Re: [IPsec] Minor thinko in IKEv2 rfc5996bis draft (and RFC 5996)
Yaron Sheffer <yaronf.ietf@gmail.com> Mon, 19 May 2014 07:31 UTC
Return-Path: <yaronf.ietf@gmail.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2DC6B1A0310 for <ipsec@ietfa.amsl.com>; Mon, 19 May 2014 00:31:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 23OpSdnFNqrE for <ipsec@ietfa.amsl.com>; Mon, 19 May 2014 00:31:03 -0700 (PDT)
Received: from mail-wi0-x236.google.com (mail-wi0-x236.google.com [IPv6:2a00:1450:400c:c05::236]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5A8791A0311 for <ipsec@ietf.org>; Mon, 19 May 2014 00:31:03 -0700 (PDT)
Received: by mail-wi0-f182.google.com with SMTP id r20so3620559wiv.3 for <ipsec@ietf.org>; Mon, 19 May 2014 00:31:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=qNHn02tkpkYksby5xQBisD/ULiYPnt15uXu+o330fBE=; b=rDHROhJh1QbLIqXPupdQuD8Nho57IgYtDAVztLreICAu8YLqt4mCuVKf9aq0jvLNNL s/I9EffWOkA9Dn/uzEPOoZpT1/sRyxl87JGQ67HfxvtOYRjGLTbSY19mbUlThNx+ebZR NOXyhjkDSjVZdhoz1glXx3yFmWlA5DrWrQTb+Q5yVVlaRVFl5Bzb7lgSN0a0Y9i0ZWYu V1jTKqa5pKr4wFKqX6SHlRjW/QRwLEtDslV/vTlXQzKkXpsB3a62hh/y9/mttSgc9C7Z H+0c7u01bAZiw9/kCqp/BUrWBXu9fN013ySksT/QEMyRl6SNuAYGHOYkjGDECxcxGTYq sibA==
X-Received: by 10.180.89.241 with SMTP id br17mr347357wib.0.1400484662080; Mon, 19 May 2014 00:31:02 -0700 (PDT)
Received: from [10.2.0.48] (93-173-250-199.bb.netvision.net.il. [93.173.250.199]) by mx.google.com with ESMTPSA id b16sm13014964wjx.45.2014.05.19.00.30.59 for <multiple recipients> (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Mon, 19 May 2014 00:30:59 -0700 (PDT)
Message-ID: <5379B332.1030005@gmail.com>
Date: Mon, 19 May 2014 10:30:58 +0300
From: Yaron Sheffer <yaronf.ietf@gmail.com>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.5.0
MIME-Version: 1.0
To: "Black, David" <david.black@emc.com>, "IPsecme WG (ipsec@ietf.org)" <ipsec@ietf.org>
References: <8D3D17ACE214DC429325B2B98F3AE712076C55BC0C@MX15A.corp.emc.com>
In-Reply-To: <8D3D17ACE214DC429325B2B98F3AE712076C55BC0C@MX15A.corp.emc.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: http://mailarchive.ietf.org/arch/msg/ipsec/FC7-zuaYv4kzOwx72nSXM5bEJys
Subject: Re: [IPsec] Minor thinko in IKEv2 rfc5996bis draft (and RFC 5996)
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 May 2014 07:31:05 -0000
Hi David, Thanks for detecting this glitch. I don't think this is worth an erratum, given that we are republishing the document. Thanks, Yaron On 05/19/2014 05:09 AM, Black, David wrote: > In looking for something else, I ran across a minor thinko in the > rfc5996bis draft that was inherited from RFC 5996. > > Section 3.14, Encrypted Payload, 4th paragraph: > > When an authenticated encryption algorithm is used to protect the IKE > SA, the construction of the Encrypted payload is different than what > is described here. See [AEAD] for more information on authenticated > encryption algorithms and their use in ESP. > > [AEAD] is a reference to RFC 5282, "Using Authenticated Encryption > Algorithms with the Encrypted Payload of the Internet Key Exchange > version 2 (IKEv2) Protocol." > > Hence, a change is in order at the end of the paragraph: > > "ESP" -> "IKEv2" > > In the unlikely event that the IESG finds nothing else to change in > the draft :-), an RFC Editor Note ought to suffice to handle this. > > Should I also file an erratum against RFC 5996? > > Thanks, > --David > ---------------------------------------------------- > David L. Black, Distinguished Engineer > EMC Corporation, 176 South St., Hopkinton, MA 01748 > +1 (508) 293-7953 FAX: +1 (508) 293-7786 > david.black@emc.com Mobile: +1 (978) 394-7754 > ---------------------------------------------------- > > _______________________________________________ > IPsec mailing list > IPsec@ietf.org > https://www.ietf.org/mailman/listinfo/ipsec >
- [IPsec] Minor thinko in IKEv2 rfc5996bis draft (a… Black, David
- Re: [IPsec] Minor thinko in IKEv2 rfc5996bis draf… Yaron Sheffer
- [IPsec] Minor thinko in IKEv2 rfc5996bis draft (a… Tero Kivinen