Re: [Int-dir] [Taps] Intdir telechat review of draft-ietf-taps-transport-security-11
Gorry Fairhurst <gorry@erg.abdn.ac.uk> Fri, 03 April 2020 12:51 UTC
Return-Path: <gorry@erg.abdn.ac.uk>
X-Original-To: int-dir@ietfa.amsl.com
Delivered-To: int-dir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3DBFC3A07AD; Fri, 3 Apr 2020 05:51:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zpe5ijaG1nYy; Fri, 3 Apr 2020 05:51:04 -0700 (PDT)
Received: from pegasus.erg.abdn.ac.uk (pegasus.erg.abdn.ac.uk [IPv6:2001:630:42:150::2]) by ietfa.amsl.com (Postfix) with ESMTP id 817CA3A07B1; Fri, 3 Apr 2020 05:51:03 -0700 (PDT)
Received: from GF-MacBook-Pro.local (fgrpf.plus.com [212.159.18.54]) by pegasus.erg.abdn.ac.uk (Postfix) with ESMTPSA id E619E1B000AD; Fri, 3 Apr 2020 13:50:55 +0100 (BST)
To: Brian Haberman <brian@innovationslab.net>, int-dir@ietf.org
Cc: last-call@ietf.org, draft-ietf-taps-transport-security.all@ietf.org, taps@ietf.org
References: <158591580027.17912.14591985076306660054@ietfa.amsl.com>
From: Gorry Fairhurst <gorry@erg.abdn.ac.uk>
Message-ID: <59caf50b-6602-978c-f3b4-955c42d73f79@erg.abdn.ac.uk>
Date: Fri, 03 Apr 2020 13:50:55 +0100
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.13; rv:68.0) Gecko/20100101 Thunderbird/68.6.0
MIME-Version: 1.0
In-Reply-To: <158591580027.17912.14591985076306660054@ietfa.amsl.com>
Content-Type: multipart/alternative; boundary="------------246C35820444AD81993F8625"
Content-Language: en-GB
Archived-At: <https://mailarchive.ietf.org/arch/msg/int-dir/F3pXinKY8Pszo3UKJ1suQp0ZcTE>
Subject: Re: [Int-dir] [Taps] Intdir telechat review of draft-ietf-taps-transport-security-11
X-BeenThere: int-dir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This list is for discussion between the members of the Internet Area directorate." <int-dir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/int-dir>, <mailto:int-dir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/int-dir/>
List-Post: <mailto:int-dir@ietf.org>
List-Help: <mailto:int-dir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/int-dir>, <mailto:int-dir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Apr 2020 12:51:06 -0000
I think GRE (the one I know more) should be mentioned as existing somehow. ... even if the WG doesn't want to add an analysis of GRE! A suggested starting text blob proposal for GRE could be: Generic Routing Encapsulation [RFC2784] specifies a protocol for encapsulation of an arbitrary protocol over another arbitrary network layer protocol. GRE tunnels do not by default provide security features. [RFC2890] describes enhancements by which two fields, Key and Sequence Number, can be optionally carried in the GRE Header to implement security functions. [RFC8086] specifies a method of encapsulating network protocol packets using GRE in UDP. GRE can be used in combination with IPsec (see RFC2890). Gorry On 03/04/2020 13:10, Brian Haberman via Datatracker wrote: > Reviewer: Brian Haberman > Review result: Ready with Issues > > This document is a survey of network security protocols and their interaction > with transport and application protocols. It is clearly written and easy to > read. I have a minor comment on the contents of this draft. > > It is not abundantly clear what the criteria was for selecting the subset of > security protocols included in this draft. Some notable omissions include SSH, > L2TP, and GRE. These seem like interesting omissions given their popularity in > a number of deployment scenarios. Not a showstopper in my opinion, but > interesting to note. > > > _______________________________________________ > Taps mailing list > Taps@ietf.org > https://www.ietf.org/mailman/listinfo/taps
- [Int-dir] Intdir telechat review of draft-ietf-ta… Brian Haberman via Datatracker
- Re: [Int-dir] [Taps] Intdir telechat review of dr… Gorry Fairhurst
- Re: [Int-dir] [Taps] Intdir telechat review of dr… Tommy Pauly