From msec-bounces@ietf.org Thu Jul 05 16:51:40 2007 Return-path: Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1I6YIb-0000Uq-95; Thu, 05 Jul 2007 16:51:37 -0400 Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1I6YIa-0000Ua-30 for msec@ietf.org; Thu, 05 Jul 2007 16:51:36 -0400 Received: from sj-iport-6.cisco.com ([171.71.176.117]) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1I6YIZ-0000sj-Q6 for msec@ietf.org; Thu, 05 Jul 2007 16:51:36 -0400 Received: from sj-dkim-4.cisco.com ([171.71.179.196]) by sj-iport-6.cisco.com with ESMTP; 05 Jul 2007 13:51:35 -0700 X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: Ah4FAKL1jEarR7PE/2dsb2JhbACOEw X-IronPort-AV: i="4.16,505,1175497200"; d="scan'208"; a="177248225:sNHT49127355" Received: from sj-core-3.cisco.com (sj-core-3.cisco.com [171.68.223.137]) by sj-dkim-4.cisco.com (8.12.11/8.12.11) with ESMTP id l65KpZgf026146; Thu, 5 Jul 2007 13:51:35 -0700 Received: from [128.107.163.234] (dhcp-128-107-163-234.cisco.com [128.107.163.234]) by sj-core-3.cisco.com (8.12.10/8.12.6) with ESMTP id l65KpZvv006275; Thu, 5 Jul 2007 20:51:35 GMT Mime-Version: 1.0 (Apple Message framework v752.2) Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Message-Id: Content-Transfer-Encoding: 7bit From: Brian Weis Date: Thu, 5 Jul 2007 13:51:33 -0700 To: msec@ietf.org X-Mailer: Apple Mail (2.752.2) DKIM-Signature: v=0.5; a=rsa-sha256; q=dns/txt; l=2808; t=1183668695; x=1184532695; c=relaxed/simple; s=sjdkim4002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=bew@cisco.com; z=From:=20Brian=20Weis=20 |Subject:=20 |Sender:=20; bh=UDEu52fHEnwbKYJKG+U57c+4suejuY8w3RRwr6Zvdb8=; b=JF62Xv66NRiyOLIX/NE1QL8FoAPudZ3CnebwQK2mB5uItvHjsnpvA36MQ3kNaEVwm9pL/sXg MEQYVEjFxWJYGhWEkEW0CQD3u0/UzV1PcYcFuRzc74eBFJvKmUBTDi99; Authentication-Results: sj-dkim-4; header.From=bew@cisco.com; dkim=pass (sig from cisco.com/sjdkim4002 verified; ); X-Spam-Score: 1.6 (+) X-Scan-Signature: 6cca30437e2d04f45110f2ff8dc1b1d5 Cc: Francois Le Faucheur , Michael Behringer Subject: [MSEC] (no subject) X-BeenThere: msec@ietf.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Multicast Security List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: msec-bounces@ietf.org Greetings, There has recently been some interest in the TSVWG for using dynamically distributing keys for use with the RSVP Integrity option. The following announcements are pointers to two documents addressing this interest. The first is a framework document describing the applicability of group keying for RSVP. It's target working group is TSVWG. The second describes GDOI extensions allowing GDOI to distribute the RSVP Integrity policy & keys. Assuming the framework document progresses in TSVWG, the target working group for the GDOI document is MSEC. Comments on either draft are welcome. However, note that the authors of the framework document do not participate in MSEC and probably need to be contacted directly. Both documents will be presented in the TSVWG session of the Chicago IETF meeting. Thanks, Brian ------------------------------------------------------------------------ -------------------- A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : A Framework for RSVP Security Using Dynamic Group Keying Author(s) : M. Behringer, F. Le Faucheur Filename : draft-behringer-tsvwg-rsvp-security-groupkeying-00.txt Pages : 11 Date : 2007-7-3 The Resource reSerVation Protocol (RSVP) allows hop-by-hop authentication of RSVP neighbors. This requires messages to be cryptographically signed using a shared secret between participating nodes. This document compares group keying for RSVP with per neighbor or per interface keying, and discusses the applicability and limitations of these approaches. Draft-weis-gdoi-for-rsvp describes how the Group Domain of Interpretation (GDOI) can be used to distribute group keys to RSVP nodes. The document also discusses applicability of group keying to RSVP encryption. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-behringer-tsvwg-rsvp- security-groupkeying-00.txt ------------------------------------------------------------------------ -------------------- A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : Group Domain of Interpretation (GDOI) support for RSVP Author(s) : B. Weis Filename : draft-weis-gdoi-for-rsvp-00.txt Pages : 14 Date : 2007-7-3 This memo describes the policy required for the Group Domain of Interpretation (GDOI) [RFC3547] group key management system to distribute security policy for RSVP. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-weis-gdoi-for-rsvp-00.txt -- Brian Weis Advanced Security Development, Security Technology Group, Cisco Systems Telephone: +1 408 526 4796 Email: bew@cisco.com _______________________________________________ MSEC mailing list MSEC@ietf.org https://www1.ietf.org/mailman/listinfo/msec From msec-bounces@ietf.org Thu Jul 05 16:51:40 2007 Return-path: Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1I6YIb-0000Uq-95; Thu, 05 Jul 2007 16:51:37 -0400 Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1I6YIa-0000Ua-30 for msec@ietf.org; Thu, 05 Jul 2007 16:51:36 -0400 Received: from sj-iport-6.cisco.com ([171.71.176.117]) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1I6YIZ-0000sj-Q6 for msec@ietf.org; Thu, 05 Jul 2007 16:51:36 -0400 Received: from sj-dkim-4.cisco.com ([171.71.179.196]) by