Re: Questions regarding the security mechanisms//RE: CRH and RH0
John Scudder <jgs@juniper.net> Fri, 22 May 2020 16:01 UTC
Return-Path: <jgs@juniper.net>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2F0C83A0AEF for <ipv6@ietfa.amsl.com>; Fri, 22 May 2020 09:01:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net header.b=xJ1HYsP+; dkim=pass (1024-bit key) header.d=juniper.net header.b=A99h86SM
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id b0RmxyoDw_ep for <ipv6@ietfa.amsl.com>; Fri, 22 May 2020 09:01:00 -0700 (PDT)
Received: from mx0b-00273201.pphosted.com (mx0b-00273201.pphosted.com [67.231.152.164]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 364063A0AD7 for <6man@ietf.org>; Fri, 22 May 2020 09:01:00 -0700 (PDT)
Received: from pps.filterd (m0108163.ppops.net [127.0.0.1]) by mx0b-00273201.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id 04MFrXuc023588; Fri, 22 May 2020 09:00:51 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : content-transfer-encoding : mime-version; s=PPS1017; bh=Uuf/lu1rE1ZINuXSzgEhMZKbTwfNfKdw3ukREUjczpQ=; b=xJ1HYsP+pkZW/Kmm3wVITP8LTho2YZLs5cWIt/FGEYVp+R9V9S0MTXReM+E4VngNT0jj KAvu19slXC4CobMjsGXcFOLF91HpRg6CjdqANuj6mCgApV0iE8x3SX2VKwHtddJMaaNv rm32gW9uVyzeztaTt+nt7vQd5vjWlmhS5co0ZHyhJ8lHQEIpcTdL7UMzZgRiv5TAEBPC ppa0/7nF0CiSSA+ABQfHxj2S2VktVQRBjlLwxpeA19RVZUWHgGbmYZv+6TWRnaGoCV61 SKIk+xXrwjXESJ+lJOwITNWwNaqPqj5wtXdr8h6EjifrqhpatJavKwh0WSE2yHFVFeuX wA==
Received: from nam04-co1-obe.outbound.protection.outlook.com (mail-co1nam04lp2052.outbound.protection.outlook.com [104.47.45.52]) by mx0b-00273201.pphosted.com with ESMTP id 3165hhh745-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Fri, 22 May 2020 09:00:51 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=XKNGNBw62QWf5pV61hjbJ74EB4edhLgcZ8HYjpw2O3UOmJcX0Eq2evGv1VqisVsIybmJhX5VJAGxjhxYPwQCiYUDh87RlqSrwGXoFq1InaPoYkhe2sbH1dxXajOd/jNPWOrtNZBgOobJp7DtFr1II3ZCgop2BL090YvHTBbOBsvrwHn32gwtPYBxf9LHSw4DRZiIobNbVtcuw14vQkAK5TofAZd9hA4PPDCjeFEc8rGVOEm2c+ndum21QNQ8Q7I+GCISX8drhx21260eHYXqoUEO9MBN3Eb7seKtpwFhe7iMf65fNDH/L812ZxRW8nhKmmenun9OwEw8fPoyAwdFvQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Uuf/lu1rE1ZINuXSzgEhMZKbTwfNfKdw3ukREUjczpQ=; b=QQgisYoQ2PKDnnBw39umQltqS7efqJQq+PfMgYx1B/ijN1O0cvi8M7GhI4pbW6a8fY2Ep3PuAfIs3PXzCQ82kTbXYdJcWv4nJYy/WQNuewu5lfOv2d2V86+FERfVc8WcmgiCaVCA7Va4RGmt20qY0BKRBHbUDYj4/tLUmp5q+olDHPwoO0k7vq14Jp+g3RFwV0RO0FwTE1WS8TugGa0+6qwj5kloO+n3tyOSEX2cLspPLkD8Chl+xINInnDozLY4vsccnusZc8VvtliQZM3U7Cra7DVKP15EaueXZ1lxiIluEoLDnY6EAa16nU6Mdc/1ByAsjm0kRSnYRtX5M+ZcVw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=juniper.net; dmarc=pass action=none header.from=juniper.net; dkim=pass header.d=juniper.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Uuf/lu1rE1ZINuXSzgEhMZKbTwfNfKdw3ukREUjczpQ=; b=A99h86SMHSxEjddbgQGihfKw5CYW2YBx52lv7k87d6me5ygSE1PIEUGC/qOKM1JaiX83m5Vck2FGK1CZzczBVX0yl6vQpg/33FIRt2ZbVyBdgXNNwe7C1x93cD4gqLqVobqDK+oWliMEHMm0kLSrOgaXQ6kBZ7YKdXfviRNkXGo=
Received: from BYAPR05MB5078.namprd05.prod.outlook.com (2603:10b6:a03:9d::32) by BYAPR05MB4359.namprd05.prod.outlook.com (2603:10b6:a02:f8::25) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3045.8; Fri, 22 May 2020 16:00:49 +0000
