IETF Logo Mail Archive

Re: [rrg] RRG recommendation

Christian Vogt <christian.vogt@ericsson.com> Mon, 07 December 2009 03:54 UTC

Return-Path: <christian.vogt@ericsson.com>
X-Original-To: rrg@core3.amsl.com
Delivered-To: rrg@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 5C29F3A67F9 for <rrg@core3.amsl.com>; Sun, 6 Dec 2009 19:54:54 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.581
X-Spam-Level:
X-Spam-Status: No, score=-6.581 tagged_above=-999 required=5 tests=[AWL=0.018, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id m9eVcMY8uC6Y for <rrg@core3.amsl.com>; Sun, 6 Dec 2009 19:54:53 -0800 (PST)
Received: from imr2.ericy.com (imr2.ericy.com [198.24.6.3]) by core3.amsl.com (Postfix) with ESMTP id 93E103A67B3 for <rrg@irtf.org>; Sun, 6 Dec 2009 19:54:53 -0800 (PST)
Received: from eusaamw0707.eamcs.ericsson.se ([147.117.20.32]) by imr2.ericy.com (8.13.1/8.13.1) with ESMTP id nB73sqqd001592; Sun, 6 Dec 2009 21:54:59 -0600
Received: from EUSAACMS0701.eamcs.ericsson.se ([169.254.1.137]) by eusaamw0707.eamcs.ericsson.se ([147.117.20.32]) with mapi; Sun, 6 Dec 2009 22:54:37 -0500
From: Christian Vogt <christian.vogt@ericsson.com>
To: Patrick Frejborg <pfrejborg@gmail.com>
Date: Sun, 06 Dec 2009 22:55:45 -0500
Thread-Topic: [rrg] RRG recommendation
Thread-Index: Acp28P63U0EqWMV2RD6ONYEY7jlSVg==
Message-ID: <0448B683-ADEB-4EAD-9D22-758793420EBA@ericsson.com>
References: <20091201210223.E6F476BE5D4@mercury.lcs.mit.edu> <4B15926C.1000403@gmail.com> <5bc37fd40912022335k3b82222dl3bb93bbe970c7e9@mail.gmail.com>
In-Reply-To: <5bc37fd40912022335k3b82222dl3bb93bbe970c7e9@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "rrg@irtf.org" <rrg@irtf.org>, Noel Chiappa <jnc@mercury.lcs.mit.edu>
Subject: Re: [rrg] RRG recommendation
X-BeenThere: rrg@irtf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IRTF Routing Research Group <rrg.irtf.org>
List-Unsubscribe: <http://www.irtf.org/mailman/listinfo/rrg>, <mailto:rrg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/rrg>
List-Post: <mailto:rrg@irtf.org>
List-Help: <mailto:rrg-request@irtf.org?subject=help>
List-Subscribe: <http://www.irtf.org/mailman/listinfo/rrg>, <mailto:rrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Mon, 07 Dec 2009 03:54:54 -0000

Patte -

> Both SCTP and MPTCP uses a 32-bit tag/token to provide a low level
> security mechanism, in most cases it is good enough (e.g. web
> browsing) - that is at least what the transport folks has concluded
> (my interpretation)
> 
> And shim6 people have concluded that CGA or HBA must be used.
> 
> Why this conflict -  is it due to that IPsec is mandatory in IPv6 and
> similar security must be available in shim6?

No, it is just a different tradeoff between security and complexity.

Note, though, that CGA/HBA alone cannot replace a random-token exchange, 
as an attacker could generate a CGA/HBA at which it is not reachable.

- Christian

v2.29.0 | Report a Bug | By Email | System Status