sj-iport-6.cisco.com with ESMTP; 05 Jul 2007 13:51:35 -0700 X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: Ah4FAKL1jEarR7PE/2dsb2JhbACOEw X-IronPort-AV: i="4.16,505,1175497200"; d="scan'208"; a="177248225:sNHT49127355" Received: from sj-core-3.cisco.com (sj-core-3.cisco.com [171.68.223.137]) by sj-dkim-4.cisco.com (8.12.11/8.12.11) with ESMTP id l65KpZgf026146; Thu, 5 Jul 2007 13:51:35 -0700 Received: from [128.107.163.234] (dhcp-128-107-163-234.cisco.com [128.107.163.234]) by sj-core-3.cisco.com (8.12.10/8.12.6) with ESMTP id l65KpZvv006275; Thu, 5 Jul 2007 20:51:35 GMT Mime-Version: 1.0 (Apple Message framework v752.2) Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Message-Id: Content-Transfer-Encoding: 7bit From: Brian Weis Date: Thu, 5 Jul 2007 13:51:33 -0700 To: msec@ietf.org X-Mailer: Apple Mail (2.752.2) DKIM-Signature: v=0.5; a=rsa-sha256; q=dns/txt; l=2808; t=1183668695; x=1184532695; c=relaxed/simple; s=sjdkim4002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=bew@cisco.com; z=From:=20Brian=20Weis=20 |Subject:=20 |Sender:=20; bh=UDEu52fHEnwbKYJKG+U57c+4suejuY8w3RRwr6Zvdb8=; b=JF62Xv66NRiyOLIX/NE1QL8FoAPudZ3CnebwQK2mB5uItvHjsnpvA36MQ3kNaEVwm9pL/sXg MEQYVEjFxWJYGhWEkEW0CQD3u0/UzV1PcYcFuRzc74eBFJvKmUBTDi99; Authentication-Results: sj-dkim-4; header.From=bew@cisco.com; dkim=pass (sig from cisco.com/sjdkim4002 verified; ); X-Spam-Score: 1.6 (+) X-Scan-Signature: 6cca30437e2d04f45110f2ff8dc1b1d5 Cc: Francois Le Faucheur , Michael Behringer Subject: [MSEC] (no subject) X-BeenThere: msec@ietf.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Multicast Security List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: msec-bounces@ietf.org Greetings, There has recently been some interest in the TSVWG for using dynamically distributing keys for use with the RSVP Integrity option. The following announcements are pointers to two documents addressing this interest. The first is a framework document describing the applicability of group keying for RSVP. It's target working group is TSVWG. The second describes GDOI extensions allowing GDOI to distribute the RSVP Integrity policy & keys. Assuming the framework document progresses in TSVWG, the target working group for the GDOI document is MSEC. Comments on either draft are welcome. However, note that the authors of the framework document do not participate in MSEC and probably need to be contacted directly. Both documents will be presented in the TSVWG session of the Chicago IETF meeting. Thanks, Brian ------------------------------------------------------------------------ -------------------- A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : A Framework for RSVP Security Using Dynamic Group Keying Author(s) : M. Behringer, F. Le Faucheur Filename : draft-behringer-tsvwg-rsvp-security-groupkeying-00.txt Pages : 11 Date : 2007-7-3 The Resource reSerVation Protocol (RSVP) allows hop-by-hop authentication of RSVP neighbors. This requires messages to be cryptographically signed using a shared secret between participating nodes. This document compares group keying for RSVP with per neighbor or per interface keying, and discusses the applicability and limitations of these approaches. Draft-weis-gdoi-for-rsvp describes how the Group Domain of Interpretation (GDOI) can be used to distribute group keys to RSVP nodes. The document also discusses applicability of group keying to RSVP encryption. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-behringer-tsvwg-rsvp- security-groupkeying-00.txt ------------------------------------------------------------------------ -------------------- A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : Group Domain of Interpretation (GDOI) support for RSVP Author(s) : B. Weis Filename : draft-weis-gdoi-for-rsvp-00.txt Pages : 14 Date : 2007-7-3 This memo describes the policy required for the Group Domain of Interpretation (GDOI) [RFC3547] group key management system to distribute security policy for RSVP. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-weis-gdoi-for-rsvp-00.txt -- Brian Weis Advanced Security Development, Security Technology Group, Cisco Systems Telephone: +1 408 526 4796 Email: bew@cisco.com _______________________________________________ MSEC mailing list MSEC@ietf.org https://www1.ietf.org/mailman/listinfo/msec From msec-bounces@ietf.org Thu Jul 05 16:58:38 2007 Return-path: Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1I6YPN-00044G-M5; Thu, 05 Jul 2007 16:58:37 -0400 Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1I6YPK-0003xj-P6 for msec@ietf.org; Thu, 05 Jul 2007 16:58:34 -0400 Received: from sj-iport-3-in.cisco.com ([171.71.176.72] helo=sj-iport-3.cisco.com) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1I6YPK-0001pe-Ft for msec@ietf.org; Thu, 05 Jul 2007 16:58:34 -0400 Received: from sj-dkim-2.cisco.com ([171.71.179.186]) by sj-iport-3.cisco.com with ESMTP; 05 Jul 2007 13:58:25 -0700 X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: Ao8CADb4jEarR7O6/2dsb2JhbAA X-IronPort-AV: i="4.16,505,1175497200"; d="scan'208"; a="500438341:sNHT705433024" Received: from sj-core-1.cisco.com (sj-core-1.cisco.com [171.71.177.237]) by sj-dkim-2.cisco.com (8.12.11/8.12.11) with ESMTP id l65KwPIY002966; Thu, 5 Jul 2007 13:58:25 -0700 Received: from [128.107.163.234] (dhcp-128-107-163-234.cisco.com [128.107.163.234]) by