Received: from BYAPR05MB5078.namprd05.prod.outlook.com ([fe80::3440:a7bc:2ba1:9ac0]) by BYAPR05MB5078.namprd05.prod.outlook.com ([fe80::3440:a7bc:2ba1:9ac0%5]) with mapi id 15.20.3021.019; Fri, 22 May 2020 16:00:49 +0000
From: John Scudder <jgs@juniper.net>
To: "Xiejingrong (Jingrong)" <xiejingrong@huawei.com>
CC: Tom Herbert <tom@herbertland.com>, Ron Bonica <rbonica=40juniper.net@dmarc.ietf.org>, 6man <6man@ietf.org>, Bob Hinden <bob.hinden@gmail.com>
Subject: Re: Questions regarding the security mechanisms//RE: CRH and RH0
Thread-Topic: Questions regarding the security mechanisms//RE: CRH and RH0
Thread-Index: AdYqA0uTBELEk8r7RxOFOlq1QjWhwwAniBKgABOLx4AAA6/ZAAATfhkAABqdDHIBJoB9AAAAWAzY
Date: Fri, 22 May 2020 16:00:49 +0000
Message-ID: <592214BF-5340-40A6-86C8-430C87AC0171@juniper.net>
References: <23488ea0d4eb474c9d7155086f940dae@huawei.com> <006c01d62aa1$8c195520$a44bff60$@com> <DM6PR05MB634863122645FD4981B97F71AEBD0@DM6PR05MB6348.namprd05.prod.outlook.com> <CALx6S35thGuTgTmCFozU=3MULW8V95OwA5GdqQ7OGrA-agR7Hw@mail.gmail.com>, <891ccad03b484c7386ab527d89143f8c@huawei.com> <87E86EE4-7D6C-49A3-A965-317C3F95A346@juniper.net>, <ab0b9d67d294464fb886b9cb5e7639a5@huawei.com>
In-Reply-To: <ab0b9d67d294464fb886b9cb5e7639a5@huawei.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: herbertland.com; dkim=none (message not signed) header.d=none;herbertland.com; dmarc=none action=none header.from=juniper.net;
x-originating-ip: [2607:fb90:894e:963f:f591:b21d:7e93:d4b3]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 914a1828-261e-451e-fe41-08d7fe694bc2
x-ms-traffictypediagnostic: BYAPR05MB4359:
x-microsoft-antispam-prvs: <BYAPR05MB4359C4198B6BA672190C7830AAB40@BYAPR05MB4359.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:4125;
x-forefront-prvs: 04111BAC64
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: st+bCFx2/HEhSssflR+rMtXsdV+Yp4K6zcU0R0MScGEX5X30MMzqSMwOiOQO+YRdq52SkNTe3V7rXPwvmnfGmP9YRL+8Of/pQk3Y5HjFoJW2hfaNdb9QGcuCjb1EdPcN/zGKvUkJnDgGAsgREnoUVFCtvnOAxeLkbt7g8FLQ0iw6S+kGPynttYjr4/UmiAuuCosvtyZ/2ryBE9w5o5OCFk0+gt5qDtcGWs1Zsrly5qbdjoC7OEr24IOQYt/9ti9hzkar244bWATnS845zW9Su/G1HJFVCAx0KhdrFUCv2DmzmBOjsNjMnLKjYnoi6S1YRtL6XK6+/gEYdTi2PkWk4w==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BYAPR05MB5078.namprd05.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(376002)(346002)(396003)(136003)(39860400002)(366004)(6506007)(6916009)(8936002)(66476007)(64756008)(6512007)(33656002)(6486002)(8676002)(15650500001)(2906002)(2616005)(76116006)(66556008)(66946007)(66446008)(91956017)(4326008)(478600001)(316002)(54906003)(71200400001)(53546011)(186003)(4744005)(36756003)(5660300002)(86362001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: 914a1828-261e-451e-fe41-08d7fe694bc2
X-MS-Exchange-CrossTenant-originalarrivaltime: 22 May 2020 16:00:49.0646 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: CJxYle+D/jXzOd39MAuUcYnEWJ5eOTi68MwjluUUWHQ2DF9l6W+uct7Q5YmAyhvt
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR05MB4359
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.216, 18.0.676 definitions=2020-05-22_05:2020-05-22, 2020-05-22 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 lowpriorityscore=0 malwarescore=0 mlxscore=0 bulkscore=0 adultscore=0 impostorscore=0 phishscore=0 suspectscore=0 cotscore=-2147483648 spamscore=0 priorityscore=1501 clxscore=1015 mlxlogscore=408 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2004280000 definitions=main-2005220128
