Re: [IPsec] Charter update
Paul Wouters <paul@nohats.ca> Sat, 19 July 2014 19:51 UTC
Return-Path: <paul@nohats.ca>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 06DD11B2A0F for <ipsec@ietfa.amsl.com>; Sat, 19 Jul 2014 12:51:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RP_MATCHES_RCVD=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id n9iBp7YEYzP1 for <ipsec@ietfa.amsl.com>; Sat, 19 Jul 2014 12:51:02 -0700 (PDT)
Received: from bofh.nohats.ca (bofh.nohats.ca [76.10.157.69]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7DC671B2A0D for <ipsec@ietf.org>; Sat, 19 Jul 2014 12:51:02 -0700 (PDT)
Received: from bofh.nohats.ca (bofh.nohats.ca [127.0.0.1]) by bofh.nohats.ca (Postfix) with ESMTP id E84038008E; Sat, 19 Jul 2014 15:51:00 -0400 (EDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nohats.ca; s=default; t=1405799460; bh=oSDYFgSjli5CQv8e5gfcyh95WhK2u94a8c6z1o+huvM=; h=Date:From:To:cc:Subject:In-Reply-To:References; b=dMiDAkafVIVq3gfUADn+ZCKAike+u00q8cc6pxsAKp9LrLtOMQbXJGuthZ6hGBqA2 FFesUKkhnUx8qZIqqZKQlUQGv9UoxPtyhapEvE5RcG7TxfKs91Al5M0IDemX7qwosx /oMEd9owoPtKlOTPOv5ZXs/nHf8Kq1POiGVGQH7k=
Received: from localhost (paul@localhost) by bofh.nohats.ca (8.14.7/8.14.7/Submit) with ESMTP id s6JJp0WK023314; Sat, 19 Jul 2014 15:51:00 -0400
X-Authentication-Warning: bofh.nohats.ca: paul owned process doing -bs
Date: Sat, 19 Jul 2014 15:51:00 -0400
From: Paul Wouters <paul@nohats.ca>
To: Yaron Sheffer <yaronf.ietf@gmail.com>
In-Reply-To: <53CAA14C.80301@gmail.com>
Message-ID: <alpine.LFD.2.10.1407191539350.22651@bofh.nohats.ca>
References: <53CAA14C.80301@gmail.com>
User-Agent: Alpine 2.10 (LFD 1266 2009-07-14)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; format="flowed"; charset="ISO-8859-15"
Content-Transfer-Encoding: 8bit
Archived-At: http://mailarchive.ietf.org/arch/msg/ipsec/1n6OvUMVOesdExF-qPGFQocqLG8
Cc: IPsecME WG <ipsec@ietf.org>
Subject: Re: [IPsec] Charter update
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 19 Jul 2014 19:51:04 -0000
On Sat, 19 Jul 2014, Yaron Sheffer wrote: > Recently discovered incorrect behavior of ISPs poses a > challenge to IKE, whose UDP messages (especially #3 and #4) > sometimes get fragmented at the IP level and then dropped > by these ISPs. There is interest in solving this issue by > allowing transport of IKE over TCP; this is currently > implemented by some vendors. The group will standardize such > a solution. The working group had already reached consensus not to support two different fragmentation solutions and to only support draft-smyslov-ipsecme-ikev2-fragmentation, after Yoav's IKE TCP presentation, I believe in London? So I don't think this item belongs on the agenda, unless we are looking at revising that earlier decision. > Goals and Milestones: > > Done - IETF Last Call on large scale VPN use cases and requirements > Done - IETF last call on IKE fragmentation solution > Done - IETF last call on new mandatory-to-implement algorithms > > [No current milestones] Could we add something about assisting Opportunistic Encryption, or whatever term will be used? There is the auth_none draft, and there will be an OE draft by the libreswan team soon. Those will end up in ipsecme. Paul
- [IPsec] Charter update Yaron Sheffer
- Re: [IPsec] Charter update Paul Wouters
- Re: [IPsec] Charter update Yaron Sheffer
- Re: [IPsec] Charter update Paul Wouters
- Re: [IPsec] Charter update Yaron Sheffer
- Re: [IPsec] Charter update Daniel Migault
- Re: [IPsec] Charter update Paul Hoffman
- Re: [IPsec] Charter update Sean Turner
- Re: [IPsec] Charter update Michael Richardson