sj-core-1.cisco.com (8.12.10/8.12.6) with ESMTP id l65KwPXH012120; Thu, 5 Jul 2007 20:58:25 GMT Mime-Version: 1.0 (Apple Message framework v752.2) Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Message-Id: Content-Transfer-Encoding: 7bit From: Brian Weis Date: Thu, 5 Jul 2007 13:58:24 -0700 To: msec@ietf.org X-Mailer: Apple Mail (2.752.2) DKIM-Signature: v=0.5; a=rsa-sha256; q=dns/txt; l=2849; t=1183669105; x=1184533105; c=relaxed/simple; s=sjdkim2002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=bew@cisco.com; z=From:=20Brian=20Weis=20 |Subject:=20Group=20keying=20of=20the=20RSVP=20Integrity=20option |Sender:=20; bh=zwinXyqkVUJf8zix4dGbgHihltsieuT3VOKl3bgM7kc=; b=i6fxWSF6NAFdXKYYWbSfE8hE96j14HbpD0QMI9Z6RuJI5XCIgrnuuTFnKhJgUbsYeQTXhSNg TxWp6eNmOMKVZIWStSocBaXj7YNzl/E+W5byULVed9MmqWVIHyMGHgXZ; Authentication-Results: sj-dkim-2; header.From=bew@cisco.com; dkim=pass (sig from cisco.com/sjdkim2002 verified; ); X-Spam-Score: 0.0 (/) X-Scan-Signature: bdc523f9a54890b8a30dd6fd53d5d024 Cc: Francois Le Faucheur , Michael Behringer Subject: [MSEC] Group keying of the RSVP Integrity option X-BeenThere: msec@ietf.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Multicast Security List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: msec-bounces@ietf.org Greetings, There has recently been some interest in the TSVWG for using dynamically distributing keys for use with the RSVP Integrity option. The following announcements are pointers to two documents addressing this interest. The first is a framework document describing the applicability of group keying for RSVP. It's target working group is TSVWG. The second describes GDOI extensions allowing GDOI to distribute the RSVP Integrity policy & keys. Assuming the framework document progresses in TSVWG, the target working group for the GDOI document is MSEC. Comments on either draft are welcome. However, note that the authors of the framework document do not participate in MSEC and probably need to be contacted directly. Both documents will be presented in the TSVWG session of the Chicago IETF meeting. Thanks, Brian ------------------------------------------------------------------------ -------------------- A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : A Framework for RSVP Security Using Dynamic Group Keying Author(s) : M. Behringer, F. Le Faucheur Filename : draft-behringer-tsvwg-rsvp-security-groupkeying-00.txt Pages : 11 Date : 2007-7-3 The Resource reSerVation Protocol (RSVP) allows hop-by-hop authentication of RSVP neighbors. This requires messages to be cryptographically signed using a shared secret between participating nodes. This document compares group keying for RSVP with per neighbor or per interface keying, and discusses the applicability and limitations of these approaches. Draft-weis-gdoi-for-rsvp describes how the Group Domain of Interpretation (GDOI) can be used to distribute group keys to RSVP nodes. The document also discusses applicability of group keying to RSVP encryption. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-behringer-tsvwg-rsvp- security-groupkeying-00.txt ------------------------------------------------------------------------ -------------------- A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : Group Domain of Interpretation (GDOI) support for RSVP Author(s) : B. Weis Filename : draft-weis-gdoi-for-rsvp-00.txt Pages : 14 Date : 2007-7-3 This memo describes the policy required for the Group Domain of Interpretation (GDOI) [RFC3547] group key management system to distribute security policy for RSVP. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-weis-gdoi-for-rsvp-00.txt (Re-sent with a proper subject line.) -- Brian Weis Advanced Security Development, Security Technology Group, Cisco Systems Telephone: +1 408 526 4796 Email: bew@cisco.com _______________________________________________ MSEC mailing list MSEC@ietf.org https://www1.ietf.org/mailman/listinfo/msec From msec-bounces@ietf.org Thu Jul 05 16:58:38 2007 Return-path: Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1I6YPN-00044G-M5; Thu, 05 Jul 2007 16:58:37 -0400 Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1I6YPK-0003xj-P6 for msec@ietf.org; Thu, 05 Jul 2007 16:58:34 -0400 Received: from sj-iport-3-in.cisco.com ([171.71.176.72] helo=sj-iport-3.cisco.com) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1I6YPK-0001pe-Ft for msec@ietf.org; Thu, 05 Jul 2007 16:58:34 -0400 Received: from sj-dkim-2.cisco.com ([171.71.179.186]) by sj-iport-3.cisco.com with ESMTP; 05 Jul 2007 13:58:25 -0700 X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: Ao8CADb4jEarR7O6/2dsb2JhbAA X-IronPort-AV: i="4.16,505,1175497200"; d="scan'208"; a="500438341:sNHT705433024" Received: from sj-core-1.cisco.com (sj-core-1.cisco.com [171.71.177.237]) by sj-dkim-2.cisco.com (8.12.11/8.12.11) with ESMTP id l65KwPIY002966; Thu, 5 Jul 2007 13:58:25 -0700 Received: from [128.107.163.234] (dhcp-128-107-163-234.cisco.com [128.107.163.234]) by sj-core-1.cisco.com (8.12.10/8.12.6) with ESMTP id l65KwPXH012120; Thu, 5 Jul 2007 20:58:25 GMT Mime-Version: 1.0 (Apple Message framework v752.2) Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Message-Id: Content-Transfer-Encoding: 7bit From: Brian Weis Date: Thu, 5 Jul 2007 13:58:24 -0700 To: msec@ietf.org X-Mailer: Apple Mail (2.752.2) DKIM-Signature: v=0.5; a=rsa-sha256; q=dns/txt; l=2849; t=1183669105; x=1184533105; c=relaxed/simple; s=sjdkim2002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=bew@cisco.com; z=From:=20Brian=20Weis=20 |Subject:=20Group=20keying=20of=20the=20RSVP=20Integrity=20option |Sender:=20; bh=zwinXyqkVUJf8zix4dGbgHihltsieuT3VOKl3bgM7kc=; b=i6fxWSF6NAFdXKYYWbSfE8hE96j14HbpD0QMI9Z6RuJI5XCIgrnuuTFnKhJgUbsYeQTXhSNg TxWp6eNmOMKVZIWStSocBaXj7YNzl/E+W5byULVed9MmqWVIHyMGHgXZ; Authentication-Results: sj-dkim-2; header.From=bew@cisco.com; dkim=pass (sig from cisco.com/sjdkim2002 verified; ); X-Spam-Score: 0.0 (/) X-Scan-Signature: bdc523f9a54890b8a30dd6fd53d5d024 Cc: Francois Le Faucheur , Michael Behringer Subject: [MSEC] Group keying of the RSVP Integrity option X-BeenThere: msec@ietf.