IETF Logo Mail Archive

RE: [Int-area] Re: SeND & CGA Extensions BOF

Dave Thaler <dthaler@windows.microsoft.com> Thu, 07 June 2007 01:45 UTC

Return-path: <int-area-bounces@lists.ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1Hw740-0002GS-VL; Wed, 06 Jun 2007 21:45:24 -0400
Received: from int-area by megatron.ietf.org with local (Exim 4.43) id 1Hw73x-0002GM-1R for int-area-confirm+ok@megatron.ietf.org; Wed, 06 Jun 2007 21:45:21 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1Hw73w-0002GE-Hv for int-area@ietf.org; Wed, 06 Jun 2007 21:45:20 -0400
Received: from smtp.microsoft.com ([131.107.115.212]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1Hw73v-0005Ns-6s for int-area@ietf.org; Wed, 06 Jun 2007 21:45:20 -0400
Received: from TK5-EXHUB-C101.redmond.corp.microsoft.com (157.54.70.76) by TK5-EXGWY-E801.partners.extranet.microsoft.com (10.251.56.50) with Microsoft SMTP Server (TLS) id 8.0.700.0; Wed, 6 Jun 2007 18:44:18 -0700
Received: from win-imc-02.wingroup.windeploy.ntdev.microsoft.com (157.54.69.169) by TK5-EXHUB-C101.redmond.corp.microsoft.com (157.54.70.76) with Microsoft SMTP Server id 8.0.726.0; Wed, 6 Jun 2007 18:45:18 -0700
Received: from WIN-MSG-21.wingroup.windeploy.ntdev.microsoft.com ([157.54.62.26]) by win-imc-02.wingroup.windeploy.ntdev.microsoft.com with Microsoft SMTPSVC(6.0.3790.3959); Wed, 6 Jun 2007 18:45:17 -0700
X-MimeOLE: Produced By Microsoft Exchange V6.5
Content-Class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Subject: RE: [Int-area] Re: SeND & CGA Extensions BOF
Date: Wed, 06 Jun 2007 18:44:23 -0700
Message-ID: <271CF87FD652F34DBF877CB0CB5D16FC059A74AB@WIN-MSG-21.wingroup.windeploy.ntdev.microsoft.com>
In-Reply-To: <46644759.70109@ericsson.com>
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Thread-Topic: [Int-area] Re: SeND & CGA Extensions BOF
Thread-Index: AcemyxftIgaHQeGRSf6wClJ/ph4H7QB2U4vA
References: <a50af956f4a4127e3f9c863b092c1f07@it.uc3m.es> <C556E424-5CAC-4194-B8C8-12A05297FA1F@cisco.com><Pine.LNX.4.64.0706040956410.20084@internaut.com> <46644759.70109@ericsson.com>
From: Dave Thaler <dthaler@windows.microsoft.com>
To: int-area@ietf.org
X-OriginalArrivalTime: 07 Jun 2007 01:45:17.0897 (UTC) FILETIME=[804D5390:01C7A8A5]
X-Spam-Score: 0.0 (/)
X-Scan-Signature: cab78e1e39c4b328567edb48482b6a69
Cc:
X-BeenThere: int-area@lists.ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IETF Internet Area Mailing List <int-area.lists.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/int-area>, <mailto:int-area-request@lists.ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/int-area>
List-Post: <mailto:int-area@lists.ietf.org>
List-Help: <mailto:int-area-request@lists.ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/int-area>, <mailto:int-area-request@lists.ietf.org?subject=subscribe>
Errors-To: int-area-bounces@lists.ietf.org

Right, there is work on making CGAs crypto-agile and it was presented in
a previous int-area meeting at IETF 66
(http://www3.ietf.org/proceedings/06jul/minutes/intarea.txt item 6).

However, there's another SEND issue that arose in a discussion I was in.
Is there any EKU defined for the X.509 certs used for securing Router
Discovery, that authorizes use as a router?  I can't find one, meaning
the only option is to issue a cert that is valid for all possible 
purposes.  Or am I missing something?  

-Dave

> -----Original Message-----
> From: Suresh Krishnan [mailto:suresh.krishnan@ericsson.com]
> Sent: Monday, June 04, 2007 10:10 AM
> To: Bernard Aboba
> Cc: int-area@ietf.org
> Subject: Re: [Int-area] Re: SeND & CGA Extensions BOF
> 
> Hi Bernard,
> 
> Bernard Aboba wrote:
> > I have a basic concern with the use of CGA in the IETF, which is
that
> the
> > CGA design is not currently crypto-agile.
> 
> Yes. This is a big concern. Marcelo and Jari wrote a draft about
> updating CGAs to use multiple hash functions.
> 
>
http://www.ietf.org/internet-drafts/draft-bagnulo-multiple-hash-cga-03.t
xt
> 
> This is an individual submission and is in the RFC Editor's queue.
> 
> Cheers
> Suresh
> 
> 
> _______________________________________________
> Int-area mailing list
> Int-area@lists.ietf.org
> https://www1.ietf.org/mailman/listinfo/int-area



_______________________________________________
Int-area mailing list
Int-area@lists.ietf.org
https://www1.ietf.org/mailman/listinfo/int-area

v2.23.0 | Report a Bug | By Email