IETF Logo Mail Archive

Re: [karp] WG Last-Call Comments on "Database of Long-Lived Symmetric Cryptographic Keys"

Acee Lindem <acee.lindem@gmail.com> Tue, 06 November 2012 19:38 UTC

Return-Path: <acee.lindem@gmail.com>
X-Original-To: karp@ietfa.amsl.com
Delivered-To: karp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9A10B21F8CB9 for <karp@ietfa.amsl.com>; Tue, 6 Nov 2012 11:38:57 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.599
X-Spam-Level:
X-Spam-Status: No, score=-3.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id loE79UKpoElV for <karp@ietfa.amsl.com>; Tue, 6 Nov 2012 11:38:57 -0800 (PST)
Received: from mail-pb0-f44.google.com (mail-pb0-f44.google.com [209.85.160.44]) by ietfa.amsl.com (Postfix) with ESMTP id 7754B21F8D5F for <karp@ietf.org>; Tue, 6 Nov 2012 11:38:56 -0800 (PST)
Received: by mail-pb0-f44.google.com with SMTP id ro8so651273pbb.31 for <karp@ietf.org>; Tue, 06 Nov 2012 11:38:56 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=subject:mime-version:content-type:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to:x-mailer; bh=JAAZJbflSWXMW0qaNnd70RQwA0Kwn84/i5Ti4DKwwMc=; b=r+AIUhl+DwFB1ZC1FHZvXXSUhXit9ctZ2H8qEBK/LprMcTGaSMiOTeBHc4ujxVGutX YutN62Wietk/CA4Ka7IA8blIUoObaJAv4Yg/xSTMbE9wrouSBz3eh20H7Mu8x6VUGlr6 03P8oLIUdIU50UOLzXFtcjB6+AGVg0x6h8s7aWfAXdxT/colNz1csuKw4TvJbuxWOSU6 8knvmxEVpqNw8ErzY50f56JvxIFWeS8b8dp9HLt3nyKE6M3R1Ssq4ClC5er7VraCJa+C t/lhGOcwc8af73ka/qrGWENnlUjSz9yS60v2kH/AhECTfObuvuSGEJ/sX1m/kK2vqgBa Z17Q==
Received: by 10.68.209.170 with SMTP id mn10mr6552372pbc.11.1352230736204; Tue, 06 Nov 2012 11:38:56 -0800 (PST)
Received: from ?IPv6:2001:df8::16:5ab0:35ff:fe74:605? ([2001:df8:0:16:5ab0:35ff:fe74:605]) by mx.google.com with ESMTPS id pw2sm12772091pbb.59.2012.11.06.11.38.53 (version=TLSv1/SSLv3 cipher=OTHER); Tue, 06 Nov 2012 11:38:55 -0800 (PST)
Mime-Version: 1.0 (Apple Message framework v1085)
Content-Type: text/plain; charset="us-ascii"
From: Acee Lindem <acee.lindem@gmail.com>
In-Reply-To: <50993469.8050007@concordia.ca>
Date: Tue, 06 Nov 2012 14:38:51 -0500
Content-Transfer-Encoding: quoted-printable
Message-Id: <2308511F-A526-492F-B295-1DFC573DCB49@lindem.com>
References: <8DEFCA93-10FD-41DB-851F-42C775937B5C@lindem.com> <4E38F57D-BB87-47FC-B99D-FF0B836CD5F9@vigilsec.com> <50993469.8050007@concordia.ca>
To: John William Atwood <william.atwood@concordia.ca>
X-Mailer: Apple Mail (2.1085)
Cc: karp@ietf.org
Subject: Re: [karp] WG Last-Call Comments on "Database of Long-Lived Symmetric Cryptographic Keys"
X-BeenThere: karp@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Discussion list for key management for routing and transport protocols <karp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/karp>, <mailto:karp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/karp>
List-Post: <mailto:karp@ietf.org>
List-Help: <mailto:karp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/karp>, <mailto:karp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 06 Nov 2012 19:38:57 -0000

Hi John,
I'm sure those who have deployed routing protocol security will be familiar with these terms. The terminology was introduced for Cisco IOS keychains. Here is a link for IOS XR:

http://www.cisco.com/en/US/docs/ios_xr_sw/iosxr_r3.7/security/command/reference/sr37kcm.html

This terminology has been carried over to several implementations including my own, Ericsson IPOS (previously Redback SEOS) and IPInfusion routing stack offering. 

Thanks,
Acee



On Nov 6, 2012, at 11:01 AM, John William Atwood wrote:

> "several implementations"
> 
> Perhaps the consensus (or not) would come if the implementations (or the
> rfc/standards document) were to be listed.  Then WG members could make a
> more informed decision.  This change could be particularly helpful if
> code-sharing between the database and the named implementations would be
> likely.
> 
>  Bill
> 
> On 11/5/2012 7:09 PM, Russ Housley wrote:
>> 
>>> SendNotBefore, SendNotAfter, RecvNotBefore and RcvNotAfter - There are already several implementations that use the term SendLifetimeStart, SendLifeTimeEnd, AcceptLifeTimeStart, and AcceptLifeTimeEnd in their keychain implementations - why can't you use these terms?  Note that this is, at least, the second time I've raised this comment. 
>> 
>> I have not seen support for this change.  I have no problem making these changes if there is consensus on this set of terms.
>> 
>> Russ
>> 
>> _______________________________________________
>> karp mailing list
>> karp@ietf.org
>> https://www.ietf.org/mailman/listinfo/karp
>> 
> 
> -- 
> Dr. J.W. Atwood, Eng.             tel:   +1 (514) 848-2424 x3046
> Distinguished Professor Emeritus  fax:   +1 (514) 848-2830
> Department of Computer Science
>   and Software Engineering
> Concordia University EV 3.185     email:william.atwood@concordia.ca
> 1455 de Maisonneuve Blvd. West    http://users.encs.concordia.ca/~bill
> Montreal, Quebec Canada H3G 1M8
> _______________________________________________
> karp mailing list
> karp@ietf.org
> https://www.ietf.org/mailman/listinfo/karp

v2.23.0 | Report a Bug | By Email