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Multicast Security List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: msec-bounces@ietf.org Greetings, There has recently been some interest in the TSVWG for using dynamically distributing keys for use with the RSVP Integrity option. The following announcements are pointers to two documents addressing this interest. The first is a framework document describing the applicability of group keying for RSVP. It's target working group is TSVWG. The second describes GDOI extensions allowing GDOI to distribute the RSVP Integrity policy & keys. Assuming the framework document progresses in TSVWG, the target working group for the GDOI document is MSEC. Comments on either draft are welcome. However, note that the authors of the framework document do not participate in MSEC and probably need to be contacted directly. Both documents will be presented in the TSVWG session of the Chicago IETF meeting. Thanks, Brian ------------------------------------------------------------------------ -------------------- A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : A Framework for RSVP Security Using Dynamic Group Keying Author(s) : M. Behringer, F. Le Faucheur Filename : draft-behringer-tsvwg-rsvp-security-groupkeying-00.txt Pages : 11 Date : 2007-7-3 The Resource reSerVation Protocol (RSVP) allows hop-by-hop authentication of RSVP neighbors. This requires messages to be cryptographically signed using a shared secret between participating nodes. This document compares group keying for RSVP with per neighbor or per interface keying, and discusses the applicability and limitations of these approaches. Draft-weis-gdoi-for-rsvp describes how the Group Domain of Interpretation (GDOI) can be used to distribute group keys to RSVP nodes. The document also discusses applicability of group keying to RSVP encryption. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-behringer-tsvwg-rsvp- security-groupkeying-00.txt ------------------------------------------------------------------------ -------------------- A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : Group Domain of Interpretation (GDOI) support for RSVP Author(s) : B. Weis Filename : draft-weis-gdoi-for-rsvp-00.txt Pages : 14 Date : 2007-7-3 This memo describes the policy required for the Group Domain of Interpretation (GDOI) [RFC3547] group key management system to distribute security policy for RSVP. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-weis-gdoi-for-rsvp-00.txt (Re-sent with a proper subject line.) -- Brian Weis Advanced Security Development, Security Technology Group, Cisco Systems Telephone: +1 408 526 4796 Email: bew@cisco.com _______________________________________________ MSEC mailing list MSEC@ietf.org https://www1.ietf.org/mailman/listinfo/msec From msec-bounces@ietf.org Tue Jul 10 21:09:10 2007 Return-path: Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1I8QhY-0005Kt-Vl; Tue, 10 Jul 2007 21:09:08 -0400 Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1I8QhX-0005B0-9h; Tue, 10 Jul 2007 21:09:07 -0400 Received: from szxga03-in.huawei.com ([61.144.161.55]) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1I8QhW-0002jg-EH; Tue, 10 Jul 2007 21:09:07 -0400 Received: from huawei.com (szxga03-in [172.24.2.9]) by szxga03-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTP id <0JKZ00L4SPTFB3@szxga03-in.huawei.com>; Wed, 11 Jul 2007 09:08:03 +0800 (CST) Received: from huawei.com ([172.24.1.24]) by szxga03-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTP id <0JKZ00GACPTEQV@szxga03-in.huawei.com>; Wed, 11 Jul 2007 09:08:03 +0800 (CST) Received: from l52008 ([10.111.12.58]) by szxml04-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTPA id <0JKZ00HS8PT60S@szxml04-in.huawei.com>; Wed, 11 Jul 2007 09:08:02 +0800 (CST) Date: Wed, 11 Jul 2007 09:07:54 +0800 From: Liu Ya To: rpsec@ietf.org, msec@ietf.org, ospf@ietf.org Message-id: <0d2a01c7c357$ec0f1150$3a0c6f0a@china.huawei.com> MIME-version: 1.0 X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2900.2180 X-Mailer: Microsoft Office Outlook 11 Content-type: multipart/mixed; boundary="Boundary_(ID_Gaxjm66XcimoVhgdPwnjRw)" Thread-index: AcfDQKb49Ch5PWV1QYe2wsyzopRAEAAFhlUA X-Spam-Score: 0.0 (/) X-Scan-Signature: b2809b6f39decc6de467dcf252f42af1 Cc: Subject: [MSEC] FW: I-D ACTION:draft-liu-ospfv3-automated-keying-req-01.txt X-BeenThere: msec@ietf.