IETF Logo Mail Archive

Re: [MEXT] Reviews of draft-korhonen-mext-mip6-altsec

Behcet Sarikaya <behcetsarikaya@yahoo.com> Fri, 15 October 2010 18:42 UTC

Return-Path: <behcetsarikaya@yahoo.com>
X-Original-To: mext@core3.amsl.com
Delivered-To: mext@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 3CED13A6CF0 for <mext@core3.amsl.com>; Fri, 15 Oct 2010 11:42:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.812
X-Spam-Level:
X-Spam-Status: No, score=-0.812 tagged_above=-999 required=5 tests=[AWL=-0.989, BAYES_00=-2.599, SARE_FWDLOOK=1.666, SARE_LWFORWARD=1.11]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pqaM5wzVP8TS for <mext@core3.amsl.com>; Fri, 15 Oct 2010 11:42:09 -0700 (PDT)
Received: from nm16.bullet.mail.sp2.yahoo.com (nm16.bullet.mail.sp2.yahoo.com [98.139.91.86]) by core3.amsl.com (Postfix) with SMTP id 414F93A684F for <mext@ietf.org>; Fri, 15 Oct 2010 11:42:09 -0700 (PDT)
Received: from [98.139.91.67] by nm16.bullet.mail.sp2.yahoo.com with NNFMP; 15 Oct 2010 18:43:28 -0000
Received: from [98.139.91.1] by tm7.bullet.mail.sp2.yahoo.com with NNFMP; 15 Oct 2010 18:43:28 -0000
Received: from [127.0.0.1] by omp1001.mail.sp2.yahoo.com with NNFMP; 15 Oct 2010 18:43:28 -0000
X-Yahoo-Newman-Property: ymail-3
X-Yahoo-Newman-Id: 292055.26243.bm@omp1001.mail.sp2.yahoo.com
Received: (qmail 58120 invoked by uid 60001); 15 Oct 2010 18:43:27 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1287168207; bh=sisVAbD2Q+RO0Tj5Q2oUOfKsLSd9D5xdz525x+Cmv8k=; h=Message-ID:X-YMail-OSG:Received:X-Mailer:References:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=eOHZCb2rwVfoQvhUlQ2XImmMZrUCTVXI4vyR/VyLRM00eBBjNfwDTykpNzTvpTXiJTDD4n4FJF1RMfncouLXbNYRqOGH6HqiNLLWxLzKdcgU9m3D8NqeD0l09jPzBgvOOzCrgewf7kPn5x/c3mDWGYWWeBsUO/Aszcj3p2Od+9c=
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:X-YMail-OSG:Received:X-Mailer:References:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=jcCxTOfHU07iNbID45Q7dvH+NmYECLuJUVapFwt6An663aSzKv6CfPXatFut7Oj7A5W2ax4XNIXbtioBcpEVxfL4QpZISD1QlfH4Lac0JVkihPzUWGPiEQ0/bDcAf6W+MkR46lmPfFMn0dfAOhThBZ+X/iyAbrMWndMNvdFgLjk=;
Message-ID: <688232.57301.qm@web111414.mail.gq1.yahoo.com>
X-YMail-OSG: n6Qw1LoVM1lNICUaMAu62ucGIr6QDiogUzZJ.0UMB9fzdaJ 4jNB6CDnXvSSjfSE8xHkgrqfEa0Of6x4muLk1eq_TdmpAmt.KauVzl.qTpCY w0bnFNdX1aMVEOI8n4NpU5FxaH9AVhjZ51jV2MhqOHH1oSbzUJ5BEMfX.oe9 DROd0gQpUPrvk1PSnue_bn0fZjE_E1N6eZxDaGsxUxoF54zUiO.MJmNtQLGe weJKIMtQKjnSqcZP_AJdo6vI0JNGhNyj1EIcAfl56yWLxiQ_iLq1.Urvj3l5 9jbGZIY7gNwJS9ML6Xq43vKsjX31g8U.DItZKFmdCPuiYMB2VNGuirBbBGUZ Dpa4gR26a4C_Oc1_DlTwFtF8O3Q--
Received: from [206.16.17.212] by web111414.mail.gq1.yahoo.com via HTTP; Fri, 15 Oct 2010 11:43:27 PDT
X-Mailer: YahooMailRC/504.5 YahooMailWebService/0.8.106.282862
References: <4CB69A0A.2030503@it.uc3m.es> <C8DC72CF.63CC%sgundave@cisco.com> <BF345F63074F8040B58C00A186FCA57F29F4468AFC@NALASEXMB04.na.qualcomm.com> <4CB744B4.7070109@it.uc3m.es>
Date: Fri, 15 Oct 2010 11:43:27 -0700
From: Behcet Sarikaya <behcetsarikaya@yahoo.com>
To: marcelo bagnulo braun <marcelo@it.uc3m.es>, "Laganier, Julien" <julienl@qualcomm.com>
In-Reply-To: <4CB744B4.7070109@it.uc3m.es>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Cc: Jari Arkko <jari.arkko@piuha.net>, "mext@ietf.org" <mext@ietf.org>
Subject: Re: [MEXT] Reviews of draft-korhonen-mext-mip6-altsec
X-BeenThere: mext@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
Reply-To: Behcet Sarikaya <sarikaya@ieee.org>
List-Id: Mobile IPv6 EXTensions WG <mext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/mext>, <mailto:mext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/mext>
List-Post: <mailto:mext@ietf.org>
List-Help: <mailto:mext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mext>, <mailto:mext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 15 Oct 2010 18:42:10 -0000

