Re: [rfc2461bis issue 252] Security considerations issues
"Steven M. Bellovin" <smb@research.att.com> Wed, 11 February 2004 23:21 UTC
Received: from optimus.ietf.org (optimus.ietf.org [132.151.1.19]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id SAA09077 for <ipv6-archive@odin.ietf.org>; Wed, 11 Feb 2004 18:21:12 -0500 (EST)
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1Ar3ew-00013k-7y for ipv6-archive@odin.ietf.org; Wed, 11 Feb 2004 18:20:46 -0500
Received: (from exim@localhost) by www1.ietf.org (8.12.8/8.12.8/Submit) id i1BNKkKc004060 for ipv6-archive@odin.ietf.org; Wed, 11 Feb 2004 18:20:46 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1Ar3et-00012n-K2 for ipv6-web-archive@optimus.ietf.org; Wed, 11 Feb 2004 18:20:43 -0500
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id SAA09043 for <ipv6-web-archive@ietf.org>; Wed, 11 Feb 2004 18:20:39 -0500 (EST)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 1Ar3eq-0003El-00 for ipv6-web-archive@ietf.org; Wed, 11 Feb 2004 18:20:40 -0500
Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1Ar3dt-00037o-00 for ipv6-web-archive@ietf.org; Wed, 11 Feb 2004 18:19:41 -0500
Received: from optimus.ietf.org ([132.151.1.19]) by ietf-mx with esmtp (Exim 4.12) id 1Ar3cu-00030e-00 for ipv6-web-archive@ietf.org; Wed, 11 Feb 2004 18:18:40 -0500
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1Ar3cI-0000BI-J3; Wed, 11 Feb 2004 18:18:02 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1Ar3by-0008U0-Ao for ipv6@optimus.ietf.org; Wed, 11 Feb 2004 18:17:42 -0500
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id SAA08746 for <ipv6@ietf.org>; Wed, 11 Feb 2004 18:17:38 -0500 (EST)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 1Ar3bv-0002t3-00 for ipv6@ietf.org; Wed, 11 Feb 2004 18:17:39 -0500
Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1Ar3ay-0002mZ-00 for ipv6@ietf.org; Wed, 11 Feb 2004 18:16:41 -0500
Received: from mail-red.research.att.com ([192.20.225.110] helo=mail-white.research.att.com) by ietf-mx with esmtp (Exim 4.12) id 1Ar3a4-0002by-00 for ipv6@ietf.org; Wed, 11 Feb 2004 18:15:44 -0500
Received: from mail-green.research.att.com (mail-green.research.att.com [135.207.30.103]) by mail-white.research.att.com (Postfix) with ESMTP id AABB266410B; Wed, 11 Feb 2004 18:14:04 -0500 (EST)
Received: from bigmail.research.att.com (bigmail.research.att.com [135.207.30.101]) by mail-green.research.att.com (Postfix) with ESMTP id 85695F3B5D; Wed, 11 Feb 2004 18:11:47 -0500 (EST)
Received: from berkshire.research.att.com (raptor.research.att.com [135.207.23.32]) by bigmail.research.att.com (8.11.6+Sun/8.11.6) with ESMTP id i1BNFEZ02087; Wed, 11 Feb 2004 18:15:14 -0500 (EST)
Received: from research.att.com (localhost [127.0.0.1]) by berkshire.research.att.com (Postfix) with ESMTP id 129827B43; Wed, 11 Feb 2004 18:15:14 -0500 (EST)
X-Mailer: exmh version 2.6.3 04/04/2003 with nmh-1.0.4
From: "Steven M. Bellovin" <smb@research.att.com>
To: James Kempf <kempf@docomolabs-usa.com>
Cc: Soliman Hesham <H.Soliman@flarion.com>, ipv6@ietf.org, Russ Housley <housley@vigilsec.com>, Thomas Narten <narten@us.ibm.com>
Subject: Re: [rfc2461bis issue 252] Security considerations issues
In-Reply-To: Your message of "Wed, 11 Feb 2004 15:11:00 PST." <03d501c3f0f4$5089f210$936015ac@dclkempt40>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Date: Wed, 11 Feb 2004 18:15:13 -0500
Message-Id: <20040211231514.129827B43@berkshire.research.att.com>
Sender: ipv6-admin@ietf.org
Errors-To: ipv6-admin@ietf.org
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Id: IP Version 6 Working Group (ipv6) <ipv6.ietf.org>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org
X-Spam-Status: No, hits=0.0 required=5.0 tests=AWL autolearn=no version=2.60
In message <03d501c3f0f4$5089f210$936015ac@dclkempt40>, "James Kempf" writes: >>> I think it might be wise to discuss whether the document >> > should continue to > >> recommend IPsec with the Security ADs and get some input > >> from the community > >> and the security directorate. > >> draft-arkko-manual-icmpv6-sas-01.txt outlines > >> some scalability problems with IPsec, even if manual keying > >> is used, as you > >> mention below. There is a potential deployment issue as to > >> what constitutes > >> a "small" network and at what point the network hits the > >> scalability barrier > >> when the network provider will have to completely > >> reconfigure their network > >> and turn SEND on. I'm not sure whether it makes sense to > >> recommend manual > >> keying for small networks when SEND would work as well and > >> wouldn't require > >> a flag day reconfigure if the network grew too large. Also, > >> manual keying > >> doesn't make sense for zeroconf networks, because it isn't > >> zeroconf. The ND > >> part of SEND could be used for disconnected zeroconf > >> networks, and the > >> router part could too if the host came preconfigured with a > >> collection of > >> cert trust anchors. >> >> >> => I just want to clarify one thing: it is not my intention >> to recommend IPsec in any way. I just wanted to mention >> when it can be used and its limitation. I can add something >> to say that SEND is the preferred option in general. If the WG >> wants to remove any reference to IPsec I'm happy to do that >> too. >> > >Sure, I understand. > >My preference would be to say that use of IPsec is deprecated, since, as >outlined above, there may be significant deployment consequences if it is >used, and having one way to do something is generally simpler than having >many. > >What do other WG members think? > >Also, what do the Security ADs (cc'ed) think? > One of the major conclusions of SEND was that IPsec for neighbor discovery didn't work very well. Given that, and given that we have a replacement coming, I have no objection. However... 2461 is at Draft. I'll have to figure out the procedural consequences of such a change at this point. Of course, I also have to figure out the consequences of not making the change.... --Steve Bellovin, http://www.research.att.com/~smb -------------------------------------------------------------------- IETF IPv6 working group mailing list ipv6@ietf.org Administrative Requests: https://www1.ietf.org/mailman/listinfo/ipv6 --------------------------------------------------------------------
- [rfc2461bis issue 252] Security considerations is… Soliman Hesham
- Re: [rfc2461bis issue 252] Security consideration… Jari Arkko
- RE: [rfc2461bis issue 252] Security consideration… Soliman Hesham
- Re: [rfc2461bis issue 252] Security consideration… James Kempf
- Re: [rfc2461bis issue 252] Security consideration… James Kempf
- RE: [rfc2461bis issue 252] Security consideration… Soliman Hesham
- Re: [rfc2461bis issue 252] Security consideration… James Kempf
- Re: [rfc2461bis issue 252] Security consideration… Steven M. Bellovin