[pim] WG Query: draft-atwood-pim-sm-linklocal-00.txt
JW Atwood <bill@cse.concordia.ca> Thu, 21 October 2004 14:32 UTC
Received: from megatron.ietf.org (megatron.ietf.org [132.151.6.71]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA06269 for <pim-archive@lists.ietf.org>; Thu, 21 Oct 2004 10:32:24 -0400 (EDT)
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1CKdqz-0001tP-T9; Thu, 21 Oct 2004 10:23:45 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1CKdjG-00052W-7e for pim@megatron.ietf.org; Thu, 21 Oct 2004 10:15:47 -0400
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA03595 for <pim@ietf.org>; Thu, 21 Oct 2004 10:15:43 -0400 (EDT)
Received: from perseverance-96.encs.concordia.ca ([132.205.96.94] helo=perseverance.encs.concordia.ca ident=root) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1CKdvs-00042P-ED for pim@ietf.org; Thu, 21 Oct 2004 10:28:49 -0400
Received: from cse.concordia.ca (root@fir.cs.concordia.ca [132.205.45.147]) by perseverance.encs.concordia.ca (8.12.11/8.12.11) with ESMTP id i9LEFh8D025126 for <pim@ietf.org>; Thu, 21 Oct 2004 10:15:43 -0400
Message-ID: <4177C48F.6090906@cse.concordia.ca>
Date: Thu, 21 Oct 2004 10:15:43 -0400
From: JW Atwood <bill@cse.concordia.ca>
Organization: Concordia University, Department of Computer Science and Software Engineering
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.4) Gecko/20030624 Netscape/7.1 (ax)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: pim@ietf.org
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Scanned-By: MIMEDefang 2.43 on perseverance.encs.concordia.ca at 2004/10/21 10:15:43 EDT
X-Spam-Score: 0.0 (/)
X-Scan-Signature: cab78e1e39c4b328567edb48482b6a69
Content-Transfer-Encoding: 7bit
Subject: [pim] WG Query: draft-atwood-pim-sm-linklocal-00.txt
X-BeenThere: pim@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Protocol Independent Multicast <pim.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/pim>, <mailto:pim-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:pim@ietf.org>
List-Help: <mailto:pim-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/pim>, <mailto:pim-request@ietf.org?subject=subscribe>
Sender: pim-bounces@ietf.org
Errors-To: pim-bounces@ietf.org
Content-Transfer-Encoding: 7bit
An Internet-Draft titled "Security Issues in PIM-SM Link-local Messages"
has been posted to the Internet-Drafts directory. We believe that the
issues discussed in this draft are pertinent to the current
Internet-Draft for PIM-SM, and to the PIM-SM Working Group. The PIM-SM
draft has acquired a significant amount of material on security issues,
but is hampered by prohibitions in RFC 2402. Correct and meaningful use
of IPsec AH for PIM-SM link-local messages will have to be addressed
either within the current Internet-Draft, or as soon as the proposed
modifications to the Authentication Header (draft-ietf-ipsec-rfc2402bis)
are accepted by the IESG.
We therefore respectfully request that the draft be made a Working Group
document.
Bill Atwood
Salekul Islam
The abstract is as follows:
This document proposes some modifications to the Internet-Draft for
Protocol Independent Multicast - Sparse Mode (PIM-SM) Protocol
regarding security issues of its link-local messages. To protect
these link-local messages, in the Internet-Draft for PIM-SM a
security mechanism has been proposed that uses the IPsec
Authentication Header (AH) protocol. While using IPsec AH protocol,
the anti-replay mechanism has been disabled. This compromise makes
PIM-SM vulnerable to Denial of Service (DoS) attack. In this
document, a new proposal is presented to protect PIM link-local
messages while activating the anti-replay mechanism as well. This
proposal builds on the new Security Association lookup method that
has been specified in the Internet-Draft that revises the AH
protocol.
--
Dr. J.W. Atwood, Eng., Professor tel: +1 (514) 848-2424 x3046
Department of Computer Science fax: +1 (514) 848-2830
and Software Engineering
Concordia University LB927-9 email: bill@cse.Concordia.ca
1455 de Maisonneuve Blvd. West http: //www.cse.Concordia.ca/~bill
Montreal, Quebec Canada H3G 1M8
_______________________________________________
pim mailing list
pim@ietf.org
https://www1.ietf.org/mailman/listinfo/pim