deprecating … lionel.morand
- Re: [Dime] unexpected consequence of deprecating … Glen Zorn
- [Dime] RE : Re: AW: unexpected consequence of dep… lionel.morand
- Re: [Dime] RE : Re: AW: unexpected consequence of… Stephen Farrell
- Re: [Dime] RE : Re: AW: unexpected consequence of… Glen Zorn
- Re: [Dime] RE : Re: AW: unexpected consequence of… Glen Zorn
- Re: [Dime] RE : Re: AW: unexpected consequence of… dieter.jacobsohn
- [Dime] unexpected consequence of deprecating E2E … dieter.jacobsohn
- Re: [Dime] unexpected consequence of deprecating … jouni korhonen