Re: [Roll] security solutions for ROLL
"Tsao, Tzeta" <Tzeta.Tsao@cooperindustries.com> Fri, 24 February 2012 15:11 UTC
Return-Path: <prvs=39461a1b7=Tzeta.Tsao@cooperindustries.com>
X-Original-To: roll@ietfa.amsl.com
Delivered-To: roll@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D3B8721F8800 for <roll@ietfa.amsl.com>; Fri, 24 Feb 2012 07:11:23 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.599
X-Spam-Level:
X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OwRKzVRYc5NO for <roll@ietfa.amsl.com>; Fri, 24 Feb 2012 07:11:16 -0800 (PST)
Received: from cooperlighting-sw.cooperlighting.com (cooperlighting-sw.cooperlighting.com [216.130.131.68]) by ietfa.amsl.com (Postfix) with ESMTP id 2F7AC21F8816 for <roll@ietf.org>; Fri, 24 Feb 2012 07:11:11 -0800 (PST)
Authentication-Results: cooperlighting-sw.cooperlighting.com; dkim=neutral (message not signed) header.i=none
X-IronPort-AV: E=Sophos;i="4.73,475,1325480400"; d="scan'208";a="43215197"
Received: from cipt0175.nam.ci.root ([10.132.108.175]) by cooperlighting-sw.cooperlighting.com with ESMTP; 24 Feb 2012 10:11:08 -0500
Received: from EVS2.NAM.CI.ROOT ([10.132.108.170]) by cipt0175.NAM.CI.ROOT with Microsoft SMTPSVC(6.0.3790.4675); Fri, 24 Feb 2012 10:11:07 -0500
X-MimeOLE: Produced By Microsoft Exchange V6.5
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Date: Fri, 24 Feb 2012 10:10:48 -0500
Message-ID: <85A23E0910B2FB4B8EF60D0888CB083648C30D@EVS2.nam.ci.root>
In-Reply-To: <30931.1330033889@marajade.sandelman.ca>
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Thread-Topic: [Roll] security solutions for ROLL
Thread-Index: AczydVIZBzSKCdpiTLe2PTxTTVc9CwAkAcbA
References: <30931.1330033889@marajade.sandelman.ca>
From: "Tsao, Tzeta" <Tzeta.Tsao@cooperindustries.com>
To: Michael Richardson <mcr+ietf@sandelman.ca>, roll@ietf.org
X-OriginalArrivalTime: 24 Feb 2012 15:11:07.0796 (UTC) FILETIME=[88D5AD40:01CCF306]
Subject: Re: [Roll] security solutions for ROLL
X-BeenThere: roll@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Routing Over Low power and Lossy networks <roll.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/roll>, <mailto:roll-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/roll>
List-Post: <mailto:roll@ietf.org>
List-Help: <mailto:roll-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/roll>, <mailto:roll-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 24 Feb 2012 15:11:25 -0000
Michael, WG: My understanding of the DISCUSS on the security framework draft is that it seeks to address the perceived lack of key management for RPL. However, the second item in your post seems to go beyond that; is it a set of questions to justify the use or non-use of RPL security, for example? Please clarify. Thanks, Tzeta > -----Original Message----- > From: roll-bounces@ietf.org [mailto:roll-bounces@ietf.org] On Behalf Of > Michael Richardson > Sent: Thursday, February 23, 2012 4:51 PM > To: roll@ietf.org > Subject: [Roll] security solutions for ROLL > > > 1) there is an Security AD DISCUSS from Stephen Farrell/Tim Polk. > http://datatracker.ietf.org/doc/draft-ietf-roll-security- > framework/ballot/#stephen-farrell > It has been there for 9 months, and we need to act on it, because > this DISCUSS is keeping draft-ietf-roll-of0-20 from advancing, > and that will keep draft-ietf-roll-rpl-19 from being published. > > So to be clear, this chain of dependancies/references means that while > rpl-19 has been done for some time, it won't get published until we do > something. > > Stephen Farrell will lift his DISCUSS on this and let us proceed if he > sees some credible plan to get useable security into the layer-3 of > RPL. > > For a lot of you, you have assumed security at layer-2 is enough, and > you may never care about this mechanism, but I still need your > participation here. > > 2) We will need to provide, in the draft-ietf-roll-security-framework, > a clear set of security related *questions* that each applicability > statement will need to answer. In esssence, this is a template > that needs to be filled out. > > 3) A proposal for moving forward is to adopt/adapt MIKEY > (RFC3830) for our uses. > This has been proposed in: > draft-alexander-roll-mikey-lln-key-mgmt > > This draft needs to be resubmitted for the WG to consider it. > (A rumour is that it can be found at: > http://tools.ietf.org/id/draft-alexander-roll-mikey-lln-key-mgmt- > 02.txt > ) > > The WG is open to other proposals, but they need to come in quickly. > We do not need to complete the work, but we do need to know what work > we need to do, and we need to update our milestones to include that > work in order that we can progress. > > -- > ] He who is tired of Weird Al is tired of life! | > firewalls [ > ] Michael Richardson, Sandelman Software Works, Ottawa, ON |net > architect[ > ] mcr@sandelman.ottawa.on.ca http://www.sandelman.ottawa.on.ca/ |device > driver[ > Kyoto Plus: watch the video > <http://www.youtube.com/watch?v=kzx1ycLXQSE> > then sign the petition.
- [Roll] security solutions for ROLL Michael Richardson
- Re: [Roll] security solutions for ROLL Levente Buttyan
- Re: [Roll] security solutions for ROLL Tsao, Tzeta
- Re: [Roll] security solutions for ROLL Michael Richardson
- Re: [Roll] security solutions for ROLL Michael Richardson