Protocol Action: 'Distributing a Symmetric FMIPv6 Handover Key using SEND' to Proposed Standard
The IESG <iesg-secretary@ietf.org> Mon, 19 November 2007 21:18 UTC
Return-path: <ietf-announce-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1IuE0r-0004hJ-Ej; Mon, 19 Nov 2007 16:18:37 -0500
Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1IuE0p-0004gP-88; Mon, 19 Nov 2007 16:18:35 -0500
Received: from ns4.neustar.com ([156.154.24.139]) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1IuE0o-0003Nu-TM; Mon, 19 Nov 2007 16:18:35 -0500
Received: from stiedprstage1.ietf.org (stiedprstage1.va.neustar.com [10.31.47.10]) by ns4.neustar.com (Postfix) with ESMTP id C5CBC2AC3F; Mon, 19 Nov 2007 21:18:34 +0000 (GMT)
Received: from ietf by stiedprstage1.ietf.org with local (Exim 4.43) id 1IuE0o-0006em-Ic; Mon, 19 Nov 2007 16:18:34 -0500
X-test-idtracker: no
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Message-Id: <E1IuE0o-0006em-Ic@stiedprstage1.ietf.org>
Date: Mon, 19 Nov 2007 16:18:34 -0500
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 0a7aa2e6e558383d84476dc338324fab
Cc: mipshop mailing list <mipshop@ietf.org>, Internet Architecture Board <iab@iab.org>, mipshop chair <mipshop-chairs@tools.ietf.org>, RFC Editor <rfc-editor@rfc-editor.org>
Subject: Protocol Action: 'Distributing a Symmetric FMIPv6 Handover Key using SEND' to Proposed Standard
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: ietf-announce.ietf.org
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
Errors-To: ietf-announce-bounces@ietf.org
The IESG has approved the following document: - 'Distributing a Symmetric FMIPv6 Handover Key using SEND ' <draft-ietf-mipshop-handover-key-03.txt> as a Proposed Standard This document is the product of the Mobility for IP: Performance, Signaling and Handoff Optimization Working Group. The IESG contact persons are Jari Arkko and Mark Townsley. A URL of this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-mipshop-handover-key-03.txt Technical Summary Fast Mobile IPv6 requires that a Fast Binding Update is secured using a security association shared between an Access Router and a Mobile Node in order to avoid certain attacks. In this document, a method for provisioning a shared key from the Access Router to the Mobile Node is defined to protect this signaling. The key exchange messages are required to have SEND security; that is, the source address is a CGA and the messages are signed using the CGA private key of the sending node. Working Group Summary This is a product of the MIPSHOP WG. Document Quality There are no known implementations of the proposed protocol. The quality of the document is good. Jari Arkko has reviewed this specification for the IESG. The specification has also been reviewed by MDIR. Note to RFC Editor Please make the following change: OLD: The AR MUST use the CGA constructed from its certified key as the source address for the PrRtAdv and include a SEND CGA Option and a SEND Signature Option with the SEND signature of the message. NEW: The AR MUST have a certificate suitable for a SEND-capable router, support SEND certificate discovery, and include a SEND CGA Option and a SEND Signature Option in the PrRtAdv messages it sends. Similarly, the mobile nodes MUST be configured with one or more SEND trust anchors so that they can verify these messages. Also, please expand CGA (Cryptographically Generated Address) and MAC acronyms on the first occurence. The second author's affiliation and e-mail address should be changed to Rajeev.Koodli@nsn.com (Nokia Siemens Networks) _______________________________________________ IETF-Announce mailing list IETF-Announce@ietf.org https://www1.ietf.org/mailman/listinfo/ietf-announce