IETF Logo Mail Archive

Re: [Tsvwg] Adopting draft-behringer-tsvwg-rsvp-security-groupkeying as WG item?

Lars Eggert <lars.eggert@nokia.com> Wed, 30 January 2008 14:09 UTC

Return-path: <tsvwg-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1JKDcq-00066Z-CO; Wed, 30 Jan 2008 09:09:16 -0500
Received: from tsvwg by megatron.ietf.org with local (Exim 4.43) id 1JKDco-00066Q-Mw for tsvwg-confirm+ok@megatron.ietf.org; Wed, 30 Jan 2008 09:09:14 -0500
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1JKDco-00066I-DK for tsvwg@ietf.org; Wed, 30 Jan 2008 09:09:14 -0500
Received: from smtp.nokia.com ([192.100.122.230] helo=mgw-mx03.nokia.com) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1JKDcn-0003Bq-Pw for tsvwg@ietf.org; Wed, 30 Jan 2008 09:09:14 -0500
Received: from esebh108.NOE.Nokia.com (esebh108.ntc.nokia.com [172.21.143.145]) by mgw-mx03.nokia.com (Switch-3.2.6/Switch-3.2.6) with ESMTP id m0UE8xLG019796; Wed, 30 Jan 2008 16:09:00 +0200
Received: from esebh102.NOE.Nokia.com ([172.21.138.183]) by esebh108.NOE.Nokia.com with Microsoft SMTPSVC(6.0.3790.1830); Wed, 30 Jan 2008 16:08:56 +0200
Received: from esdhcp035248.research.nokia.com ([172.21.35.248]) by esebh102.NOE.Nokia.com over TLS secured channel with Microsoft SMTPSVC(6.0.3790.1830); Wed, 30 Jan 2008 16:08:54 +0200
Message-Id: <EA366CF1-8D57-4DAC-8743-E9870F1E71F1@nokia.com>
From: Lars Eggert <lars.eggert@nokia.com>
To: ext Francois Le Faucheur IMAP <flefauch@cisco.com>
In-Reply-To: <668A8CDF-038D-490A-93A2-B5B71B186ADC@cisco.com>
Content-Type: text/plain; charset="US-ASCII"; format="flowed"; delsp="yes"
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v915)
Subject: Re: [Tsvwg] Adopting draft-behringer-tsvwg-rsvp-security-groupkeying as WG item?
Date: Wed, 30 Jan 2008 16:08:53 +0200
References: <47974BDB.70406@ericsson.com> <CD8D57B6-EB94-4DCE-A42A-02BC5F573A13@nokia.com> <7A1BB0E8-5EFB-4341-918A-F841DB1B57FF@cisco.com> <A268781D-F81A-48B3-8042-1892AC93B749@nokia.com> <E603EB77-B600-4A73-9217-EB797A5D7AAB@cisco.com> <E119D886-0838-4323-ABD7-0C8CCAE5C7A3@nokia.com> <668A8CDF-038D-490A-93A2-B5B71B186ADC@cisco.com>
X-Mailer: Apple Mail (2.915)
X-OriginalArrivalTime: 30 Jan 2008 14:08:55.0147 (UTC) FILETIME=[A62823B0:01C86349]
X-Nokia-AV: Clean
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 082a9cbf4d599f360ac7f815372a6a15
Cc: ext Magnus Westerlund <magnus.westerlund@ericsson.com>, RJ Atkinson <rja@extremenetworks.com>, tsvwg list IETF <tsvwg@ietf.org>
X-BeenThere: tsvwg@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Transport Area Working Group <tsvwg.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:tsvwg@ietf.org>
List-Help: <mailto:tsvwg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=subscribe>
Errors-To: tsvwg-bounces@ietf.org

Hi,

On 2008-1-29, at 13:07, ext Francois Le Faucheur IMAP wrote:
> On 29 Jan 2008, at 11:05, Lars Eggert wrote:
>> However, I'm now hesitating, because I've heard the argument being  
>> made (both in Vancouver during SAAG and in the recent email by  
>> Francois) that the acceptance of draft-behringer-tsvwg-rsvp- 
>> security-groupkeying as a TSVWG work item would establish a need to  
>> work on a solution in MSEC (based on draft-weis-gdoi-for-rsvp). I  
>> don't agree with this argument. At best, the document would  
>> identify a hole in the solution space, and if MSEC wants to fill  
>> that, I'd need to find its own motivation for doing so.
>
> I am failing to see the concern.
>
> First, I have already clarified several times that draft-behringer  
> is NOT tied to draft-weis-gdoi-for-rsvp.

I'm happy to hear you say that, because in an earlier email you said:

"I am not aware of any solution currently available from the IETF to  
actually deploy such distribution of group keys for RSVP. This could,  
for example, be easily achieved with small extensions to GDOI (draft- 
weis-gdoi-for-rsvp), but a solution will only be defined in IETF (e.g.  
by MSEC) if the corresponding need is established by the TSVWG."

The last part ("if the corresponding need is established by TSVWG")  
made me wonder whether the adoption of draft-behringer by TSVWG would  
be claimed to establish this need. I'm glad we agree that it wouldn't.

> Second, draft-behringer is not proposing to dictate what MSEC should  
> or should not do. It is about documenting group keying applicability  
> to RSVP and its benefits in some scenarios. The expectation is  
> indeed that MSEC will find its own motivation to develop a solution  
> based on the benefits it would bring to RSVP. That's all.

Great. Because recalling the discussion in SAAG, I came away with a  
different impression. The SAAG minutes say:

"There was progress on four [MSEC - ed.] work items, including crypto  
suites for
GDOI, and extensions to GDOI for hash agility, GDOI for SRTP, and
TESLA extensions.  There are also several current work items that
are not making progress and may need to be dropped.  Some new work
has been proposed to support keying for transport and routing
protocols, but this work will not go forward unless it is clear that
the appropriate WGs in transport and routing have consensus.
If clear direction is provided, msec will consider a charter update for
new work.  Otherwise, msec will stay on course to complete its active  
documents and shut down."

The "support keying for transport" bit was about RSVP group keying  
(draft-weis), and the half-sentence following it makes it pretty clear  
that MSEC won't take it on unless TSVWG would indicate some sort of  
consensus about this work. I'm merely attempting to clarify that any  
adoption of draft-behringer isn't such an indication.

> With these clarifications in mind, do you still see an issue?

No, with these clarifications, I don't see an issue.

Lars

v2.23.0 | Report a Bug | By Email