IETF Logo Mail Archive

Re: [IPsec] New Version Notification for draft-amjads-ipsecme-ikev2-data-channel-01.txt

"Black, David" <david.black@emc.com> Thu, 17 April 2014 22:28 UTC

Return-Path: <david.black@emc.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6F34D1A00E6 for <ipsec@ietfa.amsl.com>; Thu, 17 Apr 2014 15:28:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.273
X-Spam-Level:
X-Spam-Status: No, score=-2.273 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RP_MATCHES_RCVD=-0.272, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Kgw59-1ovGWv for <ipsec@ietfa.amsl.com>; Thu, 17 Apr 2014 15:28:31 -0700 (PDT)
Received: from mailuogwhop.emc.com (mailuogwhop.emc.com [168.159.213.141]) by ietfa.amsl.com (Postfix) with ESMTP id 2D3161A0078 for <ipsec@ietf.org>; Thu, 17 Apr 2014 15:28:30 -0700 (PDT)
Received: from maildlpprd02.lss.emc.com (maildlpprd02.lss.emc.com [10.253.24.34]) by mailuogwprd03.lss.emc.com (Sentrion-MTA-4.3.0/Sentrion-MTA-4.3.0) with ESMTP id s3HMSOl4023538 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 17 Apr 2014 18:28:25 -0400
X-DKIM: OpenDKIM Filter v2.4.3 mailuogwprd03.lss.emc.com s3HMSOl4023538
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=emc.com; s=jan2013; t=1397773705; bh=qNq33BZF9IH+jPil6NvjyOa7yR8=; h=From:To:Date:Subject:Message-ID:References:In-Reply-To: Content-Type:Content-Transfer-Encoding:MIME-Version; b=vKuZlQNWw8g6+PtKiQzfX5OcrwRFVj3Ci25u03/M6xI1ZbfetKjGQGKMwuBXCXkpo KTU+F4wgE/lZIhLg78zYKIDaGudY7P2EI87RUq6THxu7pr0zkEtgJMbY3LETadbRaZ rqk2sqwZclL7p2hBXwmZQCc+vh1s4s+YXla6lcFQ=
X-DKIM: OpenDKIM Filter v2.4.3 mailuogwprd03.lss.emc.com s3HMSOl4023538
Received: from mailusrhubprd01.lss.emc.com (mailusrhubprd01.lss.emc.com [10.253.24.19]) by maildlpprd02.lss.emc.com (RSA Interceptor); Thu, 17 Apr 2014 18:28:18 -0400
Received: from mxhub18.corp.emc.com (mxhub18.corp.emc.com [10.254.93.47]) by mailusrhubprd01.lss.emc.com (Sentrion-MTA-4.3.0/Sentrion-MTA-4.3.0) with ESMTP id s3HMSITP009153 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Thu, 17 Apr 2014 18:28:18 -0400
Received: from mx15a.corp.emc.com ([169.254.1.64]) by mxhub18.corp.emc.com ([10.254.93.47]) with mapi; Thu, 17 Apr 2014 18:28:18 -0400
From: "Black, David" <david.black@emc.com>
To: "Rajeshwar Singh Jenwar (rsj)" <rsj@cisco.com>, "IPsecme WG (ipsec@ietf.org)" <ipsec@ietf.org>
Date: Thu, 17 Apr 2014 18:28:16 -0400
Thread-Topic: New Version Notification for draft-amjads-ipsecme-ikev2-data-channel-01.txt
Thread-Index: AQHPPeiOOW5BcXLSBkueOTatW1ZDU5reSmmggDhQuBA=
Message-ID: <8D3D17ACE214DC429325B2B98F3AE712076C2EC424@MX15A.corp.emc.com>
References: <20140312114328.20101.44457.idtracker@ietfa.amsl.com> <AAB3D1882B58DF46B73D67CE475E7EA004CF0F91@xmb-rcd-x03.cisco.com>
In-Reply-To: <AAB3D1882B58DF46B73D67CE475E7EA004CF0F91@xmb-rcd-x03.cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Sentrion-Hostname: mailusrhubprd01.lss.emc.com
Archived-At: http://mailarchive.ietf.org/arch/msg/ipsec/ZN1HRcALb62s9icy-TZJXEBqjNY
Subject: Re: [IPsec] New Version Notification for draft-amjads-ipsecme-ikev2-data-channel-01.txt
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Apr 2014 22:28:35 -0000

Well, Joe Touch's comments on congestion still apply:

http://www.ietf.org/mail-archive/web/ipsec/current/msg08654.html

I suggest consulting RFC 5405 on this topic, and applying its guidance.

