Re: [Tsvwg] Adopting draft-behringer-tsvwg-rsvp-security-groupkeying as WG item?

[Francois Le Faucheur IMAP <flefauch@cisco.com>]

Hi Lars and all,

On 24 Jan 2008, at 18:04, Lars Eggert wrote:

> (individual hat on)
>
> I'm not convinced that this document needs to be a TSVWG document.  
> It's an Informational document that surveys group keying options  
> for RSVP, and as such could be published directly through the RFC  
> Editor.

I am not aware of any solution currently available from the IETF to  
actually deploy such distribution of group keys for RSVP.
This could, for example, be easily achieved with small extensions to  
GDOI (draft-weis-gdoi-for-rsvp), but a solution will only be defined  
in IETF (e.g. by MSEC) if the corresponding need is established by  
the TSVWG.
So, my recommendation is that TSVWG decides whether group keying is  
useful for RSVP security or not, and if yes documents this decision.  
Making draft-behringer-tsvwg-.. a WG document seems a natural way to  
achieve this.
This is one reason why I feel draft-behringer-tsvwg should be  
considered for WG document.

(I certainly feel that a group keying solution for RSVP would be very  
useful. If some people feel that group keying for RSVP is not useful,  
it would be interesting to know why and how the problems solved by  
group keying can be addressed differently.)

Another practical reason is that the issue of group keying methods  
for RSVP gets raised by Security experts every time there is a new  
RSVP-related document going to IESG Last Call. See, for example, the  
thread with Ran Atkinson from Dec 2006 and titled "Re: [Tsvwg] Re:  
IETF LC comments on draft-ietf-tsvwg-rsvp-ipsec".
Effectively, on request from Security experts in order to make sure  
the security aspects are covered appropriately, we end up re- 
discussing the applicability of existing keying methods +  
applicability of potential future group keying methods in the  
"Security Considerations" section of every RSVP-related document (see  
RFC4860, draft-ietf-tsvwg-emergency-rsvp). It is important that  
applicability/Pros&cons of various keying methods for RSVP be  
documented by TSVWG once for all. This discussion should reflect the  
view of the WG since it affects RSVP security across all RSVP-related  
documents.

Also, draft-behringer-tsvwg proposes to document applicability of  
keying methods to IPsec protection of RSVP (as opposed to just RSVP  
authentication). We are not aware of an IETF document where this is  
well addressed and feel this would be useful (and has been requested  
by a few people e.g. Anshul from LMCO).

Cheers

Francois

>
> Lars