IETF Logo Mail Archive

Re: [Tsvwg] Adopting draft-behringer-tsvwg-rsvp-security-groupkeying as WG item?

Brian Weis <bew@cisco.com> Tue, 29 January 2008 13:09 UTC

Return-path: <tsvwg-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1JJqDH-0001YO-AW; Tue, 29 Jan 2008 08:09:19 -0500
Received: from tsvwg by megatron.ietf.org with local (Exim 4.43) id 1JJYFt-0006RE-JX for tsvwg-confirm+ok@megatron.ietf.org; Mon, 28 Jan 2008 12:58:49 -0500
Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1JJYFs-0006R5-NQ for tsvwg@ietf.org; Mon, 28 Jan 2008 12:58:48 -0500
Received: from sj-iport-5.cisco.com ([171.68.10.87]) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1JJYFs-0003uY-8s for tsvwg@ietf.org; Mon, 28 Jan 2008 12:58:48 -0500
X-IronPort-AV: E=Sophos;i="4.25,260,1199692800"; d="scan'208";a="10201967"
Received: from sj-dkim-2.cisco.com ([171.71.179.186]) by sj-iport-5.cisco.com with ESMTP; 28 Jan 2008 09:58:47 -0800
Received: from sj-core-1.cisco.com (sj-core-1.cisco.com [171.71.177.237]) by sj-dkim-2.cisco.com (8.12.11/8.12.11) with ESMTP id m0SHwlWa014096; Mon, 28 Jan 2008 09:58:47 -0800
Received: from xbh-sjc-221.amer.cisco.com (xbh-sjc-221.cisco.com [128.107.191.63]) by sj-core-1.cisco.com (8.12.10/8.12.6) with ESMTP id m0SHwj3l014215; Mon, 28 Jan 2008 17:58:47 GMT
Received: from xfe-sjc-212.amer.cisco.com ([171.70.151.187]) by xbh-sjc-221.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Mon, 28 Jan 2008 09:58:43 -0800
Received: from [10.32.244.210] ([10.32.244.210]) by xfe-sjc-212.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Mon, 28 Jan 2008 09:58:42 -0800
In-Reply-To: <A268781D-F81A-48B3-8042-1892AC93B749@nokia.com>
References: <47974BDB.70406@ericsson.com> <CD8D57B6-EB94-4DCE-A42A-02BC5F573A13@nokia.com> <7A1BB0E8-5EFB-4341-918A-F841DB1B57FF@cisco.com> <A268781D-F81A-48B3-8042-1892AC93B749@nokia.com>
Mime-Version: 1.0 (Apple Message framework v753)
Content-Type: text/plain; charset="US-ASCII"; delsp="yes"; format="flowed"
Message-Id: <E603EB77-B600-4A73-9217-EB797A5D7AAB@cisco.com>
Content-Transfer-Encoding: 7bit
From: Brian Weis <bew@cisco.com>
Subject: Re: [Tsvwg] Adopting draft-behringer-tsvwg-rsvp-security-groupkeying as WG item?
Date: Mon, 28 Jan 2008 09:58:47 -0800
To: Lars Eggert <lars.eggert@nokia.com>
X-Mailer: Apple Mail (2.753)
X-OriginalArrivalTime: 28 Jan 2008 17:58:42.0564 (UTC) FILETIME=[6B458440:01C861D7]
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; l=2171; t=1201543127; x=1202407127; c=relaxed/simple; s=sjdkim2002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=bew@cisco.com; z=From:=20Brian=20Weis=20<bew@cisco.com> |Subject:=20Re=3A=20[Tsvwg]=20Adopting=20draft-behringer-ts vwg-rsvp-security-groupkeying=20as=20WG=20item? |Sender:=20; bh=P2cbhRpYObGN53fVBJ6Kniughu4/bZYCEA9JfuRLRiQ=; b=aEXbqUZXAry9jEFAjCH3nnorq8wXttL0/hPtjBin7OPFTeQp2uL6OKwR0T ZinJ1CeoFRSdaAZoWCyScL1MBjW5gHihqXidU/ztLHYfCLYlbhoUwesshzJX V6zlCSZM1t;
Authentication-Results: sj-dkim-2; header.From=bew@cisco.com; dkim=pass ( sig from cisco.com/sjdkim2002 verified; );
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 4d87d2aa806f79fed918a62e834505ca
X-Mailman-Approved-At: Tue, 29 Jan 2008 08:09:18 -0500
Cc: ext Magnus Westerlund <magnus.westerlund@ericsson.com>, RJ Atkinson <rja@extremenetworks.com>, tsvwg list IETF <tsvwg@ietf.org>
X-BeenThere: tsvwg@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Transport Area Working Group <tsvwg.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:tsvwg@ietf.org>
List-Help: <mailto:tsvwg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=subscribe>
Errors-To: tsvwg-bounces@ietf.org

Hi Lars,

On Jan 28, 2008, at 2:26 AM, Lars Eggert wrote:

> Hi,
>
> On 2008-1-28, at 11:59, ext Francois Le Faucheur IMAP wrote:
>> On 24 Jan 2008, at 18:04, Lars Eggert wrote:
>>
>>> (individual hat on)
>>>
>>> I'm not convinced that this document needs to be a TSVWG  
>>> document. It's an Informational document that surveys group  
>>> keying options for RSVP, and as such could be published directly  
>>> through the RFC Editor.
>>
>> I am not aware of any solution currently available from the IETF  
>> to actually deploy such distribution of group keys for RSVP.
>> This could, for example, be easily achieved with small extensions  
>> to GDOI (draft-weis-gdoi-for-rsvp), but a solution will only be  
>> defined in IETF (e.g. by MSEC) if the corresponding need is  
>> established by the TSVWG.
>
> based on the discussions in Vancouver, I thought the goal of this  
> document was to survey the options for group keying for RSVP. I  
> don't see how such a survey would motivate the need for any sort of  
> solution work. Meaning that even if this survey finds that none of  
> the existing options are always satisfactory, that's a finding that  
> to me still doesn't immediately motivate the need to develop any  
> new solution. New protocol work should be motivated by an  
> application requiring it.

Calling draft-behringer-tsvwg a "survey" of "group keying for RSVP"  
isn't an entirely accurate statement. It's a much more fundamental  
description of RSVP security: it documents the RSVP trust model  
(perhaps for the first time), and from there it describes the  
appropriate uses for RSVP keys that should be used within different  
network topologies, as well as provisioning methods for those keys.  
Although these topics don't motivate new TSVWG protocol development,  
taking ownership of these RSVP security fundamentals is important for  
TSVWG. I believe that is a good rationale for accepting draft- 
behringer-tsvwg as a WG item.

Thanks,
Brian

-- 
Brian Weis
Advanced Security Development, Security Technology Group, Cisco Systems
Telephone: +1 408 526 4796
Email: bew@cisco.com

v2.23.0 | Report a Bug | By Email