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/nDcmwtV-d8tdQA5gREymQO55J8k>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 May 2020 16:01:02 -0000
I’m not sure if it’s worth pursuing this much farther considering it’s not directly applicable to CRH as such. However: On May 22, 2020, at 11:51 AM, Xiejingrong (Jingrong) <xiejingrong@huawei.com> wrote: > > [XJR] The "complemented per-node protection " is very useful for a layered security mode. I might be convinced if you have reasons for this that address the analysis I provided in my own message. However, a bald statement that it’s “very useful” without further support doesn’t seem too helpful. Regards, —John
- Questions regarding the security mechanisms//RE: … Xiejingrong (Jingrong)
- 答复: Questions regarding the security mechanisms//… qinfengwei
- RE: Questions regarding the security mechanisms//… Ron Bonica
- Re: Questions regarding the security mechanisms//… Fernando Gont
- RE: Questions regarding the security mechanisms//… Ron Bonica
- Re: Questions regarding the security mechanisms//… Fernando Gont
- Re: Questions regarding the security mechanisms//… Tom Herbert
- RE: Questions regarding the security mechanisms//… Ron Bonica
- RE: Questions regarding the security mechanisms//… Xiejingrong (Jingrong)
- RE: Questions regarding the security mechanisms//… Xiejingrong (Jingrong)
- RE: Questions regarding the security mechanisms//… Xiejingrong (Jingrong)
- RE: Questions regarding the security mechanisms//… S Moonesamy
- RE: Questions regarding the security mechanisms//… Xiejingrong (Jingrong)
- Re: Questions regarding the security mechanisms//… Fernando Gont
- RE: Questions regarding the security mechanisms//… Ron Bonica
- Re: Questions regarding the security mechanisms//… Joel M. Halpern
- Re: Questions regarding the security mechanisms//… John Scudder
- Re: Questions regarding the security mechanisms//… Nick Hilliard
- Re: Questions regarding the security mechanisms//… Gyan Mishra
- RE: Questions regarding the security mechanisms//… Xiejingrong (Jingrong)
- RE: Questions regarding the security mechanisms//… Xiejingrong (Jingrong)
- RE: Questions regarding the security mechanisms//… Xiejingrong (Jingrong)
- Re: Questions regarding the security mechanisms//… John Scudder
- Re: Questions regarding the security mechanisms//… Robert Raszuk
- RE: Questions regarding the security mechanisms//… Xiejingrong (Jingrong)
- Re: Questions regarding the security mechanisms//… Nick Hilliard
- Re: Questions regarding the security mechanisms//… John Scudder
- Re: Questions regarding the security mechanisms//… John Scudder
- Re: Questions regarding the security mechanisms//… John Scudder
- Re: Questions regarding the security mechanisms//… Robert Raszuk
- Re: Questions regarding the security mechanisms//… Ole Troan
- Re: Questions regarding the security mechanisms//… John Scudder
- RE: Questions regarding the security mechanisms//… Ron Bonica
- RE: Questions regarding the security mechanisms//… Ron Bonica
- Re: Questions regarding the security mechanisms//… Joel M. Halpern
- RE: Questions regarding the security mechanisms//… Ron Bonica
- Re: Questions regarding the security mechanisms//… Ole Troan