IETF Logo Mail Archive

[IPsec] updating ESP and AH requirements (was: Call for agenda items)

"David McGrew (mcgrew)" <mcgrew@cisco.com> Mon, 22 October 2012 23:55 UTC

Return-Path: <mcgrew@cisco.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8E86D21F89F8 for <ipsec@ietfa.amsl.com>; Mon, 22 Oct 2012 16:55:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -110.599
X-Spam-Level:
X-Spam-Status: No, score=-110.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sqiJemITh3HG for <ipsec@ietfa.amsl.com>; Mon, 22 Oct 2012 16:55:29 -0700 (PDT)
Received: from rcdn-iport-2.cisco.com (rcdn-iport-2.cisco.com [173.37.86.73]) by ietfa.amsl.com (Postfix) with ESMTP id AC23E21F84D6 for <ipsec@ietf.org>; Mon, 22 Oct 2012 16:55:28 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=1232; q=dns/txt; s=iport; t=1350950129; x=1352159729; h=from:to:cc:subject:date:message-id:in-reply-to: content-id:content-transfer-encoding:mime-version; bh=J7al4tLXQNdQXcnGHftRaWAFKMwXlBuEJ3Vso7uH1wo=; b=WOVBUCWiir8Wpl5U5/nq2m0u5iJZmu7kJ4u2YWW056Y408cCGe87BvQa azXx7C5O3JFQ0WKYX5X7eUVk7HTIbQz+IxnTHo4J8hTuvhNP4prf+EL7P fZjr0CRcAdDCJKas+wUu6mgntmRS1voxNnMcNpn86Wd0m1Dp3QyG43xEq M=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: Av4EAGvchVCtJXG+/2dsb2JhbABEwT+BCIIiAQQBAQEPAQodNAsSASoUNwslAgQBDQUIGodiC5wRoCoEj26BeWADpD+Ba4JiDYIY
X-IronPort-AV: E=Sophos;i="4.80,632,1344211200"; d="scan'208";a="134267249"
Received: from rcdn-core2-3.cisco.com ([173.37.113.190]) by rcdn-iport-2.cisco.com with ESMTP; 22 Oct 2012 23:55:25 +0000
Received: from xhc-rcd-x14.cisco.com (xhc-rcd-x14.cisco.com [173.37.183.88]) by rcdn-core2-3.cisco.com (8.14.5/8.14.5) with ESMTP id q9MNtOJ5021079 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Mon, 22 Oct 2012 23:55:24 GMT
Received: from xmb-rcd-x04.cisco.com ([169.254.8.200]) by xhc-rcd-x14.cisco.com ([173.37.183.88]) with mapi id 14.02.0318.001; Mon, 22 Oct 2012 18:55:24 -0500
From: "David McGrew (mcgrew)" <mcgrew@cisco.com>
To: Paul Hoffman <paul.hoffman@vpnc.org>, IPsecme WG <ipsec@ietf.org>
Thread-Topic: updating ESP and AH requirements (was: [IPsec] Call for agenda items)
Thread-Index: AQHNsLCzX8iZ5G5xwU6qUkkx6aDs7w==
Date: Mon, 22 Oct 2012 23:55:23 +0000
Message-ID: <747787E65E3FBD4E93F0EB2F14DB556B0F502B15@xmb-rcd-x04.cisco.com>
In-Reply-To: <CBFACFB3-7893-4EBF-B6D2-844E8E97B1BC@vpnc.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/14.2.1.120420
x-originating-ip: [10.117.10.229]
x-tm-as-product-ver: SMEX-10.2.0.1135-7.000.1014-19294.004
x-tm-as-result: No--45.008200-8.000000-31
x-tm-as-user-approved-sender: No
x-tm-as-user-blocked-sender: No
Content-Type: text/plain; charset="us-ascii"
Content-ID: <5E604E9AFAA05940A0DDB71CE8A241F4@cisco.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "wajdi.k.feghali@intel.com" <wajdi.k.feghali@intel.com>
Subject: [IPsec] updating ESP and AH requirements (was: Call for agenda items)
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 22 Oct 2012 23:55:29 -0000

Hi Paul,

One thing that deserves to be on the agenda is a discussion of the need to
update the ESP and AH crypto requirements, which have not been updated
since 2007, and to provide guidance on how to use ESP and AH to achieve
security goals.   I have a draft proposing what that could look like,
draft-mcgrew-ipsec-me-esp-ah-reqts-00.   This is off-charter, but I
believe that it is something that many people would agree is worth doing.

Of course, comments on the detailed requirements are welcome as well.

David

On 10/17/12 10:38 AM, "Paul Hoffman" <paul.hoffman@vpnc.org> wrote:

>Greetings again. We have a 2-hour time slot in Atlanta, which is way more
>than we asked for. We don't need to be talking about
>draft-ietf-ipsecme-p2p-vpn-problem because it's finished with WG LC and
>is being sent to the AD for review. This is a call for agenda items.
>Strong preference is given to those which are in the WG charter.
>
>draft-ietf-ipsecme-ike-tcp-00 is already on the agenda, and hopefully
>there will be more discussion of it before the meeting
>
>--Paul Hoffman
>_______________________________________________
>IPsec mailing list
>IPsec@ietf.org
>https://www.ietf.org/mailman/listinfo/ipsec

v2.23.0 | Report a Bug | By Email