IETF Logo Mail Archive

[TICTOC] Review request for IPsec security for packet based synchronization (Yang Cui)

Cui Yang <cuiyang@huawei.com> Mon, 19 September 2011 01:41 UTC

Return-Path: <cuiyang@huawei.com>
X-Original-To: tictoc@ietfa.amsl.com
Delivered-To: tictoc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0F9C221F8B71; Sun, 18 Sep 2011 18:41:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.251
X-Spam-Level:
X-Spam-Status: No, score=-5.251 tagged_above=-999 required=5 tests=[AWL=1.348, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9dAdJEfIaPt8; Sun, 18 Sep 2011 18:41:14 -0700 (PDT)
Received: from szxga01-in.huawei.com (szxga01-in.huawei.com [119.145.14.64]) by ietfa.amsl.com (Postfix) with ESMTP id 55BCC21F8B6D; Sun, 18 Sep 2011 18:41:14 -0700 (PDT)
Received: from huawei.com (szxga05-in [172.24.2.49]) by szxga05-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTP id <0LRQ006UTY1ZN5@szxga05-in.huawei.com>; Mon, 19 Sep 2011 09:41:59 +0800 (CST)
Received: from szxrg02-dlp.huawei.com ([172.24.2.119]) by szxga05-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTP id <0LRQ005EOY1Y71@szxga05-in.huawei.com>; Mon, 19 Sep 2011 09:41:58 +0800 (CST)
Received: from szxeml205-edg.china.huawei.com ([172.24.2.119]) by szxrg02-dlp.huawei.com (MOS 4.1.9-GA) with ESMTP id ADT38429; Mon, 19 Sep 2011 09:41:58 +0800
Received: from SZXEML409-HUB.china.huawei.com (10.82.67.136) by szxeml205-edg.china.huawei.com (172.24.2.57) with Microsoft SMTP Server (TLS) id 14.1.270.1; Mon, 19 Sep 2011 09:41:56 +0800
Received: from SZXEML508-MBS.china.huawei.com ([169.254.6.65]) by szxeml409-hub.china.huawei.com ([10.82.67.136]) with mapi id 14.01.0270.001; Mon, 19 Sep 2011 09:41:52 +0800
Date: Mon, 19 Sep 2011 01:41:51 +0000
From: Cui Yang <cuiyang@huawei.com>
X-Originating-IP: [10.108.64.159]
To: "ipsec@ietf.org" <ipsec@ietf.org>
Message-id: <8CC0CB0BCAE52F46882E17828A9AE21606C71723@SZXEML508-MBS.china.huawei.com>
MIME-version: 1.0
Content-type: text/plain; charset="us-ascii"
Content-language: zh-CN
Content-transfer-encoding: 7bit
Accept-Language: zh-CN, en-US
Thread-topic: Review request for IPsec security for packet based synchronization (Yang Cui)
Thread-index: Acx2bU0nGnMbOv0GSKWyrWTZm9gvcw==
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
X-CFilter-Loop: Reflected
Cc: "TICTOC@ietf.org" <TICTOC@ietf.org>
Subject: [TICTOC] Review request for IPsec security for packet based synchronization (Yang Cui)
X-BeenThere: tictoc@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Timing over IP Connection and Transfer of Clock BOF <tictoc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tictoc>, <mailto:tictoc-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tictoc>
List-Post: <mailto:tictoc@ietf.org>
List-Help: <mailto:tictoc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tictoc>, <mailto:tictoc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Sep 2011 01:41:15 -0000

Dear IPsec experts,
cc TICTOC WG

May I make a review request for the draft on
"IPsec security for packet based synchronization"

http://datatracker.ietf.org/doc/draft-xu-tictoc-ipsec-security-for-synchronization/

Abstract:
Cellular networks often use Internet standard technologies to handle
   synchronization.  This document defines an extension based on WESP.
   Usually, several traffic flows are carried in one IPsec tunnel, for
   some applications, such as, 1588 or NTP, the packets need to be
   identified after IPsec encryption to handle specially.  In order to
   achieve high scalability in implement, a separate IPsec tunnel will
   not be established for some special traffic.  This document analyses
   the need for security methods for synchronization messages
   distributed over the Internet.  This document also gives a solution
   on how to mark the synchronization message when IPSec is implemented
   in end to end frequency synchronization."

This work is proposed in TICTOC WG, but closely related to the IPsec security issues in synchronization.
We would like to get advices from security experts.

Any comments will be highly appreciated.
Thanks!

Best regards,
--
  Yang Cui
  Huawei Technologies
  cuiyang@huawei.com

v2.23.0 | Report a Bug | By Email