Re: [mpls] would the WG like to adopt draft-farrelll-mpls-opportunistic-encrypt?
Stephen Farrell <stephen.farrell@cs.tcd.ie> Thu, 23 April 2015 09:48 UTC
Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: mpls@ietfa.amsl.com
Delivered-To: mpls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AA3231A905C for <mpls@ietfa.amsl.com>; Thu, 23 Apr 2015 02:48:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.21
X-Spam-Level:
X-Spam-Status: No, score=-4.21 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id z3Qlc5Is80vr for <mpls@ietfa.amsl.com>; Thu, 23 Apr 2015 02:48:51 -0700 (PDT)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BCE801A9082 for <mpls@ietf.org>; Thu, 23 Apr 2015 02:48:38 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 923FCBE32; Thu, 23 Apr 2015 10:48:37 +0100 (IST)
X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HK9sQSDd9yVg; Thu, 23 Apr 2015 10:48:36 +0100 (IST)
Received: from [10.87.48.73] (unknown [86.42.29.198]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id D7D54BECC; Thu, 23 Apr 2015 10:48:35 +0100 (IST)
Message-ID: <5538BFF3.8030701@cs.tcd.ie>
Date: Thu, 23 Apr 2015 10:48:35 +0100
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.6.0
MIME-Version: 1.0
To: Loa Andersson <loa@pi.nu>, "mpls@ietf.org" <mpls@ietf.org>
References: <5530F834.40002@cs.tcd.ie> <5538BE10.60706@pi.nu>
In-Reply-To: <5538BE10.60706@pi.nu>
OpenPGP: id=D66EA7906F0B897FB2E97D582F3C8736805F8DA2; url=
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/mpls/UpR235RNrl97FlO1PWaVEmhzSTM>
Subject: Re: [mpls] would the WG like to adopt draft-farrelll-mpls-opportunistic-encrypt?
X-BeenThere: mpls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Multi-Protocol Label Switching WG <mpls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mpls>, <mailto:mpls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/mpls/>
List-Post: <mailto:mpls@ietf.org>
List-Help: <mailto:mpls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mpls>, <mailto:mpls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 23 Apr 2015 09:48:52 -0000
Hiya, On 23/04/15 10:40, Loa Andersson wrote: > Working Group, > > <chair hat off> > > I've read the draft (a while ago) and I think this document is within > the wg charter and should be progressed by the mpls wg. > > (chair hat on> > > If I hear nothing to the contrary I will start the process with > mpls-rt review, IPR poll and wg adoption poll first week of May. Thanks Loa. I'm not entirely familiar with the mpls-rt review but one issue on which I think some detailed requirements-level guidance would be useful for me is on whether this ought stick with "classic" integer DH or move to a more modern DH approach based on curve 25519. If you have reviewers who are familiar with the issues there and with MPLS performance and implementation requirements that'd be good. If not, I'm happy to try explain the pros and cons from the security and crypto POV, either to the reviewers or the list. And that can be done post-adoption on the list if that's better too, but it'd be a good thing to bottom out early-ish in the WG process. > There has been some comments, but I think those are address. Please > read and comment on the draft. Yes, I think we've addressed the substantive comments we've so far seen. Cheers, S. > > /Loa > > > > On 2015-04-17 14:10, Stephen Farrell wrote: >> >> Hiya, >> >> Adrian and I wrote up [1]. How'd the WG feel about adopting >> that? If you did, I'd be willing to continue editing if you >> wanted. So consider this as a request that the WG take on >> this work. >> >> In case it helps, the current abstract is: >> >> " >> This document describes a way to apply opportunistic security >> between adjacent nodes on an MPLS Label Switched Path (LSP) or >> between end points of an LSP. It explains how keys may be agreed >> to enable encryption, and how key identifiers are exchanged in >> encrypted MPLS packets. Finally, this document describes the >> applicability of this approach to opportunistic security in MPLS >> networks with an indication of the level of improved security as >> well as the continued vulnerabilities. >> >> This document does not describe security for MPLS control plane >> protocols. >> " >> >> Cheers, >> S. >> >> [1] https://tools.ietf.org/html/draft-farrelll-mpls-opportunistic-encrypt >> >> _______________________________________________ >> mpls mailing list >> mpls@ietf.org >> https://www.ietf.org/mailman/listinfo/mpls >> >
- [mpls] would the WG like to adopt draft-farrelll-… Stephen Farrell
- Re: [mpls] would the WG like to adopt draft-farre… Loa Andersson
- Re: [mpls] would the WG like to adopt draft-farre… Stephen Farrell
- Re: [mpls] would the WG like to adopt draft-farre… Loa Andersson