[Hipsec] Fwd: I-D Action: draft-ietf-hip-rfc5201-bis-06.txt

Tobias Heer <heer@cs.rwth-aachen.de> Sat, 09 July 2011 15:23 UTC

Return-Path: <heer@informatik.rwth-aachen.de>
X-Original-To: hipsec@ietfa.amsl.com
Delivered-To: hipsec@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id 1086721F87D5 for <hipsec@ietfa.amsl.com>; Sat, 9 Jul 2011 08:23:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.801
X-Spam-Status: No, score=-4.801 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HELO_EQ_DE=0.35, HELO_MISMATCH_DE=1.448, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id Ksa0hLBjdXMC for <hipsec@ietfa.amsl.com>; Sat, 9 Jul 2011 08:23:56 -0700 (PDT)
Received: from mta-1.ms.rz.rwth-aachen.de (mta-1.ms.rz.RWTH-Aachen.DE []) by ietfa.amsl.com (Postfix) with ESMTP id 19B2021F87E2 for <hipsec@ietf.org>; Sat, 9 Jul 2011 08:23:56 -0700 (PDT)
MIME-version: 1.0
Content-transfer-encoding: 7bit
Content-type: text/plain; charset="us-ascii"
Received: from ironport-out-1.rz.rwth-aachen.de ([]) by mta-1.ms.rz.RWTH-Aachen.de (Sun Java(tm) System Messaging Server 6.3-7.04 (built Sep 26 2008)) with ESMTP id <0LO200B8WO3UNM80@mta-1.ms.rz.RWTH-Aachen.de> for hipsec@ietf.org; Sat, 09 Jul 2011 17:23:54 +0200 (CEST)
X-IronPort-AV: E=Sophos;i="4.65,504,1304287200"; d="scan'208";a="123969219"
Received: from relay-auth-1.ms.rz.rwth-aachen.de (HELO relay-auth-1) ([]) by ironport-in-1.rz.rwth-aachen.de with ESMTP; Sat, 09 Jul 2011 17:23:55 +0200
Received: from [] ([unknown] []) by relay-auth-1.ms.rz.rwth-aachen.de (Sun Java(tm) System Messaging Server 7.0-3.01 64bit (built Dec 9 2008)) with ESMTPA id <0LO200K1AO3Q1K10@relay-auth-1.ms.rz.rwth-aachen.de> for hipsec@ietf.org; Sat, 09 Jul 2011 17:23:54 +0200 (CEST)
From: Tobias Heer <heer@cs.rwth-aachen.de>
Date: Sat, 09 Jul 2011 17:23:51 +0200
References: <20110709152108.20918.37003.idtracker@ietfa.amsl.com>
To: HIP <hipsec@ietf.org>
Message-id: <E69F5431-9548-4AB8-82CB-D674F7E23E6F@cs.rwth-aachen.de>
X-Mailer: Apple Mail (2.1084)
Subject: [Hipsec] Fwd: I-D Action: draft-ietf-hip-rfc5201-bis-06.txt
X-BeenThere: hipsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "This is the official IETF Mailing List for the HIP Working Group." <hipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/hipsec>, <mailto:hipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hipsec>
List-Post: <mailto:hipsec@ietf.org>
List-Help: <mailto:hipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 09 Jul 2011 15:23:57 -0000

Hi everyone, 

we just pushed a new version of RFC5201-bis. See the changelog below for details.

11.1.  Changes from draft-ietf-hip-rfc5201-bis-05

   o  Changed type number of DH_GROUP_LIST from 2151 to 511 because it
      was in the number space that is reserved for the HIP transport
      mode negotiations.

   o  Added transport form type list parameter.  Transport forms are now
      negotiated with this list instead of by their order in the HIP
      packet.  This allows to remove the exception of the transport
      format parameters that were ordered by their preference instead of
      by their type number.  This should remove complexity from

   o  Clarify that in HIP signature processing, the restored checksum
      and length fields have been rendered invalid by the previous

   o  Clarify behavior for when UPDATE does not contain SEQ or ACQ
      (disallow this).

   o  For namespace changes, changed "IETF Review" to "IETF Review or
      IESG Approval".

   o  Addressed IESG comment about ignoring packet IP addresses.

   o  Permit using Anonymous HI control in packets other than R1/I2.

   o  Fixed minor reference error (RFC2418, RFC2410).

   o  Deleted comment that NULL-ENCRYPTION SHOULD NOT be configurable
      via the UI.

   o  Editorial changes.



Anfang der weitergeleiteten E-Mail:

> Von: internet-drafts@ietf.org
> Datum: 9. Juli 2011 17:21:08 MESZ
> An: i-d-announce@ietf.org
> Kopie: hipsec@ietf.org
> Betreff: [Hipsec] I-D Action: draft-ietf-hip-rfc5201-bis-06.txt
> A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Host Identity Protocol Working Group of the IETF.
> 	Title           : Host Identity Protocol Version 2 (HIPv2)
> 	Author(s)       : Robert Moskowitz
>                          Tobias Heer
>                          Petri Jokela
>                          Thomas R. Henderson
> 	Filename        : draft-ietf-hip-rfc5201-bis-06.txt
> 	Pages           : 123
> 	Date            : 2011-07-09
>   This document specifies the details of the Host Identity Protocol
>   (HIP).  HIP allows consenting hosts to securely establish and
>   maintain shared IP-layer state, allowing separation of the identifier
>   and locator roles of IP addresses, thereby enabling continuity of
>   communications across IP address changes.  HIP is based on a SIGMA-
>   compliant Diffie-Hellman key exchange, using public key identifiers
>   from a new Host Identity namespace for mutual peer authentication.
>   The protocol is designed to be resistant to denial-of-service (DoS)
>   and man-in-the-middle (MitM) attacks.  When used together with
>   another suitable security protocol, such as the Encapsulated Security
>   Payload (ESP), it provides integrity protection and optional
>   encryption for upper-layer protocols, such as TCP and UDP.
>   This document obsoletes RFC 5201 and addresses the concerns raised by
>   the IESG, particularly that of crypto agility.  It also incorporates
>   lessons learned from the implementations of RFC 5201.
> A URL for this Internet-Draft is:
> http://www.ietf.org/internet-drafts/draft-ietf-hip-rfc5201-bis-06.txt
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
> This Internet-Draft can be retrieved at:
> ftp://ftp.ietf.org/internet-drafts/draft-ietf-hip-rfc5201-bis-06.txt
> _______________________________________________
> Hipsec mailing list
> Hipsec@ietf.org
> https://www.ietf.org/mailman/listinfo/hipsec

Dipl.-Inform. Tobias Heer, Ph.D. Student
Chair of Communication and Distributed Systems - comsys
RWTH Aachen University, Germany
tel: +49 241 80 207 76
web: http://www.comsys.rwth-aachen.de/team/tobias-heer/
blog: http://dtobi.wordpress.com/
card: http://card.ly/dtobi
pgp id: AEECA5BF