Re: Updated - Revised and expanded rfc2460bis Security Considerations
Bob Hinden <bob.hinden@gmail.com> Fri, 21 April 2017 21:02 UTC
Return-Path: <bob.hinden@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D13C21293F2 for <ipv6@ietfa.amsl.com>; Fri, 21 Apr 2017 14:02:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NCi2QeykCoXu for <ipv6@ietfa.amsl.com>; Fri, 21 Apr 2017 14:02:54 -0700 (PDT)
Received: from mail-io0-x22b.google.com (mail-io0-x22b.google.com [IPv6:2607:f8b0:4001:c06::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 27520126C89 for <ipv6@ietf.org>; Fri, 21 Apr 2017 14:02:54 -0700 (PDT)
Received: by mail-io0-x22b.google.com with SMTP id k87so136043557ioi.0 for <ipv6@ietf.org>; Fri, 21 Apr 2017 14:02:54 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=rmju82m1R2zZtuhrgGWoZT3bv9scpRuKjJZ1RsK017s=; b=Kb5ckIxBc2/XFNmjQuRCbFH32B5VWtD99E3/Ldre0UkEdPS9Yo5DsQykX/IHsAgIpH P4xlkFtPaMVOcfgqnH3S8Z0XeeZrqmt+Qni9JCQ22XXbRsz8yopCzFmN22CmAyq64Fhn Y5FBDJhV28xjZu9PhzAmIzFJ/wDqcunjXznbOquQJ1gjyu6m8KFLzCDabdlJTma/YfRt O5qFajwtqkzOMR9aH3MHhmNWkPNrbg0Nx6zPZpVjgkLJjjTIo+esFqsI7ormX4LqHk0y AWGCcUDIVftJTSa7Pv2GH8cNfS+W8UmBayjJnVU81xG22BVbZSnaST8/bhiSAIzR1b7T shjQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=rmju82m1R2zZtuhrgGWoZT3bv9scpRuKjJZ1RsK017s=; b=q6gqaFl5Myz8bYFrNv17W6IUHR22Sh108PWwceD4jZuUYIfnX8ml/5VOwFdb6g1NjF 0/caUuiceemoid7U0jhkJ1lNy+Niz2m1pPoMgK+LrELGlVegspl5GXLNbQkTpOuXcI1R vJAVV0ParcTgHhOHrbaJmwgLOZz/lvaO2i/DifUbaykyteuTc/QbSLOK8KqAehRYsxbZ 1uflhpyDaTdZsTHngg6NwpjTXMqVvRlA5XXe5TpJXL3dGZQzpB5dgnTYMI8zzISCOofj zuYDC3w1RIJRo/NdQd1QWeg+SxnrNrboWVf97S5iJugM3AUNYhilBlqgcllibGAgKGXF BUig==
X-Gm-Message-State: AN3rC/7TINYbOJgWZUCRbTMY8S2zbf80BCY9/M1hj1HUXB0avlwuJW3X eZqbG/yllgMdOQ==
X-Received: by 10.107.191.67 with SMTP id p64mr17880292iof.236.1492808573401; Fri, 21 Apr 2017 14:02:53 -0700 (PDT)
Received: from [172.16.224.219] ([209.97.127.34]) by smtp.gmail.com with ESMTPSA id g132sm1222563ita.7.2017.04.21.14.02.52 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Fri, 21 Apr 2017 14:02:52 -0700 (PDT)
From: Bob Hinden <bob.hinden@gmail.com>
Message-Id: <E92B8031-2636-4B58-9B15-0E8F0811ECAD@gmail.com>
Content-Type: multipart/signed; boundary="Apple-Mail=_7082A9B7-39E1-47C6-9874-18822AAA8C17"; protocol="application/pgp-signature"; micalg="pgp-sha512"
Mime-Version: 1.0 (Mac OS X Mail 10.3 \(3273\))
Subject: Re: Updated - Revised and expanded rfc2460bis Security Considerations
Date: Fri, 21 Apr 2017 14:02:49 -0700
In-Reply-To: <0ce63b70-9690-55f5-a27d-db934f1beea3@si6networks.com>
Cc: Bob Hinden <bob.hinden@gmail.com>, IPv6 List <ipv6@ietf.org>, Eric Rescorla <ekr@rtfm.com>
To: Fernando Gont <fgont@si6networks.com>
References: <7533CCE9-4992-45E6-84C5-A024C3BD5F3C@gmail.com> <0ce63b70-9690-55f5-a27d-db934f1beea3@si6networks.com>
X-Mailer: Apple Mail (2.3273)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/SKRSeidF76rUH9_MJ_uKkNhDaZ8>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 21 Apr 2017 21:02:56 -0000
Fernando, > On Apr 21, 2017, at 5:09 AM, Fernando Gont <fgont@si6networks.com> wrote: > > Hello, Bob, > > Thanks for sharing the text! Just a minor comment: > > On 04/20/2017 10:21 PM, Bob Hinden wrote: >> >> IPv6 addresses are significantly larger than IPv4 address making it >> much harder to scan the address space across the Internet and even on >> a single network link (e.g., Local Area Network). See [RFC7721] for >> more information. > > Here I'd reference RFC7707 rather than RFC7721, since it's RFC7707 that > discusses this topic in detail. OK. > > Other than that the text looks great to me. Thanks, I will submit a new draft today with these security considerations. Bob > > Thanks! > > Best regards, > -- > Fernando Gont > SI6 Networks > e-mail: fgont@si6networks.com > PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492 > > > >
- Updated - Revised and expanded rfc2460bis Securit… Bob Hinden
- Re: Updated - Revised and expanded rfc2460bis Sec… t.petch
- Re: Updated - Revised and expanded rfc2460bis Sec… Fernando Gont
- Re: Updated - Revised and expanded rfc2460bis Sec… Bob Hinden
- Re: Updated - Revised and expanded rfc2460bis Sec… Bob Hinden