Re: [Roll] Ralph Droms' Discuss on draft-ietf-roll-of0-15: (with DISCUSS and COMMENT)
Ralph Droms <rdroms.ietf@gmail.com> Tue, 09 August 2011 16:22 UTC
Return-Path: <rdroms.ietf@gmail.com>
X-Original-To: roll@ietfa.amsl.com
Delivered-To: roll@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5D6AE21F8CC2; Tue, 9 Aug 2011 09:22:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -103.382
X-Spam-Level:
X-Spam-Status: No, score=-103.382 tagged_above=-999 required=5 tests=[AWL=0.217, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id d2AxV2HEESeH; Tue, 9 Aug 2011 09:22:48 -0700 (PDT)
Received: from mail-qy0-f179.google.com (mail-qy0-f179.google.com [209.85.216.179]) by ietfa.amsl.com (Postfix) with ESMTP id 7C6A521F856C; Tue, 9 Aug 2011 09:22:48 -0700 (PDT)
Received: by qyk35 with SMTP id 35so90237qyk.10 for <multiple recipients>; Tue, 09 Aug 2011 09:23:17 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=subject:mime-version:content-type:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to:x-mailer; bh=Wya+0AnszqhHVNo3imerf5fLeTWIf/W5tUMEcwoRS5M=; b=wwtluXDFbIQBQBRYer7WcF62ubl9FCi+eN5ZlsYV8HJyyhHTQHJ3gyTFIO+4Q1YFB2 +nYqrZJO68wc1sfMgowRoWaXhyev2TsSYGK0ZKz22pP5rP78YUW+cEOgJGozlbp+tPfO FT8U7JjMWvCJgsFlGu97igpnMwvMXF07eRsgg=
Received: by 10.229.29.71 with SMTP id p7mr1640479qcc.226.1312906997235; Tue, 09 Aug 2011 09:23:17 -0700 (PDT)
Received: from [161.44.65.173] ([161.44.65.173]) by mx.google.com with ESMTPS id k14sm49320qct.45.2011.08.09.09.23.15 (version=TLSv1/SSLv3 cipher=OTHER); Tue, 09 Aug 2011 09:23:16 -0700 (PDT)
Mime-Version: 1.0 (Apple Message framework v1084)
Content-Type: text/plain; charset="us-ascii"
From: Ralph Droms <rdroms.ietf@gmail.com>
In-Reply-To: <2982.1312901544@marajade.sandelman.ca>
Date: Tue, 09 Aug 2011 12:23:14 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <73AD8D4B-A9F9-49EC-A8C3-07BAA3924943@gmail.com>
References: <20110808232350.30897.61741.idtracker@ietfa.amsl.com> <2982.1312901544@marajade.sandelman.ca>
To: draft-ietf-roll-of0@tools.ietf.org
X-Mailer: Apple Mail (2.1084)
Cc: roll@ietf.org, The IESG <iesg@ietf.org>, roll-chairs@tools.ietf.org
Subject: Re: [Roll] Ralph Droms' Discuss on draft-ietf-roll-of0-15: (with DISCUSS and COMMENT)
X-BeenThere: roll@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Routing Over Low power and Lossy networks <roll.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/roll>, <mailto:roll-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/roll>
List-Post: <mailto:roll@ietf.org>
List-Help: <mailto:roll-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/roll>, <mailto:roll-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Aug 2011 16:22:49 -0000
On Aug 9, 2011, at 10:52 AM 8/9/11, Michael Richardson wrote: > >>>>>> "Ralph" == Ralph Droms <rdroms.ietf@gmail.com> writes: > Ralph> 5. In section 4.2.1, what does it mean to "validate a > Ralph> router"? Why would a router that passes validation > Ralph> ("succeeded that validation process") only be "preferable"? > > I think, it refers to rpl-19 section 3.2.3, to the "authenticated" mode. > This mode is completely unworkable with asymmetric crypto. I guess I > need to write an ID that explains this better. Pascal - can you confirm that section 4.2.1 refers to rpl-19 section 3.2.3? - Ralph > The reason why an authenticated router is only preferred is because the > node might need to get online in order to actually validate things. Any > node which will pass enough traffic so that a new node can validate some > certificate chain is good enough. > > While a new node can do all manner of DOS attacks to prevent the > prospective node from validating some security properties, none of them > (if you trust your crypto) are worse than having the prospective node > find itself without any network. > > -- > ] He who is tired of Weird Al is tired of life! | firewalls [ > ] Michael Richardson, Sandelman Software Works, Ottawa, ON |net architect[ > ] mcr@sandelman.ottawa.on.ca http://www.sandelman.ottawa.on.ca/ |device driver[ > Kyoto Plus: watch the video <http://www.youtube.com/watch?v=kzx1ycLXQSE> > then sign the petition.
- [Roll] Ralph Droms' Discuss on draft-ietf-roll-of… Ralph Droms
- Re: [Roll] Ralph Droms' Discuss on draft-ietf-rol… Pascal Thubert (pthubert)
- Re: [Roll] Ralph Droms' Discuss on draft-ietf-rol… Michael Richardson
- Re: [Roll] Ralph Droms' Discuss on draft-ietf-rol… Ralph Droms
- Re: [Roll] Ralph Droms' Discuss on draft-ietf-rol… Ralph Droms
- Re: [Roll] Ralph Droms' Discuss on draft-ietf-rol… Pascal Thubert (pthubert)
- Re: [Roll] Ralph Droms' Discuss on draft-ietf-rol… Pascal Thubert (pthubert)
- Re: [Roll] Ralph Droms' Discuss on draft-ietf-rol… Michael Richardson
- Re: [Roll] Ralph Droms' Discuss on draft-ietf-rol… Tsao, Tzeta