IETF Logo Mail Archive

Re: [Roll] draft-ietf-roll-security-framework returned to working group.

Abdussalam Baryun <abdussalambaryun@gmail.com> Thu, 23 August 2012 07:53 UTC

Return-Path: <abdussalambaryun@gmail.com>
X-Original-To: roll@ietfa.amsl.com
Delivered-To: roll@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E88D521F84A1; Thu, 23 Aug 2012 00:53:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.491
X-Spam-Level:
X-Spam-Status: No, score=-3.491 tagged_above=-999 required=5 tests=[AWL=0.108, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lzejpgyoRCsM; Thu, 23 Aug 2012 00:53:02 -0700 (PDT)
Received: from mail-vb0-f44.google.com (mail-vb0-f44.google.com [209.85.212.44]) by ietfa.amsl.com (Postfix) with ESMTP id 486C921F854C; Thu, 23 Aug 2012 00:53:02 -0700 (PDT)
Received: by vbbez10 with SMTP id ez10so534076vbb.31 for <multiple recipients>; Thu, 23 Aug 2012 00:53:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=DVMPzZ04l7bJgbmRALkuV5GUvEFavdwg95BJAX2vZ6o=; b=vs7at4FZMjvfqblv6vNnMvzikYxc6N7iBjhOAXcw9lbHkUdGzA/Mmrl2wtBnkkLhGh oi1yWtFGLiBidizSGQ17oLtLMve/8bS5agbYPUIh/j7rnKv8yYPLH6y4Jq9RO1Psfofe zd+rkFcjEYfIpU1Ny01TPjMV9O0cwXIJsuJkR4BVuiHMFCMKf5MJdb5g2QfMx3tkWf60 EXFdEsapcdnJXJ6GRtDqoyLHiLuArFrdhIr1A2g5nP1/615gtFkiv0k05ErllkMpftOd nFrpjlMzfRrCE9InUq7COisNWWoH/Jq7OhJo7FO0RQBezKyQFKI1Fk63j8gGv+RMYUwp Or/w==
MIME-Version: 1.0
Received: by 10.220.37.194 with SMTP id y2mr491686vcd.44.1345708381716; Thu, 23 Aug 2012 00:53:01 -0700 (PDT)
Received: by 10.220.55.9 with HTTP; Thu, 23 Aug 2012 00:53:01 -0700 (PDT)
In-Reply-To: <CADnDZ88DjMgG52mpVbiPX3KzFuU3VoGD0BDi5sau0fdnNja+bA@mail.gmail.com>
References: <110101cd7d74$71d47600$557d6200$@olddog.co.uk> <CADnDZ8_RhhEurG=EAJR7-MTP6nC7zLtH47wpb7yOmoxpjhk87A@mail.gmail.com> <27653.1345402476@sandelman.ca> <CADnDZ88DjMgG52mpVbiPX3KzFuU3VoGD0BDi5sau0fdnNja+bA@mail.gmail.com>
Date: Thu, 23 Aug 2012 09:53:01 +0200
Message-ID: <CADnDZ8_ZC1OL8qqQOhtQn9OneuAVUf-NAm7qeu88DfUgKgTsTA@mail.gmail.com>
From: Abdussalam Baryun <abdussalambaryun@gmail.com>
To: roll <roll@ietf.org>
Content-Type: text/plain; charset="ISO-8859-1"
Cc: "iesg@ietf.org" <iesg@ietf.org>
Subject: Re: [Roll] draft-ietf-roll-security-framework returned to working group.
X-BeenThere: roll@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Routing Over Low power and Lossy networks <roll.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/roll>, <mailto:roll-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/roll>
List-Post: <mailto:roll@ietf.org>
List-Help: <mailto:roll-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/roll>, <mailto:roll-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 23 Aug 2012 07:53:03 -0000

The last comments on this return
========================
IESG Discuss> 20-01-2011> I think this is a really good document, and
support its publication. I am specifically concerned about punting the
details on public key
distribution, then finding they are not covered here either. Did I get
the wrong document?  Where are those issues going to be addressed?

I agree that it provide good information as long we don't relate it to
another document or another purpose, and happy that you support
publication. I agree that it has not covered that security technique
purpose, but I think this draft can be base for future
specification/standard that will cover the issue refered to. I
recommend thoes issues are going to be addressed in a RPL-Security
standard I-D. Please not that there is no harm in passing this draft,
but it will encourage progress/efforts. If there was a harm in passing
the draft please reply.

IESG Discuss>05-05-2011> I believe that the core of AD's discuss is
that there is no specification for how the authenticated mode of
roll-rpl is to
be done, and specifically using public key based mechanisms
for key distribution.

If there was a harm in passing the draft please inform. This draft is
an *informational* not a standard track that may be why it does not
specify RPL authentication. This draft is a good introduction to a
future standard I-D.

IESG Discuss> 05-05-2011> I'd be happy to clear were there to be a
good specification of how to do e.g. a signature based authenticated
mode, or
a public key based way to distribute keys for an
authenticated mode, or even a kerberos-like way to
distribute secret keys for an authenticated mode. While this
will all be optional to implement, its absence is really
not consistent with bcp107.

I recommend a work either to be doing above request in an I-D
(standard) within Security Area (not in Routing Area) or in an I-D
(standard) that relates totally to RPL as RPL-Sec (standard) in this
WG.

Best Regards
AB

v2.23.0 | Report a Bug | By Email