IETF Logo Mail Archive

Re: 6MAN Agenda for IETF86

Michael Richardson <mcr+ietf@sandelman.ca> Tue, 05 March 2013 18:48 UTC

Return-Path: <mcr@sandelman.ca>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AAFC711E80F5 for <ipv6@ietfa.amsl.com>; Tue, 5 Mar 2013 10:48:26 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.444
X-Spam-Level:
X-Spam-Status: No, score=-2.444 tagged_above=-999 required=5 tests=[AWL=-0.156, BAYES_00=-2.599, HOST_MISMATCH_NET=0.311]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ztLFYHD2YxZb for <ipv6@ietfa.amsl.com>; Tue, 5 Mar 2013 10:48:26 -0800 (PST)
Received: from relay.sandelman.ca (relay.cooperix.net [176.58.120.209]) by ietfa.amsl.com (Postfix) with ESMTP id A0E5911E80D3 for <ipv6@ietf.org>; Tue, 5 Mar 2013 10:48:25 -0800 (PST)
Received: from sandelman.ca (unknown [199.168.217.98]) by relay.sandelman.ca (Postfix) with ESMTPS id 53BD422060; Tue, 5 Mar 2013 18:48:20 +0000 (UTC)
Received: from sandelman.ca (quigon.sandelman.ca [127.0.0.1]) by sandelman.ca (Postfix) with ESMTP id 91C28CA0BC; Tue, 5 Mar 2013 13:48:13 -0500 (EST)
From: Michael Richardson <mcr+ietf@sandelman.ca>
To: Karl Auer <kauer@biplane.com.au>
Subject: Re: 6MAN Agenda for IETF86
In-reply-to: <1362476231.3387.278.camel@karl>
References: <7EE61AD6-2E54-4F17-BBFD-30BE77F7E782@gmail.com> <1362476231.3387.278.camel@karl>
Comments: In-reply-to Karl Auer <kauer@biplane.com.au> message dated "Tue, 05 Mar 2013 20:37:11 +1100."
X-Mailer: MH-E 8.3; nmh 1.3; XEmacs 21.4 (patch 22)
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha1"; protocol="application/pgp-signature"
Date: Tue, 05 Mar 2013 13:48:13 -0500
Message-ID: <3946.1362509293@sandelman.ca>
Sender: mcr@sandelman.ca
Cc: ipv6@ietf.org
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipv6>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Mar 2013 18:48:26 -0000

>>>>> "Karl" == Karl Auer <kauer@biplane.com.au> writes:
    Karl> On Mon, 2013-03-04 at 16:02 -0800, Bob Hinden wrote:
    >> A Simple Secure Addressing Generation Scheme for IPv6
    >> AutoConfiguration draft-rafiee-6man-ssas-01.txt [...]
    >> DHCPv6/SLAAC Address Configuration Interaction Problem Statement
    >> draft-liu-bonica-dhcpv6-slaac-problem-01.txt
    >> 
    >> We did not think there had been enough discussion or interest on
    >> the w.g. list to guarantee a speaking slot.  We allocated short
    >> slots at the end of the session if there is time before the
    >> meeting ends.  If anyone (other than the authors) think one of
    >> these should be given more time, please speak up.

    Karl> For what it's worth it seems to me that there is a gaping hole
    Karl> around securing ND. IPSec is obviously ridiculous, SEND is
    Karl> only marginally less ridiculous. Maybe SSAS is a way forward? 

SEND looked at AH and realized that it couldn't be used, so IPsec is a
non-starter.  I'd like to know what you know about SEND that the SEND WG
didn't...

SASS is similar, but uses a different algorithm, and you don't have to
recalculate each time you move.  For nodes that don't move, it seems
identical.

-- 
Michael Richardson
-on the road-

v2.23.0 | Report a Bug | By Email