Thanks,
--David

> -----Original Message-----
> From: IPsec [mailto:ipsec-bounces@ietf.org] On Behalf Of Rajeshwar Singh
> Jenwar (rsj)
> Sent: Wednesday, March 12, 2014 10:27 PM
> To: IPsecme WG (ipsec@ietf.org)
> Subject: [IPsec] FW: New Version Notification for draft-amjads-ipsecme-ikev2-
> data-channel-01.txt
> 
> Hi,
> 
> We (Amjad and I) have published new version of "Data over IKEv2 for
> application security" draft based on inputs/comments received.
> Please review and provide comments/inputs/questions.
> 
> Kind Regards,
> Raj
> 
> -----Original Message-----
> From: internet-drafts@ietf.org [mailto:internet-drafts@ietf.org]
> Sent: Wednesday, March 12, 2014 5:13 PM
> To: Amjad Inamdar (amjads); Rajeshwar Singh Jenwar (rsj); Rajeshwar Singh
> Jenwar (rsj); Amjad Inamdar (amjads)
> Subject: New Version Notification for draft-amjads-ipsecme-ikev2-data-channel-
> 01.txt
> 
> 
> A new version of I-D, draft-amjads-ipsecme-ikev2-data-channel-01.txt
> has been successfully submitted by Amjad S. Inamdar and posted to the IETF
> repository.
> 
> Name:		draft-amjads-ipsecme-ikev2-data-channel
> Revision:	01
> Title:		IKEv2 based lightweight secure data communication draft-
> amjads-ipsecme-ikev2-data-channel-01 (D-IKE)
> Document date:	2014-03-12
> Group:		Individual Submission
> Pages:		15
> URL:            http://www.ietf.org/internet-drafts/draft-amjads-ipsecme-
> ikev2-data-channel-01.txt
> Status:         https://datatracker.ietf.org/doc/draft-amjads-ipsecme-ikev2-
> data-channel/
> Htmlized:       http://tools.ietf.org/html/draft-amjads-ipsecme-ikev2-data-
> channel-01
> Diff:           http://www.ietf.org/rfcdiff?url2=draft-amjads-ipsecme-ikev2-
> data-channel-01
> 
> Abstract:
>    The Internet Key Exchange (IKEv2) protocol provides authentication,
>    confidentiality, integrity, data-origin authentication and anti-
>    replay.  Currently, IKEv2 is mainly used as a control channel to
>    negotiate IPsec SA(s).  IPsec is not well suited to provide transport
>    layer security for applications as it resides at the network layer
>    and most of the IPsec implementations require integration into
>    operating systems making it difficult to deploy.  IPsec uses
>    different sessions for control and data traffic which is not NAT and
>    load balancer friendly.  TLS/DTLS, the other popular security
>    mechanism to provide the above security services does not mandate
>    mutual peer authentication and Diffie Hellman exchange.
> 
>    This document describes an IKEv2 based lightweight secure data
>    communication protocol and a way to provide transport layer security
>    for UDP client/server applications.  The protocol provides integrity
>    protected encryption and integrity-only protection based on
>    application needs.  As most of the IoT applications are UDP based,
>    IKEv2 can be used for key management as well secure data
>    communication in IoT due to its simplicity, scalability,
>    lightweightedness and ease of deployment.
> 
> 
> 
> 
> Please note that it may take a couple of minutes from the time of submission
> until the htmlized version and diff are available at tools.ietf.org.
> 
> The IETF Secretariat
> 
> _______________________________________________
> IPsec mailing list
> IPsec@ietf.org
> https://www.ietf.org/mailman/listinfo/ipsec

v2.23.0 | Report a Bug | By Email