Re: [Manet-dt] MANET packet security
"Ian Chakeres" <ian.chakeres@gmail.com> Tue, 18 April 2006 15:19 UTC
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com)
by megatron.ietf.org with esmtp (Exim 4.43)
id 1FVrz1-0006u2-Nd; Tue, 18 Apr 2006 11:19:15 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org)
by megatron.ietf.org with esmtp (Exim 4.43) id 1FVryz-0006tx-Uk
for manet-dt@ietf.org; Tue, 18 Apr 2006 11:19:13 -0400
Received: from nz-out-0102.google.com ([64.233.162.205])
by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1FVryy-0004wl-NO
for manet-dt@ietf.org; Tue, 18 Apr 2006 11:19:13 -0400
Received: by nz-out-0102.google.com with SMTP id x3so753515nzd
for <manet-dt@ietf.org>; Tue, 18 Apr 2006 08:19:12 -0700 (PDT)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com;
h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references;
b=WZYNDO+RwQqvlzh2+e0iiuSx2m5s1mh+aDyro0msdMNsD40Us0O7tLJHW2x91d8guMUyD/O0O0Nplv43lzXk86ORAexCpZhQhgwhHefGQRew2sBf/YP64R765PFL2kWPYTGfQu77JlXxe4swqYc1KLiZY9njY6evdRVo6mq2bJo=
Received: by 10.36.89.10 with SMTP id m10mr1695855nzb;
Tue, 18 Apr 2006 08:19:11 -0700 (PDT)
Received: by 10.37.18.44 with HTTP; Tue, 18 Apr 2006 08:19:11 -0700 (PDT)
Message-ID: <374005f30604180819t7b50cd35l70124e7ddee5a2e0@mail.gmail.com>
Date: Tue, 18 Apr 2006 08:19:11 -0700
From: "Ian Chakeres" <ian.chakeres@gmail.com>
To: "Dearlove, Christopher (UK)" <chris.dearlove@baesystems.com>
Subject: Re: [Manet-dt] MANET packet security
In-Reply-To: <C1DE3C7469FE5A4D95F9BF0F332D8B8D02263E88@glkms0008>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
References: <C1DE3C7469FE5A4D95F9BF0F332D8B8D02263E88@glkms0008>
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 82c9bddb247d9ba4471160a9a865a5f3
Cc: manet-dt@ietf.org
X-BeenThere: manet-dt@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: MANET Design Team <manet-dt.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/manet-dt>,
<mailto:manet-dt-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/manet-dt>
List-Post: <mailto:manet-dt@ietf.org>
List-Help: <mailto:manet-dt-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/manet-dt>,
<mailto:manet-dt-request@ietf.org?subject=subscribe>
Errors-To: manet-dt-bounces@ietf.org
draft-fenner-zinin-rtg-standard-reqts-01.txt
4.1. Requirements for Proposed Standard
<snip>
3. The security architecture of the protocol must be set forth
explicitly. The security architecture must include mechanisms
for authenticating protocol messages and may include other forms
of protection.
I'm unsure how we can achieve this requirement without something like
what I described.
Chris, if you know how we can fulfil this requirement in another way -
I am open to doing it.
Ian
I agree with you Chris that should something be created, it should
live in another document.
On 4/18/06, Dearlove, Christopher (UK) <chris.dearlove@baesystems.com> wrote:
>
> > I think the base specs of our MANET protocols should include a
> > mechanism to secure packets, that is authenticate the source, as well
> > as ensure the contents of the packet have not been modified, replayed,
> > etc.
>
> If we want to achieve a timescale anything like that which the MANET
> WG is chartered for, I do not agree. Of course we must ensure that
> the capability to add this is possible - and message (and packet for
> those who want hop by hop rather than end to end) TLVs provide this.
> But trying to standardise a mechanism in the base spec, I would be
> strongly against - and I'm coming from a background which would want
> such a mechanism (but maybe not the one devised).
>
> > If we need to do this type of procedure, I think it should probably
> > live with the packetBB document or another BB document. What do you
> > think?
>
> Now that's different. If someone wants to work on a separate building
> block that is compatible with the formats and functions of the
> protocols,
> fine - except for issues of whether it's a MANET WG item, and if not
> ought to stay author draft. Calling it up in a Standards Track RFC
> (DYMO, OLSRv2, maybe SMF) would be problematic of course.
>
>
> ********************************************************************
> This email and any attachments are confidential to the intended
> recipient and may also be privileged. If you are not the intended
> recipient please delete it from your system and notify the sender.
> You should not copy it or use it for any purpose nor disclose or
> distribute its contents to any other person.
> ********************************************************************
>
_______________________________________________
Manet-dt mailing list
Manet-dt@ietf.org
https://www1.ietf.org/mailman/listinfo/manet-dt
- [Manet-dt] MANET packet security Ian Chakeres
- RE: [Manet-dt] MANET packet security Dearlove, Christopher (UK)
- Re: [Manet-dt] MANET packet security Ian Chakeres
- RE: [Manet-dt] MANET packet security Dearlove, Christopher (UK)