[mpls] Ask for comments: New draft notification: draft-zheng-mpls-ldp-hello-crypto-auth
Vero Zheng <verozheng@huawei.com> Mon, 11 October 2010 02:12 UTC
Return-Path: <verozheng@huawei.com>
X-Original-To: mpls@core3.amsl.com
Delivered-To: mpls@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 6D1103A68A9 for <mpls@core3.amsl.com>; Sun, 10 Oct 2010 19:12:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.054
X-Spam-Level:
X-Spam-Status: No, score=-2.054 tagged_above=-999 required=5 tests=[AWL=-1.560, BAYES_00=-2.599, FH_RELAY_NODNS=1.451, HELO_MISMATCH_COM=0.553, HTML_MESSAGE=0.001, RDNS_NONE=0.1]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8WXGEDFxJlzG for <mpls@core3.amsl.com>; Sun, 10 Oct 2010 19:12:39 -0700 (PDT)
Received: from szxga03-in.huawei.com (unknown [119.145.14.66]) by core3.amsl.com (Postfix) with ESMTP id 0F82F3A68A8 for <mpls@ietf.org>; Sun, 10 Oct 2010 19:12:39 -0700 (PDT)
Received: from huawei.com (szxga03-in [172.24.2.9]) by szxga03-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTP id <0LA300DPQSUQOQ@szxga03-in.huawei.com> for mpls@ietf.org; Mon, 11 Oct 2010 10:13:38 +0800 (CST)
Received: from z50128a ([10.110.98.60]) by szxga03-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTPA id <0LA300LCSSUMNK@szxga03-in.huawei.com> for mpls@ietf.org; Mon, 11 Oct 2010 10:13:38 +0800 (CST)
Date: Mon, 11 Oct 2010 10:13:33 +0800
From: Vero Zheng <verozheng@huawei.com>
In-reply-to: <BBA8913F1B2BDA43A022D5D7F48A1E441F6153@XMB-RCD-202.cisco.com>
To: mpls@ietf.org
Message-id: <9AF32C3445514116B1E7715A4CA5B848@z50128a>
MIME-version: 1.0
X-MIMEOLE: Produced By Microsoft MimeOLE V14.0.8064.206
X-Mailer: Microsoft Windows Live Mail 14.0.8064.206
Content-type: multipart/alternative; boundary="Boundary_(ID_Dm0VzExyKjbMfFY7qyR2lw)"
Importance: Normal
X-Priority: 3
X-MSMail-priority: Normal
References: <BBA8913F1B2BDA43A022D5D7F48A1E441F6153@XMB-RCD-202.cisco.com>
Subject: [mpls] Ask for comments: New draft notification: draft-zheng-mpls-ldp-hello-crypto-auth
X-BeenThere: mpls@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Multi-Protocol Label Switching WG <mpls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/mpls>, <mailto:mpls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/mpls>
List-Post: <mailto:mpls@ietf.org>
List-Help: <mailto:mpls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mpls>, <mailto:mpls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Oct 2010 02:12:40 -0000
Hi All, We have submitted a new "LDP Hello Cryptographic Authentication" draft, The URL for it is: http://tools.ietf.org/id/draft-zheng-mpls-ldp-hello-crypto-auth-00.txt Unlike all other LDP messages, the Hello messages are sent using UDP not TCP. This means that they cannot benefit from the security mechanisms available with TCP. [RFC5036] does not provide any security mechanisms for use with Hello messages except to note that some configuration may help protect against bogus discovery events. In this draft, we introduce a new Cryptographic Authentication TLV which is used in LDP Hello message as an optional parameter. It enhances the authentication mechanism for LDP by securing the Hello message against spoofing attack, and an LSR can be configured to only accept Hello messages from specific peers when authentication is in use. Looking forward to your comments. BR, Mach and Vero
- [mpls] draft-ietf-mpls-ip-options-02 David Smith (djsmith)
- [mpls] Ask for comments: New draft notification: … Vero Zheng
- Re: [mpls] Ask for comments: New draft notificati… Mach Chen