IETF Logo Mail Archive

Re: [OPSEC] Adoption Call: draft-gont-opsec-ipv6-addressing

Dhruv Dhody <dhruv.ietf@gmail.com> Tue, 02 May 2023 18:57 UTC

Return-Path: <dhruv.ietf@gmail.com>
X-Original-To: opsec@ietfa.amsl.com
Delivered-To: opsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DE6E3C151553; Tue, 2 May 2023 11:57:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.095
X-Spam-Level:
X-Spam-Status: No, score=-2.095 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QFATwTlfKN9n; Tue, 2 May 2023 11:57:31 -0700 (PDT)
Received: from mail-vk1-xa34.google.com (mail-vk1-xa34.google.com [IPv6:2607:f8b0:4864:20::a34]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 56B17C14CE22; Tue, 2 May 2023 11:57:31 -0700 (PDT)
Received: by mail-vk1-xa34.google.com with SMTP id 71dfb90a1353d-4404c674cefso1267849e0c.2; Tue, 02 May 2023 11:57:31 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20221208; t=1683053850; x=1685645850; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=I5W4vfJK7dkkb5cyUeDWUB8A3ivbLsokdI+eJupvnck=; b=rFGqdLkRQ9KCYpm1pYzeGG2BaOoT8CWTwjcK5DGc4tKy0fTz586w7GuhGgDsesT7x3 GcZXQOWzIPxElkYno4xTkliLZYshgu06LCmw8488sbWDJ5mvsCc+vE2I06TRC963Y8t8 Fv/LZy6vDO7XY1A2QC2HgcUZLU77lcsPm47ZFTSpG9g2+cts/PCQkYexvVETCilCQasA +otWrV7YWuJKh9zK8yUqmtCn3Jc9gZjcSzYaltyvUc8u+wKjd40GZn77siUplXRADOMi VMCOWqajXpPLuxyAA2qPe04I8c6VvlFh61SMzec8ZMVZD/r3PLbfMUq65O/722rhfrwb 7thQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1683053850; x=1685645850; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=I5W4vfJK7dkkb5cyUeDWUB8A3ivbLsokdI+eJupvnck=; b=O7UF2RiROPjMw4AtSQ1Qv87U9u8x9FM9K3fRpVr5ZNTrmFwx2fu5sJ0aZfOB5E+Nm0 tC5WHMXnEC+a1snO20GIZlh1SV3tQ1a2J20YtE9vRW16cWz3anfNv7uUH3INlS53X64M JpUCMH/5rJTL6fTMgqCkL0ajJ9etLDsNu0mDdSElrFQra7qy3lzU2VP2qE3pX9Zx/UZK YUlqXBfcs1GQFDHvu7fBfzLo64LaOme5t3KPYkpWQ+VLJags1oHEo6PpkAdRyWpqJk2S BbZemm21u3K0Hyvk3ejum8ofvzXnV+j+pdGnzUACjVIrEYws+KCFC5yEYFSfPWvXGWEq OYLg==
X-Gm-Message-State: AC+VfDzfwf1HOF5G2WCYDpXpuGIQpfdP2ujMB5GE0ZffAX0RQ58UeAVL Czi6Vx/xOPTxr2mdnGCXtvAFjMQI5wad1JXasjAihf2o
X-Google-Smtp-Source: ACHHUZ41+pKaNQkizwORrqE1peLw4NRqjsXKpUBxm3TT9kjW4gY1TZBOetWW4im1TlRWlbqKn7d+QqFZqY7tZiwm7U4=
X-Received: by 2002:a67:bc12:0:b0:42f:e7f3:923f with SMTP id t18-20020a67bc12000000b0042fe7f3923fmr506104vsn.13.1683053849786; Tue, 02 May 2023 11:57:29 -0700 (PDT)
MIME-Version: 1.0
References: <CAFU7BATDr25meXdUnOGHoWGhDjAU93sGb4FUPtK5PtVi41PZfg@mail.gmail.com> <C0864591-2C3A-4ED3-9ABF-47DF76C5B350@cisco.com> <c102fdba-2c52-6060-718d-a96c7a7086ff@si6networks.com> <49A543FB-7008-4774-8FB4-D4D321E1B69B@cisco.com>
In-Reply-To: <49A543FB-7008-4774-8FB4-D4D321E1B69B@cisco.com>
From: Dhruv Dhody <dhruv.ietf@gmail.com>
Date: Wed, 03 May 2023 00:26:53 +0530
Message-ID: <CAB75xn6tYPepZxTvunj6p+1RrtKFETXv=R_oCD8xT4K2d6QosA@mail.gmail.com>
To: Fernando Gont <fgont@si6networks.com>
Cc: opsec WG <opsec@ietf.org>, OpSec Chairs <opsec-chairs@ietf.org>, "draft-gont-opsec-ipv6-addressing@ietf.org" <draft-gont-opsec-ipv6-addressing@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000dae74505faba8239"
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsec/m4q_-F6TnJHkPLs1nJKRq7qlKGI>
Subject: Re: [OPSEC] Adoption Call: draft-gont-opsec-ipv6-addressing
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsec/>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 May 2023 18:57:32 -0000

Hi,

I support adoption!

Some Nits -
- Expand SLAAC
- s/each prefix advertised advertised for address/each prefix advertised
for address/
- add reference for Kubernetes and IPv6-enabled VPNs
- s/since sunch IPv6 prefix/since such IPv6 prefix/
- suggest using their instead of his/her

Thanks!
Dhruv



On Mon, Apr 10, 2023 at 5:52 PM Eric Vyncke (evyncke) <evyncke=
40cisco.com@dmarc.ietf.org> wrote:

> Hello Fernando,
>
> No problem at all of course, we all work to improve the security of the
> Internet (which is obviously IPv6 ;-) )
>
> Cheers
>
> -éric
>
> On 10/04/2023, 09:28, "Fernando Gont" <fgont@si6networks.com <mailto:
> fgont@si6networks.com>> wrote:
>
>
> Hello, Eric,
>
>
> On 8/4/23 02:13, Eric Vyncke (evyncke) wrote:
> > May I suggest that this draft, at the bare minimum, has RFC 9099 (an
> > OPSEC document) in its references list? Notably because the draft
> > sections about network correlation is already addressed in RFC 9099
> > section 2.6 and others.
>
>
> This was my bad '' this )and other references) is in our TO-DO list for
> the next rev.
>
>
> Thanks!
>
>
> Fernando
>
>
>
>
>
>
>
>
> --
> Fernando Gont
> SI6 Networks
> e-mail: fgont@si6networks.com <mailto:fgont@si6networks.com>
> PGP Fingerprint: F242 FF0E A804 AF81 EB10 2F07 7CA1 321D 663B B494
>
>
>
> _______________________________________________
> OPSEC mailing list
> OPSEC@ietf.org
> https://www.ietf.org/mailman/listinfo/opsec
>

v2.23.0 | Report a Bug | By Email