Re: [DMM] Stephen Farrell's Discuss on draft-ietf-dmm-hnprenum-06: (with DISCUSS and COMMENT)
Stephen Farrell <stephen.farrell@cs.tcd.ie> Thu, 02 March 2017 16:46 UTC
Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: dmm@ietfa.amsl.com
Delivered-To: dmm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2C4A612956C; Thu, 2 Mar 2017 08:46:45 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.302
X-Spam-Level:
X-Spam-Status: No, score=-4.302 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id R8YTlOmPcaEA; Thu, 2 Mar 2017 08:46:43 -0800 (PST)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E22521294E3; Thu, 2 Mar 2017 08:46:42 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 1B33EBEEA; Thu, 2 Mar 2017 16:46:40 +0000 (GMT)
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JpSDIJ2FecwJ; Thu, 2 Mar 2017 16:46:39 +0000 (GMT)
Received: from [134.226.36.93] (bilbo.dsg.cs.tcd.ie [134.226.36.93]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id 881CCBED5; Thu, 2 Mar 2017 16:46:39 +0000 (GMT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; s=mail; t=1488473199; bh=nEeZgzr94AosFRKg7d6cNZHmDL0CaFqA0XmjuV2QEt0=; h=Subject:To:References:Cc:From:Date:In-Reply-To:From; b=1ucOt3GmgIIB3JsTTL43tqQCafc7vie11uSvZqgfwBJASxSVnM01D/UgFUSOC44Lq 5aHYI7yzT7H5Fsq9RegeChJxnsVwzN6LtpbRYmm4l9eaangLO9+FvaoNuMUwsIQ6z2 aBUFEVqSymTnQG3KtER68nOZK3QGPXX7/AyVPqmU=
To: "Sri Gundavelli (sgundave)" <sgundave@cisco.com>, Suresh Krishnan <suresh.krishnan@ericsson.com>
References: <148827524557.30763.8868773089488417428.idtracker@ietfa.amsl.com> <D3B52B6E-2196-45C2-BF4C-5A6E004421FB@ericsson.com> <D4DD871A.25F4B8%sgundave@cisco.com>
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Openpgp: id=D66EA7906F0B897FB2E97D582F3C8736805F8DA2; url=
Message-ID: <cf8b7bf2-eba1-5928-1669-dea83434c60c@cs.tcd.ie>
Date: Thu, 02 Mar 2017 16:46:38 +0000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.7.0
MIME-Version: 1.0
In-Reply-To: <D4DD871A.25F4B8%sgundave@cisco.com>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="SXBcEIX8p2PWRdVFRMPUdowTXMr6PkeNM"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmm/uDCqd5_KNxl9-ogGyK4R-4qF0Kw>
Cc: "draft-ietf-dmm-hnprenum@ietf.org" <draft-ietf-dmm-hnprenum@ietf.org>, "dmm-chairs@ietf.org" <dmm-chairs@ietf.org>, The IESG <iesg@ietf.org>, "dmm@ietf.org" <dmm@ietf.org>, "max.ldp@alibaba-inc.com" <max.ldp@alibaba-inc.com>
Subject: Re: [DMM] Stephen Farrell's Discuss on draft-ietf-dmm-hnprenum-06: (with DISCUSS and COMMENT)
X-BeenThere: dmm@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Distributed Mobility Management Working Group <dmm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmm>, <mailto:dmm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmm/>
List-Post: <mailto:dmm@ietf.org>
List-Help: <mailto:dmm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmm>, <mailto:dmm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Mar 2017 16:46:45 -0000
Excellent thanks for confirming. I'll clear the discuss and leave it to you/Suresh to add the pointer or whatever, Thanks, S. On 02/03/17 16:43, Sri Gundavelli (sgundave) wrote: > > The trigger for Prefix Renumbering is through the use of RFC7077 UPN/UPA > message with the Notification Reason code of 2 (defined in RFC7077). > Technically, the spec is not defining any new messages, or mobility > options; its just using what is defined in RFC7077 and with a new behavior > on the protocol peer. This automatically enforces RFC5213/RFC7077 security > considerations and I do not see a way around. But, for highlighting those > rules, either duplicating the text from 5213/7077, or pointing to those > sections is fine. > > > Sri > > > > > On 3/2/17, 7:02 AM, "Suresh Krishnan" <suresh.krishnan@ericsson.com> wrote: > >> Hi Stephen, >> >>> On Feb 28, 2017, at 4:47 AM, Stephen Farrell >>> <stephen.farrell@cs.tcd.ie> wrote: >>> >>> Stephen Farrell has entered the following ballot position for >>> draft-ietf-dmm-hnprenum-06: Discuss >>> >>> When responding, please keep the subject line intact and reply to all >>> email addresses included in the To and CC lines. (Feel free to cut this >>> introductory paragraph, however.) >>> >>> >>> Please refer to >>> https://www.ietf.org/iesg/statement/discuss-criteria.html >>> for more information about IESG DISCUSS and COMMENT positions. >>> >>> >>> The document, along with other ballot positions, can be found here: >>> https://datatracker.ietf.org/doc/draft-ietf-dmm-hnprenum/ >>> >>> >>> >>> ---------------------------------------------------------------------- >>> DISCUSS: >>> ---------------------------------------------------------------------- >>> >>> >>> I think this should be an easy one to resolve: >>> >>> Section 7 says: "The protection of UPN and UPA >>> messages in this document follows [RFC5213] and >>> [RFC7077]." I'm not clear if "follows" means the same >>> as "MUST be protected using end-to-end security >>> association(s) offering integrity and data origin >>> authentication" (RFC5213, section 4). I think it ought >>> really, as otherwise this could subvert the security >>> of PMIPv6. So wouldn't it make sense to be explicit >>> that these new messages have the same MUST >>> requirements as binding updates. Doing that by >>> repeating the quoted text from 5213 would be a fine >>> way to do that, but there may be better options. >> >> I had already read the text as requiring the same requirements as PBUs. I >> do not have any objections to adding further clarity. Authors, any >> opinions? >> >> Thanks >> Suresh >
- [DMM] Stephen Farrell's Discuss on draft-ietf-dmm… Stephen Farrell
- Re: [DMM] Stephen Farrell's Discuss on draft-ietf… Suresh Krishnan
- Re: [DMM] Stephen Farrell's Discuss on draft-ietf… Sri Gundavelli (sgundave)
- Re: [DMM] Stephen Farrell's Discuss on draft-ietf… Stephen Farrell