Re: [Roll] [roll] #156 (security-threats): draft-ietf-roll-security-threats-06 - RPL control message are broadcast

"roll issue tracker" <trac+roll@trac.tools.ietf.org> Thu, 08 May 2014 17:41 UTC

Return-Path: <trac+roll@trac.tools.ietf.org>
X-Original-To: roll@ietfa.amsl.com
Delivered-To: roll@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4F52A1A00D8 for <roll@ietfa.amsl.com>; Thu, 8 May 2014 10:41:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.551
X-Spam-Level:
X-Spam-Status: No, score=-2.551 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.651] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dJat8T6a8GNx for <roll@ietfa.amsl.com>; Thu, 8 May 2014 10:41:58 -0700 (PDT)
Received: from grenache.tools.ietf.org (grenache.tools.ietf.org [IPv6:2a01:3f0:1:2::30]) by ietfa.amsl.com (Postfix) with ESMTP id CEF671A00C0 for <roll@ietf.org>; Thu, 8 May 2014 10:41:57 -0700 (PDT)
Received: from localhost ([127.0.0.1]:34296 helo=grenache.tools.ietf.org ident=www-data) by grenache.tools.ietf.org with esmtp (Exim 4.80) (envelope-from <trac+roll@trac.tools.ietf.org>) id 1WiSKJ-0002H6-RR; Thu, 08 May 2014 19:41:47 +0200
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: "roll issue tracker" <trac+roll@trac.tools.ietf.org>
X-Trac-Version: 0.12.3
Precedence: bulk
Auto-Submitted: auto-generated
X-Mailer: Trac 0.12.3, by Edgewall Software
To: mcr@sandelman.ca
X-Trac-Project: roll
Date: Thu, 08 May 2014 17:41:47 -0000
X-URL: http://tools.ietf.org/wg/roll/
X-Trac-Ticket-URL: http://trac.tools.ietf.org/wg/roll/trac/ticket/156#comment:2
Message-ID: <082.0367236fdb23eda5092cfe4a62b90562@trac.tools.ietf.org>
References: <067.c601d465cb4dd279e545d31290863daf@trac.tools.ietf.org>
X-Trac-Ticket-ID: 156
In-Reply-To: <067.c601d465cb4dd279e545d31290863daf@trac.tools.ietf.org>
X-SA-Exim-Connect-IP: 127.0.0.1
X-SA-Exim-Rcpt-To: mcr@sandelman.ca, robert.cragie@gridmerge.com, roll@ietf.org
X-SA-Exim-Mail-From: trac+roll@trac.tools.ietf.org
X-SA-Exim-Scanned: No (on grenache.tools.ietf.org); SAEximRunCond expanded to false
Archived-At: http://mailarchive.ietf.org/arch/msg/roll/nPjW-q5SF1g7Qz7wHlpR0Eu805M
Cc: roll@ietf.org
Subject: Re: [Roll] [roll] #156 (security-threats): draft-ietf-roll-security-threats-06 - RPL control message are broadcast
X-BeenThere: roll@ietf.org
X-Mailman-Version: 2.1.15
Reply-To: roll@ietf.org
List-Id: Routing Over Low power and Lossy networks <roll.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/roll>, <mailto:roll-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/roll/>
List-Post: <mailto:roll@ietf.org>
List-Help: <mailto:roll-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/roll>, <mailto:roll-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 May 2014 17:41:59 -0000

#156: draft-ietf-roll-security-threats-06 - RPL control message are broadcast


Comment (by mcr@sandelman.ca):

 A layer-2 symmetric key that has been shared between more than two nodes
 can not be used to
 provide data origin authentication.  That's the problem with
 broadcast/multicast messages and
 layer-2 keying.
 It works fine if you have complete trust in all of the nodes that have the
 layer-2 key.
 If you haven't got complete trust in all the nodes, then an asymmetric
 (layer-3) key needs to sign the broadcast messages.

-- 
---------------------------------------+-------------------------------
 Reporter:  mariainesrobles@gmail.com  |       Owner:  mcr@sandelman.ca
     Type:  defect                     |      Status:  assigned
 Priority:  major                      |   Milestone:
Component:  security-threats           |     Version:
 Severity:  In WG Last Call            |  Resolution:
 Keywords:                             |
---------------------------------------+-------------------------------

Ticket URL: <http://trac.tools.ietf.org/wg/roll/trac/ticket/156#comment:2>
roll <http://tools.ietf.org/wg/roll/>