RE: [ipcdn] FW: DISCUSS: draft-ietf-ipcdn-bpiplus-mib-14
"Jean-Francois Mule" <jf.mule@cablelabs.com> Wed, 06 October 2004 23:05 UTC
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id TAA27690 for <ipcdn-archive@ietf.org>; Wed, 6 Oct 2004 19:05:43 -0400 (EDT)
Received: from megatron.ietf.org ([132.151.6.71]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1CFL0X-0001we-RY for ipcdn-archive@ietf.org; Wed, 06 Oct 2004 19:15:42 -0400
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1CFKp5-0005od-IH; Wed, 06 Oct 2004 19:03:51 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1CFKoW-0005cP-Ox for ipcdn@megatron.ietf.org; Wed, 06 Oct 2004 19:03:17 -0400
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id TAA27588 for <ipcdn@ietf.org>; Wed, 6 Oct 2004 19:03:13 -0400 (EDT)
Received: from ondar.cablelabs.com ([192.160.73.61]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1CFKy6-0001sg-Ll for ipcdn@ietf.org; Wed, 06 Oct 2004 19:13:11 -0400
Received: from srvxchg.cablelabs.com (srvxchg.cablelabs.com [10.5.0.20]) by ondar.cablelabs.com (8.12.10/8.12.10) with ESMTP id i96N2dkH013905; Wed, 6 Oct 2004 17:02:39 -0600 (MDT)
X-MimeOLE: Produced By Microsoft Exchange V6.0.6249.0
content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Subject: RE: [ipcdn] FW: DISCUSS: draft-ietf-ipcdn-bpiplus-mib-14
Date: Wed, 06 Oct 2004 17:02:39 -0600
Message-ID: <CD6CE349CFD30D40BF5E13B3E0D8480406A3BE@srvxchg.cablelabs.com>
Thread-Topic: [ipcdn] FW: DISCUSS: draft-ietf-ipcdn-bpiplus-mib-14
Thread-Index: AcSjPw+50+RH77EWSeG7TSvaK+2yJAItaruQ
From: Jean-Francois Mule <jf.mule@cablelabs.com>
To: Russ Housley <housley@vigilsec.com>
X-Approved: ondar
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 41c17b4b16d1eedaa8395c26e9a251c4
Content-Transfer-Encoding: quoted-printable
Cc: ipcdn@ietf.org, bwijnen@lucent.com, Eduardo Cardona <e.cardona@cablelabs.com>, Greg White <g.white@cablelabs.com>, Oscar Marcia <o.marcia@cablelabs.com>, "Richard Woundy @ Comcast" <Richard_woundy@cable.comcast.com>, Eric Rosenfeld <e.rosenfeld@cablelabs.com>, "Steven M. Bellovin" <smb@research.att.com>
X-BeenThere: ipcdn@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IP over Cable Data Network <ipcdn.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipcdn>, <mailto:ipcdn-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ipcdn@ietf.org>
List-Help: <mailto:ipcdn-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ipcdn>, <mailto:ipcdn-request@ietf.org?subject=subscribe>
Sender: ipcdn-bounces@ietf.org
Errors-To: ipcdn-bounces@ietf.org
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 25620135586de10c627e3628c432b04a
Content-Transfer-Encoding: quoted-printable
See more inline, sorry for the delay in responding to you. > -----Original Message----- > From: Russ Housley [mailto:housley@vigilsec.com] > Sent: Friday, September 24, 2004 4:41 PM > To: Jean-Francois Mule; Steven M. Bellovin; > bwijnen@lucent.com; ipcdn@ietf.org > Cc: Eduardo Cardona; Greg White; Oscar Marcia; Richard Woundy > @ Comcast; Eric Rosenfeld > Subject: RE: [ipcdn] FW: DISCUSS: draft-ietf-ipcdn-bpiplus-mib-14 > > > Jean-Francois: > > >--- 1. Syntax of docsBpi2CmPublicKey and range limitations: [snip], the proposed resolution on issue #1 was fine with you. > This is fine with me. > >--- 2. Lack of strong encryption & authentication mechanism in DOCSIS > >BPI+ [snip] > > Symmetric encryption: > > AES (AES128CbcMode, AES256CbcMode), 3DES, DES > > ^^^ new addition, optional to support You wrote: > You need to specify a mode for 3DES too. It will probably be > CBC like the > rest of the algorithms you support. Yes. The following has been proposed: t3DES128EdeMode - equivalent to openssl's DES_ecb2_encrypt() two-key Triple-DES ECB t3DES128CbcMode - equivalent to openssl's DES_ede2_cbc_encrypt() two-key Triple-DES CBC PS: as a separate note, should the IETF be defining a set of crypto MIB textual-conventions for the crypto libraries (like some of the ones in the openssl lib http://www.openssl.org/docs/crypto/crypto.html)? [snip] > > Data integrity algorithms: > > SHA-1, SHA-256, MD5 > > ^ new addition, optional to support You wrote: > I expected HMAC-SHA-1. This can be truncated as is done in > IPsec. Look at > the HMAC-SHA1-96 definition for an example. The following has been proposed: HMAC-SHA1-96 and HMAC-SHA1-128 > MD5 is certainly not a good thing to add at this point. Ok. This response should close all the comments received from Russ. Let us know if this is good to go and we will draft the ID changes accordingly. Jean-François _______________________________________________ IPCDN mailing list IPCDN@ietf.org https://www1.ietf.org/mailman/listinfo/ipcdn
- [ipcdn] FW: DISCUSS: draft-ietf-ipcdn-bpiplus-mib… Wijnen, Bert (Bert)
- RE: [ipcdn] FW: DISCUSS: draft-ietf-ipcdn-bpiplus… Eduardo Cardona
- RE: [ipcdn] FW: DISCUSS: draft-ietf-ipcdn-bpiplus… Eduardo Cardona
- RE: [ipcdn] FW: DISCUSS: draft-ietf-ipcdn-bpiplus… Jean-Francois Mule
- RE: [ipcdn] FW: DISCUSS: draft-ietf-ipcdn-bpiplus… Russ Housley
- RE: [ipcdn] FW: DISCUSS: draft-ietf-ipcdn-bpiplus… Eduardo Cardona
- Re: [ipcdn] FW: DISCUSS: draft-ietf-ipcdn-bpiplus… Steven M. Bellovin
- RE: [ipcdn] FW: DISCUSS: draft-ietf-ipcdn-bpiplus… Jean-Francois Mule
- RE: [ipcdn] FW: DISCUSS: draft-ietf-ipcdn-bpiplus… Russ Housley
- RE: [ipcdn] FW: DISCUSS: draft-ietf-ipcdn-bpiplus… Jean-Francois Mule
- RE: [ipcdn] FW: DISCUSS: draft-ietf-ipcdn-bpiplus… Russ Housley