Re: [hiprg] comments on draft-irtf-hiprg-revocation-01.txt
zhangdacheng 00133208 <zhangdacheng@huawei.com> Mon, 08 November 2010 07:45 UTC
Return-Path: <zhangdacheng@huawei.com>
X-Original-To: hiprg@core3.amsl.com
Delivered-To: hiprg@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 665FE3A67FD for <hiprg@core3.amsl.com>; Sun, 7 Nov 2010 23:45:39 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.604
X-Spam-Level:
X-Spam-Status: No, score=0.604 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FH_RELAY_NODNS=1.451, HELO_MISMATCH_COM=0.553, MIME_8BIT_HEADER=0.3, RDNS_NONE=0.1, SARE_SUB_RAND_LETTRS4=0.799]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MYLDDTcomqrK for <hiprg@core3.amsl.com>; Sun, 7 Nov 2010 23:45:38 -0800 (PST)
Received: from szxga04-in.huawei.com (unknown [119.145.14.67]) by core3.amsl.com (Postfix) with ESMTP id 89B333A67FA for <hiprg@irtf.org>; Sun, 7 Nov 2010 23:45:38 -0800 (PST)
Received: from huawei.com (szxga04-in [172.24.2.12]) by szxga04-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTP id <0LBK0053I2S63A@szxga04-in.huawei.com> for hiprg@irtf.org; Mon, 08 Nov 2010 15:43:18 +0800 (CST)
Received: from huawei.com ([172.24.2.119]) by szxga04-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTP id <0LBK00I292S4LU@szxga04-in.huawei.com> for hiprg@irtf.org; Mon, 08 Nov 2010 15:43:17 +0800 (CST)
Received: from [172.24.1.6] (Forwarded-For: [130.129.116.202]) by szxmc04-in.huawei.com (mshttpd); Mon, 08 Nov 2010 15:43:16 +0800
Date: Mon, 08 Nov 2010 15:43:16 +0800
From: zhangdacheng 00133208 <zhangdacheng@huawei.com>
In-reply-to: <50C6BB14-D32E-42CB-89CF-72BA0D576C6D@cs.rwth-aachen.de>
To: Ren=?gb2312?B?qKY=?= Hummen <rene.hummen@cs.rwth-aachen.de>
Message-id: <fb97c421c423.c423fb97c421@huawei.com>
MIME-version: 1.0
X-Mailer: iPlanet Messenger Express 5.2 HotFix 2.14 (built Aug 8 2006)
Content-type: text/plain; charset="gb2312"
Content-language: zh-CN
Content-transfer-encoding: quoted-printable
Content-disposition: inline
X-Accept-Language: zh-CN
Priority: normal
References: <20101025021501.884C63A6931@core3.amsl.com> <7CC566635CFE364D87DC5803D4712A6C4CEC451AAE@XCH-NW-10V.nw.nos.boeing.com> <50C6BB14-D32E-42CB-89CF-72BA0D576C6D@cs.rwth-aachen.de>
Cc: hiprg@irtf.org
Subject: Re: [hiprg] comments on draft-irtf-hiprg-revocation-01.txt
X-BeenThere: hiprg@irtf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "Host Identity Protocol \(HIP\) Research Group" <hiprg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/listinfo/hiprg>, <mailto:hiprg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/hiprg>
List-Post: <mailto:hiprg@irtf.org>
List-Help: <mailto:hiprg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/hiprg>, <mailto:hiprg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Mon, 08 Nov 2010 07:45:39 -0000
> > It seems to me that for revocation to work, there must be a > longer-lived name of some sort that persists across the key > change. But in pure HIP, I am not sure what that would be. > > You have a valid point here. Tobias and I recently discovered the > same issue in a bit different context. Motivated by the problem of > needing a stable identifier, I started writing a draft about a > certificate-based namespace for HIP that consists of a descriptive > host identifier, a public key and a binding certificate. Tobias > will hold a short presentation on the ideas during this year's > IETF HIPRG meeting for me. I would be glad to get early feedback > regarding the definition of such a namespace. > > BR, > René Hi, This is a very interesting question. Of coure, it can be addressed by introducing longer-lived names. However, I am not very sure wheither it is desired to introduce such a namespace in HIP. I suppose there should be mechanism which is able to provide mapping service from the antique HIT to the latest HIT used by hosts. This function can be implemented in RVS for example. Hope to get more comments from the group. BRs Dacheng
- [hiprg] comments on draft-irtf-hiprg-revocation-0… Henderson, Thomas R
- Re: [hiprg] comments on draft-irtf-hiprg-revocati… René Hummen
- Re: [hiprg] comments on draft-irtf-hiprg-revocati… zhangdacheng 00133208