Re: [IPsec] Charter update
Paul Hoffman <paul.hoffman@vpnc.org> Sat, 26 July 2014 16:58 UTC
Return-Path: <paul.hoffman@vpnc.org>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B22231B2864 for <ipsec@ietfa.amsl.com>; Sat, 26 Jul 2014 09:58:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.347
X-Spam-Level:
X-Spam-Status: No, score=-1.347 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_MISMATCH_COM=0.553] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Jwn-qisuHzYi for <ipsec@ietfa.amsl.com>; Sat, 26 Jul 2014 09:58:01 -0700 (PDT)
Received: from hoffman.proper.com (IPv6.Hoffman.Proper.COM [IPv6:2605:8e00:100:41::81]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8210F1B285F for <ipsec@ietf.org>; Sat, 26 Jul 2014 09:58:01 -0700 (PDT)
Received: from [10.20.30.90] (50-1-51-60.dsl.dynamic.fusionbroadband.com [50.1.51.60]) (authenticated bits=0) by hoffman.proper.com (8.14.8/8.14.7) with ESMTP id s6QGvwbQ047956 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NO) for <ipsec@ietf.org>; Sat, 26 Jul 2014 09:58:00 -0700 (MST) (envelope-from paul.hoffman@vpnc.org)
X-Authentication-Warning: hoffman.proper.com: Host 50-1-51-60.dsl.dynamic.fusionbroadband.com [50.1.51.60] claimed to be [10.20.30.90]
Content-Type: text/plain; charset="iso-8859-1"
Mime-Version: 1.0 (Mac OS X Mail 7.3 \(1878.6\))
From: Paul Hoffman <paul.hoffman@vpnc.org>
In-Reply-To: <53CAA14C.80301@gmail.com>
Date: Sat, 26 Jul 2014 09:57:57 -0700
Content-Transfer-Encoding: quoted-printable
Message-Id: <DE4878C5-6CD1-4BCA-9994-D3FB901D6787@vpnc.org>
References: <53CAA14C.80301@gmail.com>
To: IPsecME WG <ipsec@ietf.org>
X-Mailer: Apple Mail (2.1878.6)
Archived-At: http://mailarchive.ietf.org/arch/msg/ipsec/8W8WPXcWQPnap-O8ygwcFimCgq4
Subject: Re: [IPsec] Charter update
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 26 Jul 2014 16:58:02 -0000
[[ Another nudge to keep this thread going. If you care about the charter, please comment. ]] On Jul 19, 2014, at 9:48 AM, Yaron Sheffer <yaronf.ietf@gmail.com> wrote: > IPsec folks, > > Our existing charter (http://tools.ietf.org/wg/ipsecme/charters) is badly out of date. Below is a proposed charter revision. Please review and comment on the list. We might also discuss the new charter in the face-to-face next week. > > Thanks, > Paul and Yaron > > > IP Security Maintenance and Extensions (ipsecme) > ------------------------------------------------ > > Charter > > Current Status: Active > > Chairs: > Paul E. Hoffman <paul.hoffman@vpnc.org> > Yaron Sheffer <yaronf.ietf@gmail.com> > > Security Area Directors: > Stephen Farrell <stephen.farrell@cs.tcd.ie> > Kathleen Moriarty <Kathleen.Moriarty.ietf@gmail.com> > > Security Area Advisor: > Kathleen Moriarty <Kathleen.Moriarty.ietf@gmail.com> > > Mailing Lists: > General Discussion: ipsec@ietf.org > To Subscribe: https://www.ietf.org/mailman/listinfo/ipsec > Archive: http://www.ietf.org/mail-archive/web/ipsec/ > > Description of Working Group: > > The IPsec suite of protocols includes IKEv1 (RFC 2409 > and associated RFCs), IKEv2 (RFC 5996), and the IPsec > security architecture (RFC 4301). IPsec is widely > deployed in VPN gateways, VPN remote access clients, > and as a substrate for host-to-host, host-to-network, > and network-to-network security. > > The IPsec Maintenance and Extensions Working Group > continues the work of the earlier IPsec Working Group > which was concluded in 2005. Its purpose is to maintain > the IPsec standard and to facilitate discussion of > clarifications, improvements, and extensions to IPsec, > mostly to IKEv2. The working group also serves as a > focus point for other IETF Working Groups who use IPsec > in their own protocols. > > The current work items include: > > Recently discovered incorrect behavior of ISPs poses a > challenge to IKE, whose UDP messages (especially #3 and #4) > sometimes get fragmented at the IP level and then dropped > by these ISPs. There is interest in solving this issue by > allowing transport of IKE over TCP; this is currently > implemented by some vendors. The group will standardize such > a solution. > > The WG will review and revise the list of mandatory-to- > implement algorithms for ESP and AH based on five years of experience > with newer algorithms and cryptographic modes. > > The WG will revise the IKEv2 specification with a small number > of mandatory tests required for the secure operation of IKEv2 > when using elliptic curve cryptography. This work will be based > on draft-sheffer-ipsecme-dh-checks. > > IKEv2 has had many interoperable implementations and can now be considered > a mature protocol. The WG will republish the protocol as an Internet Standard. > > At the time of writing, all the above are in late stages of the IETF process. > Therefore, the WG will go into low-power mode: it will remain active as a focal point > for the IPsec community. But it will only take on new work items if a strong community > interest can be seen. > > This charter will expire in July 2015 (12 months from approval). > If the charter is not updated before that time, the WG will be > closed and any remaining documents revert back to individual > Internet-Drafts. > > > Goals and Milestones: > > Done - IETF Last Call on large scale VPN use cases and requirements > Done - IETF last call on IKE fragmentation solution > Done - IETF last call on new mandatory-to-implement algorithms > > [No current milestones] > _______________________________________________ > IPsec mailing list > IPsec@ietf.org > https://www.ietf.org/mailman/listinfo/ipsec
- [IPsec] Charter update Yaron Sheffer
- Re: [IPsec] Charter update Paul Wouters
- Re: [IPsec] Charter update Yaron Sheffer
- Re: [IPsec] Charter update Paul Wouters
- Re: [IPsec] Charter update Yaron Sheffer
- Re: [IPsec] Charter update Daniel Migault
- Re: [IPsec] Charter update Paul Hoffman
- Re: [IPsec] Charter update Sean Turner
- Re: [IPsec] Charter update Michael Richardson