[karp] Proposal on securing PCEP by means of TLS

"Diego R. Lopez" <diego@tid.es> Sat, 13 July 2013 11:55 UTC

Return-Path: <diego@tid.es>
X-Original-To: karp@ietfa.amsl.com
Delivered-To: karp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 88E3E21F9D71; Sat, 13 Jul 2013 04:55:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.599
X-Spam-Level:
X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PNRuRghHp7C7; Sat, 13 Jul 2013 04:55:33 -0700 (PDT)
Received: from correo-bck.tid.es (correo-bck.tid.es [195.235.93.200]) by ietfa.amsl.com (Postfix) with ESMTP id 4034421F9D0F; Sat, 13 Jul 2013 04:55:33 -0700 (PDT)
Received: from sbrightmailg02.hi.inet (Sbrightmailg02.hi.inet [10.95.78.105]) by tid.hi.inet (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTP id <0MPV00IU9IGHU8@tid.hi.inet>; Sat, 13 Jul 2013 13:55:29 +0200 (MEST)
Received: from vanvan (vanvan.hi.inet [10.95.78.49]) by sbrightmailg02.hi.inet (Symantec Messaging Gateway) with SMTP id 3B.FC.02911.13041E15; Sat, 13 Jul 2013 13:55:29 +0200 (CEST)
Received: from correo.tid.es (mailhost.hi.inet [10.95.64.100]) by tid.hi.inet (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTPS id <0MPV00IU6IGGU8@tid.hi.inet>; Sat, 13 Jul 2013 13:55:28 +0200 (MEST)
Received: from EX10-MB2-MAD.hi.inet ([169.254.2.38]) by EX10-HTCAS8-MAD.hi.inet ([fe80::41c8:e965:8a6:de67%11]) with mapi id 14.02.0328.009; Sat, 13 Jul 2013 13:55:27 +0200
Date: Sat, 13 Jul 2013 11:55:27 +0000
From: "Diego R. Lopez" <diego@tid.es>
X-Originating-IP: [10.95.64.115]
To: "pce@ietf.org" <pce@ietf.org>
Message-id: <E6D8B95470ED0845B3376F61DCAB1A049CD150B8@EX10-MB2-MAD.hi.inet>
Content-id: <4A41669B14B10049B520682FCB07D2D7@hi.inet>
MIME-version: 1.0
Content-type: text/plain; charset=utf-8
Content-language: en-US
Content-transfer-encoding: base64
Accept-Language: en-US, es-ES
Thread-topic: Proposal on securing PCEP by means of TLS
Thread-index: AQHOf7+uXh4JtZqUPkOFzvaC0qiQVA==
X-AuditID: 0a5f4e69-b7f118e000000b5f-a6-51e140315e92
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFnrPLMWRmVeSWpSXmKPExsXCFe9nqGvo8DDQ4PkDfYu939YwWjTdv8Hu wOSxZMlPpgDGKC6blNSczLLUIn27BK6MpvXf2Qp+CFXcbT7L1MC4Q6iLkZNDQsBEomfvHFYI W0ziwr31bF2MXBxCAtsZJS58+MIIkhASeMYose5nHURiA6PEnCfrmEESLAKqEq837wbrZgOy HzX/ZgexhQWMJK5dmsUEMVVB4s+5xywgtoiAosT3G6vZQGxmAWWJVcdfANkcHLwC3hLH/upB hM0k1rfcB9vLKyAo8WPyPRaQEmYBdYkpU3IhSsQlmltvskDYihLTFjWAlTMKyEq8mz+fFWKT ucTy+d9ZQVpFBPQkjrwRhThGQGLJnvPMELaoxMvH/1gnMIrNQrJ4FpLFsxAWz0KyeBaSxQsY WVcxihUnFWWmZ5TkJmbmpBsY6WVk6mXmpZZsYoREUuYOxuU7VQ4xCnAwKvHwOog+CBRiTSwr rsw9xCjBwawkwpv9FyjEm5JYWZValB9fVJqTWnyIkYmDU6qBcff6zL31hs8vHN0jzliRu2an 3BV/wflVXypuGk59/u50tepU/RXGsy3P5Nybu55/uhr7bMHWPp7LE609r/m8av76LPHJnwq2 GKZLBuJpny7u+dg+W1pg0WeeR9v2fHv+f1ulhMzq9wd/X70V+T/dMUqD83DR+d8ZCaH2sy8w NOg6Hl295JTupyYlluKMREMt5qLiRAAV+icvggIAAA==
Cc: "karp@ietf.org" <karp@ietf.org>
Subject: [karp] Proposal on securing PCEP by means of TLS
X-BeenThere: karp@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Discussion list for key management for routing and transport protocols <karp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/karp>, <mailto:karp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/karp>
List-Post: <mailto:karp@ietf.org>
List-Help: <mailto:karp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/karp>, <mailto:karp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 13 Jul 2013 11:55:37 -0000

Hi,

Oscar and I have prepared a draft on applying TLS to PCEP security:

8<---
Filename:        draft-lopez-pcp-pceps
Revision:        00
Title:           Secure Transport for PCEP
Creation date:   2013-07-10
Group:           Individual Submission
Number of pages: 8
URL:             http://www.ietf.org/internet-drafts/draft-lopez-pcp-pceps-00.txt
Status:          http://datatracker.ietf.org/doc/draft-lopez-pcp-pceps
Htmlized:        http://tools.ietf.org/html/draft-lopez-pcp-pceps-00


Abstract:
  The Path Computation Element Communication Protocol (PCEP) defines
  the mechanisms for the communication between a client and a PCE, or
  among PCEs.  This document describe the usage of Transport Layer
  Security to enhance PCEP security, hence the PCEPS acronym proposed
  for it.  The additional security mechanisms are provided by the
  transport protocol supporting PCEP, and therefore they do not affect
  its flexibility and extensibility.

8<---

Comments and contributions will be extremely welcome.

As you can expect, we'd like to have the opportunity to present and discuss it in Berlin.

Be goode


--
"Esta vez no fallaremos, Doctor Infierno"

Dr Diego R. Lopez
Telefonica I+D
http://people.tid.es/diego.lopez/

e-mail: diego@tid.es
Tel:    +34 913 129 041
Mobile: +34 682 051 091
-----------------------------------------


________________________________

Este mensaje se dirige exclusivamente a su destinatario. Puede consultar nuestra política de envío y recepción de correo electrónico en el enlace situado más abajo.
This message is intended exclusively for its addressee. We only send and receive email on the basis of the terms set out at:
http://www.tid.es/ES/PAGINAS/disclaimer.aspx