Re: CGA-based HoA generation for MIP6 (was RE: [Mipshop] Review of draft-arkko-mipshop-cga-cba-04)

Jari Arkko <jari.arkko@piuha.net> Tue, 15 August 2006 12:38 UTC

Message-ID: <44E1C024.8020103@piuha.net>
Date: Tue, 15 Aug 2006 15:37:56 +0300
From: Jari Arkko <jari.arkko@piuha.net>
User-Agent: Mozilla Thunderbird 1.0.8 (X11/20060725)
MIME-Version: 1.0
To: Christian Vogt <chvogt@tm.uka.de>
Subject: Re: CGA-based HoA generation for MIP6 (was RE: [Mipshop] Review of draft-arkko-mipshop-cga-cba-04)
References: <C24CB51D5AA800449982D9BCB903251311A60A@NAEX13.na.qualcomm.com> <44E1AB09.2070904@tm.uka.de>
In-Reply-To: <44E1AB09.2070904@tm.uka.de>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
Cc: mipshop@ietf.org
Precedence: list
Errors-To: mipshop-bounces@ietf.org

Christian Vogt wrote:

>From a security perspective, I don't currently see a requirement for the
>HA to know that the HoA is CGA-based, given that all MN-HA security is
>IPsec-based:
>
Agreed.

>From a practical standpoint, there may be a benefit for the HA to know
>that the MN's HoA is CGA-based. 
>  
>
Its possible to design mechanisms that employ the same
tools also for the home agent registrations, or use the
help of the home agent in the RO process. Such mechanisms
would likely have some advantages. OTOH, there is also
some value in keeping the two RO and HA registration
mechanisms separate. E.g., you don't have to sync HA and
MN code updates. IKEv2, auth option, and RFC 3776 all
can support CGAs, though some with extra config effort.

--Jari


_______________________________________________
Mipshop mailing list
Mipshop@ietf.org
https://www1.ietf.org/mailman/listinfo/mipshop

[Mipshop] Review of draft-arkko-mipshop-cga-cba-04 Narayanan, Vidya
Re: [Mipshop] Review of draft-arkko-mipshop-cga-c… Wassim Haddad
RE: [Mipshop] Review of draft-arkko-mipshop-cga-c… Narayanan, Vidya
[Mipshop] Review of draft-arkko-mipshop-cga-cba-04 Lakshminath Dondeti
RE: [Mipshop] Review of draft-arkko-mipshop-cga-c… Narayanan, Vidya
Re: [Mipshop] Review of draft-arkko-mipshop-cga-c… Christian Vogt
Re: [Mipshop] Review of draft-arkko-mipshop-cga-c… Christian Vogt
Flooding Attacks and MIP6 (was RE: [Mipshop] Revi… Narayanan, Vidya
CGA-based HoA generation for MIP6 (was RE: [Mipsh… Narayanan, Vidya
Re: Flooding Attacks and MIP6 (was RE: [Mipshop] … Jari Arkko
RE: CGA-based HoA generation for MIP6 (was RE: [M… Narayanan, Vidya
RE: Flooding Attacks and MIP6 (was RE: [Mipshop] … Narayanan, Vidya
Re: CGA-based HoA generation for MIP6 (was RE: [M… Jari Arkko
Re: Flooding Attacks and MIP6 (was RE: [Mipshop] … Vijay Devarapalli
RE: Flooding Attacks and MIP6 (was RE: [Mipshop] … Narayanan, Vidya
Re: Flooding Attacks and MIP6 (was RE: [Mipshop] … Christian Vogt
Re: Flooding Attacks and MIP6 (was RE: [Mipshop] … Christian Vogt
Re: CGA-based HoA generation for MIP6 (was RE: [M… Christian Vogt
Re: CGA-based HoA generation for MIP6 (was RE: [M… Jari Arkko
Re: CGA-based HoA generation for MIP6 (was RE: [M… Lakshminath Dondeti
RE: CGA-based HoA generation for MIP6 (was RE: [M… Narayanan, Vidya
RE: CGA-based HoA generation for MIP6 (was RE: [M… Wassim Haddad
Re: CGA-based HoA generation for MIP6 (was RE: [M… Christian Vogt
Re: CGA-based HoA generation for MIP6 (was RE: [M… Lakshminath Dondeti
Re: Flooding Attacks and MIP6 (was RE: [Mipshop] … Jari Arkko
Re: CGA-based HoA generation for MIP6 (was RE: [M… Christian Vogt
Re: CGA-based HoA generation for MIP6 (was RE: [M… Christian Vogt
Re: CGA-based HoA generation for MIP6 (was RE: [M… Vijay Devarapalli
RE: Flooding Attacks and MIP6 (was RE: [Mipshop] … Narayanan, Vidya
RE: Flooding Attacks and MIP6 (was RE: [Mipshop] … Christian Vogt
RE: Flooding Attacks and MIP6 (was RE: [Mipshop] … Narayanan, Vidya