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Multicast Security List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: msec-bounces@ietf.org This is a multi-part message in MIME format. --Boundary_(ID_Gaxjm66XcimoVhgdPwnjRw) Content-type: text/plain; charset=us-ascii Content-transfer-encoding: 7BIT Hi all, The requirement doc for OSPFv3 IPSec automated group key management has been updated to -01. Compared with the -00 doc, the stuff was reorganized, and some possible solutions and their specific requirements were added. Comments are welcome. Thanks, LIU Ya -----Original Message----- From: Internet-Drafts@ietf.org [mailto:Internet-Drafts@ietf.org] Sent: Wednesday, July 11, 2007 6:15 AM To: i-d-announce@ietf.org Subject: I-D ACTION:draft-liu-ospfv3-automated-keying-req-01.txt A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : OSPFv3 Automated Group Keying Requirements Author(s) : Y. Liu, et al. Filename : draft-liu-ospfv3-automated-keying-req-01.txt Pages : 15 Date : 2007-7-10 RFC4552 describes how to provide authentication/confidentiality to OSPFv3 using IPsec. It specifies that same IPsec SA parameters be configured for both inbound and outbound SAs to provide the "one to many" security for multicast OSPFv3 communications over broadcast links (e.g., Ethernet). Manual keying is specified as the mandatory and default group key management solution. However, issues of scalability and security exist with manual keying. It is better to replace manual keying with automated group key management. This document discusses the requirements on OSPFv3 automated group key management, assuming that the centralized group key management architecture introduced in [RFC4046] is used. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-liu-ospfv3-automated-keying- req-01.txt To remove yourself from the I-D Announcement list, send a message to i-d-announce-request@ietf.org with the word unsubscribe in the body of the message. You can also visit https://www1.ietf.org/mailman/listinfo/I-D-announce to change your subscription settings. Internet-Drafts are also available by anonymous FTP. Login with the username "anonymous" and a password of your e-mail address. After logging in, type "cd internet-drafts" and then "get draft-liu-ospfv3-automated-keying-req-01.txt". A list of Internet-Drafts directories can be found in http://www.ietf.org/shadow.html or ftp://ftp.ietf.org/ietf/1shadow-sites.txt Internet-Drafts can also be obtained by e-mail. Send a message to: mailserv@ietf.org. In the body type: "FILE /internet-drafts/draft-liu-ospfv3-automated-keying-req-01.txt". NOTE: The mail server at ietf.org can return the document in MIME-encoded form by using the "mpack" utility. To use this feature, insert the command "ENCODING mime" before the "FILE" command. To decode the response(s), you will need "munpack" or a MIME-compliant mail reader. Different MIME-compliant mail readers exhibit different behavior, especially when dealing with "multipart" MIME messages (i.e. documents which have been split up into multiple messages), so check your local documentation on how to manipulate these messages. Below is the data which will enable a MIME compliant mail reader implementation to automatically retrieve the ASCII version of the Internet-Draft. --Boundary_(ID_Gaxjm66XcimoVhgdPwnjRw) Content-type: Message/External-body; name=ATT03353.dat Content-transfer-encoding: 7bit Content-disposition: attachment; filename=ATT03353.dat Content-Type: text/plain Content-ID: <2007-7-10171540.I-D@ietf.org> ENCODING mime FILE /internet-drafts/draft-liu-ospfv3-automated-keying-req-01.txt --Boundary_(ID_Gaxjm66XcimoVhgdPwnjRw) Content-type: Message/External-body; name=draft-liu-ospfv3-automated-keying-req-01.txt Content-transfer-encoding: 7bit Content-disposition: attachment; filename=draft-liu-ospfv3-automated-keying-req-01.txt Content-Type: text/plain Content-ID: <2007-7-10171540.I-D@ietf.org> --Boundary_(ID_Gaxjm66XcimoVhgdPwnjRw) Content-type: text/plain; name=ATT03356.txt Content-transfer-encoding: 7BIT Content-disposition: attachment; filename=ATT03356.txt _______________________________________________ I-D-Announce mailing list I-D-Announce@ietf.org https://www1.ietf.org/mailman/listinfo/i-d-announce --Boundary_(ID_Gaxjm66XcimoVhgdPwnjRw) Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ MSEC mailing list MSEC@ietf.org https://www1.ietf.org/mailman/listinfo/msec --Boundary_(ID_Gaxjm66XcimoVhgdPwnjRw)-- From msec-bounces@ietf.org Tue Jul 10 21:09:10 2007 Return-path: Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1I8QhY-0005Kt-Vl; Tue, 10 Jul 2007 21:09:08 -0400 Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1I8QhX-0005B0-9h; Tue, 10 Jul 2007 21:09:07 -0400 Received: from szxga03-in.huawei.com ([61.144.161.55]) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1I8QhW-0002jg-EH; Tue, 10 Jul 2007 21:09:07 -0400 Received: from huawei.com (szxga03-in [172.24.2.9]) by szxga03-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTP id <0JKZ00L4SPTFB3@szxga03-in.huawei.com>; Wed, 11 Jul 2007 09:08:03 +0800 (CST) Received: from huawei.com ([172.24.1.24]) by szxga03-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTP id <0JKZ00GACPTEQV@szxga03-in.huawei.com>; Wed, 11 Jul 2007 09:08:03 +0800 (CST) Received: from l52008 ([10.111.12.58]) by szxml04-in.huawei.com (iPlanet Messaging Server 5.2 HotFix 2.14 (built Aug 8 2006)) with ESMTPA id <0JKZ00HS8PT60S@szxml04-in.huawei.com>; Wed, 11 Jul 2007 09:08:02 +0800 (CST) Date: Wed, 11 Jul 2007 09:07:54 +0800 From: Liu Ya To: rpsec@ietf.org, msec@ietf.org, ospf@ietf.org Message-id: <0d2a01c7c357$ec0f1150$3a0c6f0a@china.huawei.com> MIME-version: 1.0 X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2900.2180 X-Mailer: Microsoft Office Outlook 11 Content-type: multipart/mixed; boundary="Boundary_(ID_Gaxjm66XcimoVhgdPwnjRw)" Thread-index: AcfDQKb49Ch5PWV1QYe2wsyzopRAEAAFhlUA X-Spam-Score: 0.0 (/) X-Scan-Signature: b2809b6f39decc6de467dcf252f42af1 Cc: Subject: [MSEC] FW: I-D ACTION:draft-liu-ospfv3-automated-keying-req-01.txt X-BeenThere: msec@ietf.