I-D Action: draft-nslag-mpls-deprecate-md5-01.txt
internet-drafts@ietf.org Fri, 02 March 2018 05:10 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: i-d-announce@ietf.org
Delivered-To: i-d-announce@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 54B0E120454 for <i-d-announce@ietf.org>; Thu, 1 Mar 2018 21:10:37 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Subject: I-D Action: draft-nslag-mpls-deprecate-md5-01.txt
X-Test-IDTracker: no
X-IETF-IDTracker: 6.73.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <151996743728.15731.12088029525500619905@ietfa.amsl.com>
Date: Thu, 01 Mar 2018 21:10:37 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/i-d-announce/Hoby9rqKxRjAZnjSOpNSAkER1yE>
X-BeenThere: i-d-announce@ietf.org
X-Mailman-Version: 2.1.22
List-Id: Internet Draft Announcements only <i-d-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i-d-announce/>
List-Post: <mailto:i-d-announce@ietf.org>
List-Help: <mailto:i-d-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 02 Mar 2018 05:10:37 -0000
A New Internet-Draft is available from the on-line Internet-Drafts directories.
Title : Deprecating MD5 for LDP
Authors : Loa Andersson
Stewart Bryant
Andrew G. Malis
Deutshe Telekom
George Swallow
Filename : draft-nslag-mpls-deprecate-md5-01.txt
Pages : 7
Date : 2018-03-01
Abstract:
When the MPLS Label Distribution Protocol (LDP) was specified circa
1999, there were very strong requirements that LDP should use a
cryptographic hash function to sign LDP protocol messages. MD5 was
widely used at that time, and was the obvious choices.
However, even when this decision was being taken there were concerns
as to whether MD5 was a strong enough signing option. This
discussion was briefly reflected in section 5.1 of RFC 5036 [RFC5036]
(and also in RFC 3036 [RFC3036]).
Over time it has been shown that MD5 can be compromised. Thus, there
is a concern shared in the security community and the working groups
responsible for the development of the LDP protocol that LDP is no
longer adequately secured.
This document deprecates MD5 as the signing method for LDP messages.
The document also selects a future method to secure LDP messages -
the choice is TCP-AO. In addition, we specify that the TBD
cryptographic mechanism is to be the default TCP-AO security method.
The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-nslag-mpls-deprecate-md5/
There are also htmlized versions available at:
https://tools.ietf.org/html/draft-nslag-mpls-deprecate-md5-01
https://datatracker.ietf.org/doc/html/draft-nslag-mpls-deprecate-md5-01
A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-nslag-mpls-deprecate-md5-01
Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.
Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/
- I-D Action: draft-nslag-mpls-deprecate-md5-01.txt internet-drafts