[IPsec] updating ESP and AH requirements (was: Call for agenda items)
"David McGrew (mcgrew)" <mcgrew@cisco.com> Mon, 22 October 2012 23:55 UTC
Return-Path: <mcgrew@cisco.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8E86D21F89F8 for <ipsec@ietfa.amsl.com>; Mon, 22 Oct 2012 16:55:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -110.599
X-Spam-Level:
X-Spam-Status: No, score=-110.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sqiJemITh3HG for <ipsec@ietfa.amsl.com>; Mon, 22 Oct 2012 16:55:29 -0700 (PDT)
Received: from rcdn-iport-2.cisco.com (rcdn-iport-2.cisco.com [173.37.86.73]) by ietfa.amsl.com (Postfix) with ESMTP id AC23E21F84D6 for <ipsec@ietf.org>; Mon, 22 Oct 2012 16:55:28 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=1232; q=dns/txt; s=iport; t=1350950129; x=1352159729; h=from:to:cc:subject:date:message-id:in-reply-to: content-id:content-transfer-encoding:mime-version; bh=J7al4tLXQNdQXcnGHftRaWAFKMwXlBuEJ3Vso7uH1wo=; b=WOVBUCWiir8Wpl5U5/nq2m0u5iJZmu7kJ4u2YWW056Y408cCGe87BvQa azXx7C5O3JFQ0WKYX5X7eUVk7HTIbQz+IxnTHo4J8hTuvhNP4prf+EL7P fZjr0CRcAdDCJKas+wUu6mgntmRS1voxNnMcNpn86Wd0m1Dp3QyG43xEq M=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: Av4EAGvchVCtJXG+/2dsb2JhbABEwT+BCIIiAQQBAQEPAQodNAsSASoUNwslAgQBDQUIGodiC5wRoCoEj26BeWADpD+Ba4JiDYIY
X-IronPort-AV: E=Sophos;i="4.80,632,1344211200"; d="scan'208";a="134267249"
Received: from rcdn-core2-3.cisco.com ([173.37.113.190]) by rcdn-iport-2.cisco.com with ESMTP; 22 Oct 2012 23:55:25 +0000
Received: from xhc-rcd-x14.cisco.com (xhc-rcd-x14.cisco.com [173.37.183.88]) by rcdn-core2-3.cisco.com (8.14.5/8.14.5) with ESMTP id q9MNtOJ5021079 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Mon, 22 Oct 2012 23:55:24 GMT
Received: from xmb-rcd-x04.cisco.com ([169.254.8.200]) by xhc-rcd-x14.cisco.com ([173.37.183.88]) with mapi id 14.02.0318.001; Mon, 22 Oct 2012 18:55:24 -0500
From: "David McGrew (mcgrew)" <mcgrew@cisco.com>
To: Paul Hoffman <paul.hoffman@vpnc.org>, IPsecme WG <ipsec@ietf.org>
Thread-Topic: updating ESP and AH requirements (was: [IPsec] Call for agenda items)
Thread-Index: AQHNsLCzX8iZ5G5xwU6qUkkx6aDs7w==
Date: Mon, 22 Oct 2012 23:55:23 +0000
Message-ID: <747787E65E3FBD4E93F0EB2F14DB556B0F502B15@xmb-rcd-x04.cisco.com>
In-Reply-To: <CBFACFB3-7893-4EBF-B6D2-844E8E97B1BC@vpnc.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/14.2.1.120420
x-originating-ip: [10.117.10.229]
x-tm-as-product-ver: SMEX-10.2.0.1135-7.000.1014-19294.004
x-tm-as-result: No--45.008200-8.000000-31
x-tm-as-user-approved-sender: No
x-tm-as-user-blocked-sender: No
Content-Type: text/plain; charset="us-ascii"
Content-ID: <5E604E9AFAA05940A0DDB71CE8A241F4@cisco.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "wajdi.k.feghali@intel.com" <wajdi.k.feghali@intel.com>
Subject: [IPsec] updating ESP and AH requirements (was: Call for agenda items)
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 22 Oct 2012 23:55:29 -0000
Hi Paul, One thing that deserves to be on the agenda is a discussion of the need to update the ESP and AH crypto requirements, which have not been updated since 2007, and to provide guidance on how to use ESP and AH to achieve security goals. I have a draft proposing what that could look like, draft-mcgrew-ipsec-me-esp-ah-reqts-00. This is off-charter, but I believe that it is something that many people would agree is worth doing. Of course, comments on the detailed requirements are welcome as well. David On 10/17/12 10:38 AM, "Paul Hoffman" <paul.hoffman@vpnc.org> wrote: >Greetings again. We have a 2-hour time slot in Atlanta, which is way more >than we asked for. We don't need to be talking about >draft-ietf-ipsecme-p2p-vpn-problem because it's finished with WG LC and >is being sent to the AD for review. This is a call for agenda items. >Strong preference is given to those which are in the WG charter. > >draft-ietf-ipsecme-ike-tcp-00 is already on the agenda, and hopefully >there will be more discussion of it before the meeting > >--Paul Hoffman >_______________________________________________ >IPsec mailing list >IPsec@ietf.org >https://www.ietf.org/mailman/listinfo/ipsec
- [IPsec] Call for agenda items Paul Hoffman
- [IPsec] Call for agenda items Paul Hoffman
- Re: [IPsec] Call for agenda items Yaron Sheffer
- Re: [IPsec] Call for agenda items Paul Hoffman
- Re: [IPsec] Call for agenda items Yoav Nir
- Re: [IPsec] Call for agenda items Paul Hoffman
- Re: [IPsec] Call for agenda items Dan Harkins
- [IPsec] Call for agenda items Tero Kivinen
- [IPsec] Waiting for new version of draft-ietf-ips… Paul Hoffman
- Re: [IPsec] Call for agenda items Paul Hoffman
- Re: [IPsec] Call for agenda items Daniel Migault
- Re: [IPsec] Call for agenda items Tero Kivinen
- [IPsec] updating ESP and AH requirements (was: Ca… David McGrew (mcgrew)
- Re: [IPsec] updating ESP and AH requirements (was… Paul Hoffman
- Re: [IPsec] Call for agenda items Will Liu (Shucheng)
- Re: [IPsec] updating ESP and AH requirements (was… David McGrew (mcgrew)
- Re: [IPsec] Call for agenda items daniel migault
- Re: [IPsec] Call for agenda items Tero Kivinen
- Re: [IPsec] updating ESP and AH requirements (was… Black, David
- Re: [IPsec] updating ESP and AH requirements (was… Yoav Nir
- Re: [IPsec] updating ESP and AH requirements (was… Scott Fluhrer (sfluhrer)
- Re: [IPsec] updating ESP and AH requirements (was… Paul Hoffman
- Re: [IPsec] updating ESP and AH requirements Yaron Sheffer
- Re: [IPsec] updating ESP and AH requirements David McGrew (mcgrew)
- Re: [IPsec] updating ESP and AH requirements Yoav Nir
- Re: [IPsec] updating ESP and AH requirements David McGrew (mcgrew)