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Multicast Security List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: msec-bounces@ietf.org This is a multi-part message in MIME format. --Boundary_(ID_Gaxjm66XcimoVhgdPwnjRw) Content-type: text/plain; charset=us-ascii Content-transfer-encoding: 7BIT Hi all, The requirement doc for OSPFv3 IPSec automated group key management has been updated to -01. Compared with the -00 doc, the stuff was reorganized, and some possible solutions and their specific requirements were added. Comments are welcome. Thanks, LIU Ya -----Original Message----- From: Internet-Drafts@ietf.org [mailto:Internet-Drafts@ietf.org] Sent: Wednesday, July 11, 2007 6:15 AM To: i-d-announce@ietf.org Subject: I-D ACTION:draft-liu-ospfv3-automated-keying-req-01.txt A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : OSPFv3 Automated Group Keying Requirements Author(s) : Y. Liu, et al. Filename : draft-liu-ospfv3-automated-keying-req-01.txt Pages : 15 Date : 2007-7-10 RFC4552 describes how to provide authentication/confidentiality to OSPFv3 using IPsec. It specifies that same IPsec SA parameters be configured for both inbound and outbound SAs to provide the "one to many" security for multicast OSPFv3 communications over broadcast links (e.g., Ethernet). Manual keying is specified as the mandatory and default group key management solution. However, issues of scalability and security exist with manual keying. It is better to replace manual keying with automated group key management. This document discusses the requirements on OSPFv3 automated group key management, assuming that the centralized group key management architecture introduced in [RFC4046] is used. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-liu-ospfv3-automated-keying- req-01.txt To remove yourself from the I-D Announcement list, send a message to i-d-announce-request@ietf.org with the word unsubscribe in the body of the message. You can also visit https://www1.ietf.org/mailman/listinfo/I-D-announce to change your subscription settings. Internet-Drafts are also available by anonymous FTP. Login with the username "anonymous" and a password of your e-mail address. After logging in, type "cd internet-drafts" and then "get draft-liu-ospfv3-automated-keying-req-01.txt". A list of Internet-Drafts directories can be found in http://www.ietf.org/shadow.html or ftp://ftp.ietf.org/ietf/1shadow-sites.txt Internet-Drafts can also be obtained by e-mail. Send a message to: mailserv@ietf.org. In the body type: "FILE /internet-drafts/draft-liu-ospfv3-automated-keying-req-01.txt". NOTE: The mail server at ietf.org can return the document in MIME-encoded form by using the "mpack" utility. To use this feature, insert the command "ENCODING mime" before the "FILE" command. To decode the response(s), you will need "munpack" or a MIME-compliant mail reader. Different MIME-compliant mail readers exhibit different behavior, especially when dealing with "multipart" MIME messages (i.e. documents which have been split up into multiple messages), so check your local documentation on how to manipulate these messages. Below is the data which will enable a MIME compliant mail reader implementation to automatically retrieve the ASCII version of the Internet-Draft. --Boundary_(ID_Gaxjm66XcimoVhgdPwnjRw) Content-type: Message/External-body; name=ATT03353.dat Content-transfer-encoding: 7bit Content-disposition: attachment; filename=ATT03353.dat Content-Type: text/plain Content-ID: <2007-7-10171540.I-D@ietf.org> ENCODING mime FILE /internet-drafts/draft-liu-ospfv3-automated-keying-req-01.txt --Boundary_(ID_Gaxjm66XcimoVhgdPwnjRw) Content-type: Message/External-body; name=draft-liu-ospfv3-automated-keying-req-01.txt Content-transfer-encoding: 7bit Content-disposition: attachment; filename=draft-liu-ospfv3-automated-keying-req-01.txt Content-Type: text/plain Content-ID: <2007-7-10171540.I-D@ietf.org> --Boundary_(ID_Gaxjm66XcimoVhgdPwnjRw) Content-type: text/plain; name=ATT03356.txt Content-transfer-encoding: 7BIT Content-disposition: attachment; filename=ATT03356.txt _______________________________________________ I-D-Announce mailing list I-D-Announce@ietf.org https://www1.ietf.org/mailman/listinfo/i-d-announce --Boundary_(ID_Gaxjm66XcimoVhgdPwnjRw) Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ MSEC mailing list MSEC@ietf.org https://www1.ietf.org/mailman/listinfo/msec --Boundary_(ID_Gaxjm66XcimoVhgdPwnjRw)-- From msec-bounces@ietf.org Wed Jul 11 12:44:44 2007 Return-path: Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1I8fIr-0007uj-Kj; Wed, 11 Jul 2007 12:44:37 -0400 Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1I8fIq-0007uO-Hz for msec@ietf.org; Wed, 11 Jul 2007 12:44:36 -0400 Received: from ithilien.qualcomm.com ([129.46.51.59]) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1I8fIq-0006Qa-5e