[Hipsec-rg] New version: draft-heer-hip-middle-auth
heer at cs.rwth-aachen.de (Tobias Heer) Tue, 15 July 2008 08:08 UTC
From: "heer at cs.rwth-aachen.de"
Date: Tue, 15 Jul 2008 10:08:09 +0200
Subject: [Hipsec-rg] New version: draft-heer-hip-middle-auth
Message-ID: <D38895EA-67E7-4ED0-8392-7AC5E63A4824@cs.rwth-aachen.de>
Hi folks, There is a new version of the middle auth draft. Changes since version 00: - New section about security and bindings between HIP and ESP traffic - Rewrite and extension of the discussion of the security properties. - Minor fixes for alignment with the base documents (packet sizes) Abstract: The Host Identity Protocol [RFC2119]is a signaling protocol for secure communication, mobility, and multihoming by introducing a cryptographic namespace. This document specifies an extension for HIP that enables middleboxes to unambiguously verify the identities of hosts that communicate across them. This extension enables middleboxes to verify the liveness and freshness of a HIP association and, thus, enables reliable and secure access control in middleboxes. Comments are very appreciated. The draft can be found here: http://www.ietf.org/internet-drafts/draft-heer-hip-middle-auth-01.txt BR, Tobias Anfang der weitergeleiteten E-Mail: > Von: IETF I-D Submission Tool <idsubmission at ietf.org> > Datum: 7. Juli 2008 16:07:47 MESZ > An: heer at cs.rwth-aachen.de > Kopie: wehrle at cs.rwth-aachen.de, miika at iki.fi > Betreff: New Version Notification for draft-heer-hip-middle-auth-01 > > > A new version of I-D, draft-heer-hip-middle-auth-01.txt has been > successfuly submitted by Tobias Heer and posted to the IETF > repository. > > Filename: draft-heer-hip-middle-auth > Revision: 01 > Title: End-Host Authentication for HIP Middleboxes > Creation_date: 2008-07-07 > WG ID: Independent Submission > Number_of_pages: 22 > > Abstract: > The Host Identity Protocol [RFC2119]is a signaling protocol for > secure communication, mobility, and multihoming by introducing a > cryptographic namespace. This document specifies an extension for > HIP that enables middleboxes to unambiguously verify the identities > of hosts that communicate across them. This extension enables > middleboxes to verify the liveness and freshness of a HIP association > and, thus, enables reliable and secure access control in middleboxes. > > > > The IETF Secretariat. > -- Dipl.-Inform. Tobias Heer, Ph.D. Student Distributed Systems Group RWTH Aachen University, Germany http://ds.cs.rwth-aachen.de/members/heer