Hi Marcelo,
  
  From SDO point of view, I think that WiMAX already adopted RFC 4285 
(Authentication option) and
3GPP is happy with IPSec. 

This new experimental security mechanism is looking for a place to go. I hope it 
does find one.

Regards,

Behcet



----- Original Message ----
> From: marcelo bagnulo braun <marcelo@it.uc3m.es>
> To: "Laganier, Julien" <julienl@qualcomm.com>
> Cc: "mext@ietf.org" <mext@ietf.org>; Jari Arkko <jari.arkko@piuha.net>
> Sent: Thu, October 14, 2010 12:58:12 PM
> Subject: Re: [MEXT] Reviews of draft-korhonen-mext-mip6-altsec
> 
>   I agree with all Julien stated.
> Just one more comment.
> 
> I  personally would be interested to understand for each new proposed 
> solution,  what would be the interoperability plan with the current 
> solutions. I mean,  it could be as simple as: " we assume that all nodes 
> in the network  implement the new solution", but maybe there is something 
> more into it (e.g.  the HA will support multiple security mechanisms, and 
> the MNs will support  only one).
> I think it would be worth doing the exercise.
> 
> Regards,  marcelo
> 
> El 14/10/10 19:04, Laganier, Julien escribió:
> >  Sri,
> >
> > Sri Gundavelli wrote:
> >>  Marcelo/Julien:
> >>
> >> Clarifying question ?
> >  Sure.
> >
> >> Given that, this (Alternative Security Mechanisms for  MIPv6) is now a
> >> chartered work item under experimental category,  wondering about the
> >> future and the relation of the candidate  solution with two existing 
>security
> >> mechanisms, before we spin one  more.
> > To be exact: we do not spin one more, we are spinning more  experimental 
>mechanisms, to experiment with security model alternatives. There  might be one 
>more, two more, etc. It all depends on what the WG think is worth  experimenting 
>with.
> >
> >> We have IPsec, a normative standard,  Authentication Option, an
> >> informative standard, and hopefully a  perfect new solution as an 
>experimental
> >> standard.
> > To be  exact: RFC 4285 (Authentication option) does not specify an Internet 
>standard of  any kind.
> >
> >> So, what is the evolution plan, if we love this  new experimental
> >> standard and MIP deployments get adopted and phase  out GTP in 3GPP, will 
>this
> >> get promoted to be an informational  standard or a normative standard ? :)
> > Any new experimental RFC that the  WG publish will define an Experimental 
>Protocol for the Internet  community.  It will not specify an Internet standard 
>of any  kind.
> >
> > As a result of the experiment, if one of the proposals is  considered 
>successful we might consider progressing it on the standard  track.
> >
> >> Secondly, for Auth-Opt to be considered an  alternative security
> >> mechanism, since that is some what black listed  with that famous IESG note, 
>will
> >> it be a demotion or a promotion to  get that under this Experimental 
>standard,
> >> from informational  standard with a red dot. :)
> > Since neither experimental RFCs not  informational RFC defines Internet 
>standard or any kind, there does not seem to  be a huge difference. However from 
>my perspective the experimental status  highlights that an experiment is ongoing 
>and thus that at some point the results  can be evaluated by the community.
> >
> >> Just curious, we will  surely have excellent interoperability between
> >> vendors. Its better  to put few forward looking statements around this
> >> work, else it will  confuse the hell out of every one.
> > Standard wise there is no reason for  anyone to be confused. IPsec remains 
>the standard track, mandatory to implement  security mechanism that guarantees 
>interoperability.
> >
> >  --julien
> >
> 
> _______________________________________________
> MEXT  mailing list
> MEXT@ietf.org
> https://www.ietf.org/mailman/listinfo/mext
>

v2.23.0 | Report a Bug | By Email