for msec@ietf.org; Wed, 11 Jul 2007 12:44:36 -0400 Received: from neophyte.qualcomm.com (neophyte.qualcomm.com [129.46.61.149]) by ithilien.qualcomm.com (8.13.6/8.12.5/1.0) with ESMTP id l6BGiJvT001831 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL) for ; Wed, 11 Jul 2007 09:44:19 -0700 Received: from [10.50.68.235] (qconnect-10-50-68-235.qualcomm.com [10.50.68.235]) by neophyte.qualcomm.com (8.13.6/8.13.6/1.0) with ESMTP id l6BGiIrS022325 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT) for ; Wed, 11 Jul 2007 09:44:18 -0700 Message-ID: <469508DF.9090003@qualcomm.com> Date: Wed, 11 Jul 2007 09:44:15 -0700 From: Lakshminath Dondeti User-Agent: Thunderbird 2.0.0.4 (Windows/20070604) MIME-Version: 1.0 To: msec@ietf.org Content-Type: text/plain; charset=ISO-8859-15; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Score: 0.0 (/) X-Scan-Signature: 0fa76816851382eb71b0a882ccdc29ac Subject: [MSEC] [Fwd: I-D ACTION:draft-ietf-msec-ipsec-extensions-06.txt] X-BeenThere: msec@ietf.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Multicast Security List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: msec-bounces@ietf.org Folks, I am ready to forward this to the AD for processing. If you have any notes/comments on the deltas, please post them to the list before July 18, 2007. thanks, Lakshminath -------- Original Message -------- Subject: I-D ACTION:draft-ietf-msec-ipsec-extensions-06.txt Date: Wed, 11 Jul 2007 12:15:01 -0400 From: Internet-Drafts@ietf.org Reply-To: internet-drafts@ietf.org To: i-d-announce@ietf.org CC: msec@ietf.org A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Multicast Security Working Group of the IETF. Title : Multicast Extensions to the Security Architecture for the Internet Protocol Author(s) : B. Weis, et al. Filename : draft-ietf-msec-ipsec-extensions-06.txt Pages : 27 Date : 2007-7-11 The Security Architecture for the Internet Protocol [RFC4301] describes security services for traffic at the IP layer. That architecture primarily defines services for Internet Protocol (IP) unicast packets. It also defines services for manually keyed Security Associations (SAs) matching IP multicast traffic selectors. This document further defines the security services for manually and dynamically keyed SAs matching IP multicast traffic selectors within that Security Architecture. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-msec-ipsec-extensions-06.txt To remove yourself from the I-D Announcement list, send a message to i-d-announce-request@ietf.org with the word unsubscribe in the body of the message. You can also visit https://www1.ietf.org/mailman/listinfo/I-D-announce to change your subscription settings. Internet-Drafts are also available by anonymous FTP. Login with the username "anonymous" and a password of your e-mail address. After logging in, type "cd internet-drafts" and then "get draft-ietf-msec-ipsec-extensions-06.txt". A list of Internet-Drafts directories can be found in http://www.ietf.org/shadow.html or ftp://ftp.ietf.org/ietf/1shadow-sites.txt Internet-Drafts can also be obtained by e-mail. Send a message to: mailserv@ietf.org. In the body type: "FILE /internet-drafts/draft-ietf-msec-ipsec-extensions-06.txt". NOTE: The mail server at ietf.org can return the document in MIME-encoded form by using the "mpack" utility. To use this feature, insert the command "ENCODING mime" before the "FILE" command. To decode the response(s), you will need "munpack" or a MIME-compliant mail reader. Different MIME-compliant mail readers exhibit different behavior, especially when dealing with "multipart" MIME messages (i.e. documents which have been split up into multiple messages), so check your local documentation on how to manipulate these messages. Below is the data which will enable a MIME compliant mail reader implementation to automatically retrieve the ASCII version of the Internet-Draft. _______________________________________________ MSEC mailing list MSEC@ietf.org https://www1.ietf.org/mailman/listinfo/msec From msec-bounces@ietf.org Wed Jul 11 12:44:44 2007 Return-path: Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1I8fIr-0007uj-Kj; Wed, 11 Jul 2007 12:44:37 -0400 Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1I8fIq-0007uO-Hz for msec@ietf.org; Wed, 11 Jul 2007 12:44:36 -0400 Received: from ithilien.qualcomm.com ([129.46.51.59]) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1I8fIq-0006Qa-5e for msec@ietf.org; Wed, 11 Jul 2007 12:44:36 -0400 Received: from neophyte.qualcomm.com (neophyte.qualcomm.com [129.46.61.149]) by ithilien.qualcomm.com (8.13.6/8.12.5/1.0) with ESMTP id l6BGiJvT001831 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL) for ; Wed, 11 Jul 2007 09:44:19 -0700 Received: from [10.50.68.235] (qconnect-10-50-68-235.qualcomm.com [10.50.68.235]) by neophyte.qualcomm.com (8.13.6/8.13.6/1.0) with ESMTP id l6BGiIrS022325 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT) for ; Wed, 11 Jul 2007 09:44:18 -0700 Message-ID: <469508DF.9090003@qualcomm.com> Date: Wed, 11 Jul 2007 09:44:15 -0700 From: Lakshminath Dondeti User-Agent: Thunderbird 2.0.0.4 (Windows/20070604) MIME-Version: 1.0 To: msec@ietf.org Content-Type: text/plain; charset=ISO-8859-15; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Score: 0.0 (/) X-Scan-Signature: 0fa76816851382eb71b0a882ccdc29ac Subject: [MSEC] [Fwd: I-D ACTION:draft-ietf-msec-ipsec-extensions-06.txt] X-BeenThere: msec@ietf.