[Roll] security solutions for ROLL
Michael Richardson <mcr+ietf@sandelman.ca> Thu, 23 February 2012 21:51 UTC
Return-Path: <mcr@sandelman.ca>
X-Original-To: roll@ietfa.amsl.com
Delivered-To: roll@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A3E4421F8838 for <roll@ietfa.amsl.com>; Thu, 23 Feb 2012 13:51:32 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.465
X-Spam-Level:
X-Spam-Status: No, score=-0.465 tagged_above=-999 required=5 tests=[BAYES_05=-1.11, HOST_MISMATCH_NET=0.311, IP_NOT_FRIENDLY=0.334]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4Q9Im4NP2nzp for <roll@ietfa.amsl.com>; Thu, 23 Feb 2012 13:51:31 -0800 (PST)
Received: from relay.sandelman.ca (relay.cooperix.net [67.23.6.41]) by ietfa.amsl.com (Postfix) with ESMTP id C205521F879C for <roll@ietf.org>; Thu, 23 Feb 2012 13:51:31 -0800 (PST)
Received: from marajade.sandelman.ca (unknown [132.213.238.4]) by relay.sandelman.ca (Postfix) with ESMTPS id 55C7E344AE for <roll@ietf.org>; Thu, 23 Feb 2012 16:49:06 -0500 (EST)
Received: by marajade.sandelman.ca (Postfix, from userid 179) id 200B59827B; Thu, 23 Feb 2012 16:51:29 -0500 (EST)
Received: from marajade.sandelman.ca (localhost [127.0.0.1]) by marajade.sandelman.ca (Postfix) with ESMTP id 18C7398182 for <roll@ietf.org>; Thu, 23 Feb 2012 16:51:29 -0500 (EST)
From: Michael Richardson <mcr+ietf@sandelman.ca>
To: roll@ietf.org
X-Mailer: MH-E 8.3; nmh 1.3-dev; XEmacs 21.4 (patch 22)
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha1"; protocol="application/pgp-signature"
Date: Thu, 23 Feb 2012 16:51:29 -0500
Message-ID: <30931.1330033889@marajade.sandelman.ca>
Sender: mcr@sandelman.ca
Subject: [Roll] security solutions for ROLL
X-BeenThere: roll@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Routing Over Low power and Lossy networks <roll.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/roll>, <mailto:roll-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/roll>
List-Post: <mailto:roll@ietf.org>
List-Help: <mailto:roll-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/roll>, <mailto:roll-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 23 Feb 2012 21:51:32 -0000
1) there is an Security AD DISCUSS from Stephen Farrell/Tim Polk. http://datatracker.ietf.org/doc/draft-ietf-roll-security-framework/ballot/#stephen-farrell It has been there for 9 months, and we need to act on it, because this DISCUSS is keeping draft-ietf-roll-of0-20 from advancing, and that will keep draft-ietf-roll-rpl-19 from being published. So to be clear, this chain of dependancies/references means that while rpl-19 has been done for some time, it won't get published until we do something. Stephen Farrell will lift his DISCUSS on this and let us proceed if he sees some credible plan to get useable security into the layer-3 of RPL. For a lot of you, you have assumed security at layer-2 is enough, and you may never care about this mechanism, but I still need your participation here. 2) We will need to provide, in the draft-ietf-roll-security-framework, a clear set of security related *questions* that each applicability statement will need to answer. In esssence, this is a template that needs to be filled out. 3) A proposal for moving forward is to adopt/adapt MIKEY (RFC3830) for our uses. This has been proposed in: draft-alexander-roll-mikey-lln-key-mgmt This draft needs to be resubmitted for the WG to consider it. (A rumour is that it can be found at: http://tools.ietf.org/id/draft-alexander-roll-mikey-lln-key-mgmt-02.txt ) The WG is open to other proposals, but they need to come in quickly. We do not need to complete the work, but we do need to know what work we need to do, and we need to update our milestones to include that work in order that we can progress. -- ] He who is tired of Weird Al is tired of life! | firewalls [ ] Michael Richardson, Sandelman Software Works, Ottawa, ON |net architect[ ] mcr@sandelman.ottawa.on.ca http://www.sandelman.ottawa.on.ca/ |device driver[ Kyoto Plus: watch the video <http://www.youtube.com/watch?v=kzx1ycLXQSE> then sign the petition.
- [Roll] security solutions for ROLL Michael Richardson
- Re: [Roll] security solutions for ROLL Levente Buttyan
- Re: [Roll] security solutions for ROLL Tsao, Tzeta
- Re: [Roll] security solutions for ROLL Michael Richardson
- Re: [Roll] security solutions for ROLL Michael Richardson