Re: [Hipsec] Protocol Action: 'Host Identity Protocol Version 2 (HIPv2)' to Proposed Standard (draft-ietf-hip-rfc5201-bis-19.txt)
Andrei Gurtov <gurtov@cs.helsinki.fi> Thu, 16 October 2014 15:03 UTC
Return-Path: <gurtov@cs.helsinki.fi>
X-Original-To: hipsec@ietfa.amsl.com
Delivered-To: hipsec@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3DDBF1A1B9B for <hipsec@ietfa.amsl.com>; Thu, 16 Oct 2014 08:03:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.012
X-Spam-Level:
X-Spam-Status: No, score=-2.012 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JVE2aEVxkMkT for <hipsec@ietfa.amsl.com>; Thu, 16 Oct 2014 08:03:05 -0700 (PDT)
Received: from script.cs.helsinki.fi (script.cs.helsinki.fi [128.214.11.1]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 749A51A1B2B for <hipsec@ietf.org>; Thu, 16 Oct 2014 08:03:05 -0700 (PDT)
X-DKIM: Courier DKIM Filter v0.50+pk-2014-03-23 mail.cs.helsinki.fi Thu, 16 Oct 2014 18:03:00 +0300
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cs.helsinki.fi; h=message-id:date:from:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; s= dkim20130528; bh=z8yoJ+Uu7bR1cpYh5iQFclQOjl8+5dsD90zN9fPQtRM=; b= cZvd4/4ztYdSE6UIIaVv8Luk1PqqmVSBtrbKuw+qFntEMQAftRNtM2+iveg5C1rC Wo6j9U4aliMY13rtsjXez4d+yVYq9mrRQ2kkrBVe/3wZMHKpAJ6AnOeTwgGYZm3d fd7VHQ+Q6D7wVzuKfy0yyPKhfV3ECXlmKABZpLQrZJM=
Received: from [128.214.114.200] (karvia.pc.hiit.fi [128.214.114.200]) (AUTH: PLAIN gurtov, SSL: TLSv1/SSLv3,128bits,AES128-SHA) by mail.cs.helsinki.fi with ESMTPSA; Thu, 16 Oct 2014 18:03:00 +0300 id 00000000000804C5.00000000543FDE24.00003706
Message-ID: <543FFA44.7030308@cs.helsinki.fi>
Date: Thu, 16 Oct 2014 18:03:00 +0100
From: Andrei Gurtov <gurtov@cs.helsinki.fi>
User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:31.0) Gecko/20100101 Thunderbird/31.1.2
MIME-Version: 1.0
To: hipsec@ietf.org
References: <20140924202921.8538.79704.idtracker@ietfa.amsl.com>
In-Reply-To: <20140924202921.8538.79704.idtracker@ietfa.amsl.com>
Content-Type: text/plain; charset="windows-1252"
Content-Transfer-Encoding: 7bit
Archived-At: http://mailarchive.ietf.org/arch/msg/hipsec/dYe34rZWChIlCzqpDt8dm4-12Gg
Subject: Re: [Hipsec] Protocol Action: 'Host Identity Protocol Version 2 (HIPv2)' to Proposed Standard (draft-ietf-hip-rfc5201-bis-19.txt)
X-BeenThere: hipsec@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the official IETF Mailing List for the HIP Working Group." <hipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/hipsec>, <mailto:hipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hipsec/>
List-Post: <mailto:hipsec@ietf.org>
List-Help: <mailto:hipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Oct 2014 15:03:08 -0000
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello, Congratulations, that's a nice achievement! Are there HIP implementations already that support those latest specs? Btw, some recent HIP-related papers e.g. on SDN can be found here http://www.cs.helsinki.fi/u/gurtov/papers/ br Andrei On 24/09/2014 21:29, The IESG wrote: > The IESG has approved the following document: - 'Host Identity > Protocol Version 2 (HIPv2)' (draft-ietf-hip-rfc5201-bis-19.txt) as > Proposed Standard > > This document is the product of the Host Identity Protocol Working > Group. > > The IESG contact persons are Ted Lemon and Brian Haberman. > > A URL of this Internet Draft is: > http://datatracker.ietf.org/doc/draft-ietf-hip-rfc5201-bis/ > > > > > Technical Summary: > > This document specifies the details of the Host Identity Protocol > (HIP). HIP allows consenting hosts to securely establish and > maintain shared IP-layer state, allowing separation of the > identifier and locator roles of IP addresses, thereby enabling > continuity of communications across IP address changes. HIP is > based on a SIGMA- compliant Diffie-Hellman key exchange, using > public key identifiers from a new Host Identity namespace for > mutual peer authentication. The protocol is designed to be > resistant to denial-of-service (DoS) and man-in-the-middle (MitM) > attacks. When used together with another suitable security > protocol, such as the Encapsulated Security Payload (ESP), it > provides integrity protection and optional encryption for > upper-layer protocols, such as TCP and UDP. > > This document obsoletes RFC 5201 and addresses the concerns raised > by the IESG, particularly that of crypto agility. It also > incorporates lessons learned from the implementations of RFC 5201. > > > Working Group Summary: > > There is full consensus behind this document. > > Document Quality: > > As discussed in RFC 6538, there are several implementations of the > Experimental HIP specs. At least HIP for Linux and OpenHIP will be > updated to comply with the standards-track specs. > > Personnel: > > Gonzalo Camarillo is the document shepherd. Ted Lemon is the > responsible AD. > > _______________________________________________ Hipsec mailing > list Hipsec@ietf.org https://www.ietf.org/mailman/listinfo/hipsec > -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iEYEARECAAYFAlQ/+kQACgkQP7jp0uceFkTXVwCfQ87tFpiCKZuyCEoaT2xFPfrR 5rIAnAgxnUfWvAC++VwnuOWredf7o5+t =oJIn -----END PGP SIGNATURE-----