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Multicast Security List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: msec-bounces@ietf.org Folks, I am ready to forward this to the AD for processing. If you have any notes/comments on the deltas, please post them to the list before July 18, 2007. thanks, Lakshminath -------- Original Message -------- Subject: I-D ACTION:draft-ietf-msec-ipsec-extensions-06.txt Date: Wed, 11 Jul 2007 12:15:01 -0400 From: Internet-Drafts@ietf.org Reply-To: internet-drafts@ietf.org To: i-d-announce@ietf.org CC: msec@ietf.org A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Multicast Security Working Group of the IETF. Title : Multicast Extensions to the Security Architecture for the Internet Protocol Author(s) : B. Weis, et al. Filename : draft-ietf-msec-ipsec-extensions-06.txt Pages : 27 Date : 2007-7-11 The Security Architecture for the Internet Protocol [RFC4301] describes security services for traffic at the IP layer. That architecture primarily defines services for Internet Protocol (IP) unicast packets. It also defines services for manually keyed Security Associations (SAs) matching IP multicast traffic selectors. This document further defines the security services for manually and dynamically keyed SAs matching IP multicast traffic selectors within that Security Architecture. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-msec-ipsec-extensions-06.txt To remove yourself from the I-D Announcement list, send a message to i-d-announce-request@ietf.org with the word unsubscribe in the body of the message. You can also visit https://www1.ietf.org/mailman/listinfo/I-D-announce to change your subscription settings. Internet-Drafts are also available by anonymous FTP. Login with the username "anonymous" and a password of your e-mail address. After logging in, type "cd internet-drafts" and then "get draft-ietf-msec-ipsec-extensions-06.txt". A list of Internet-Drafts directories can be found in http://www.ietf.org/shadow.html or ftp://ftp.ietf.org/ietf/1shadow-sites.txt Internet-Drafts can also be obtained by e-mail. Send a message to: mailserv@ietf.org. In the body type: "FILE /internet-drafts/draft-ietf-msec-ipsec-extensions-06.txt". NOTE: The mail server at ietf.org can return the document in MIME-encoded form by using the "mpack" utility. To use this feature, insert the command "ENCODING mime" before the "FILE" command. To decode the response(s), you will need "munpack" or a MIME-compliant mail reader. Different MIME-compliant mail readers exhibit different behavior, especially when dealing with "multipart" MIME messages (i.e. documents which have been split up into multiple messages), so check your local documentation on how to manipulate these messages. Below is the data which will enable a MIME compliant mail reader implementation to automatically retrieve the ASCII version of the Internet-Draft. _______________________________________________ MSEC mailing list MSEC@ietf.org https://www1.ietf.org/mailman/listinfo/msec From maderaselpino.com@ultradian.com Sun Jul 15 06:15:20 2007 Return-path: Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1IA18K-0006Lh-Ja for msec-archive@ietf.org; Sun, 15 Jul 2007 06:15:20 -0400 Received: from abys224.neoplus.adsl.tpnet.pl ([83.9.38.224] helo=ecqdtg) by chiedprmail1.ietf.org with smtp (Exim 4.43) id 1IA18K-0005iA-0w for msec-archive@ietf.org; Sun, 15 Jul 2007 06:15:20 -0400 Message-ID: <000201c7c6c8$d86b0680$0100007f@wurfcc> Date: N, 15 lip 2007 12:14:21 +0200 From: "Ivan Simmons" To: Subject: Three Steps to the Software You Need at the Prices You Want Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Office Outlook, Build 11.0.2600 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.0000 X-Spam-Score: 3.6 (+++) X-Scan-Signature: 3e15cc4fdc61d7bce84032741d11c8e5 OEM software means: no DVD/CD, no packing case, no booklets and no overhead cost! So OEM software is synonym for lowest price. Buy directly from the manufacturer, pay for software ONLY and save 75-9O%! Check our discounts and special offers! Find software for home and office! Different platforms. World leading manufacturers. Instant download. ---- HOT ITEMS Windows XP Pro + SP2 $49 MS Office Enterprise 2OO7 $79 Adobe Acrobat 8 Pro $79 Microsoft Windows Vista Ult $79 Macromedia Studio 8 $99 Adobe Premiere 2.O $59 Corel Grafix Suite X3 $59 Adobe Illustrator CS2 $59 Macromedia Flash Prof 8 $49 Adobe Photoshop CS2 V9.0 $69 Macromedia Studio 8 $99 Autodesk Autocad 2OO7 $129 Adobe Creative Suite 2 $149 http://dst.lnusoftc.com/?5193640EE4C6ECCA725B57EFAD3F5F235ACE6E1FAE&t0 ---- Top items for Mac: Adobe Acrobat Pro 7 $69 Adobe After Effects $49 Macromedia Flash Pro 8 $49 Adobe Creative Suite 2 Prem $149 Ableton Live 5.0.1 $49 Adobe Photoshop CS $49 http://dst.lnusoftc.com/-software-for-mac-.php?5193640EE4C6ECCA725B57EFAD3F5F235ACE6E1FAE&t6 ---- Popular eBooks: Home Networking For Dummies 3rd Edition $10 Windows XP Gigabook For Dummies $10 Adobe CS2 All in One Desk Reference For Dummies $10 Adobe Photoshop CS2 Classroom in a Book(Adobe Press) $10 ---- Find more positions by these manufacturers: Microsoft...Mac...Adobe...Borland...Macromedia...IBM http://dst.lnusoftc.com/?5193640EE4C6ECCA725B57EFAD3F5F235ACE6E1FAE&t4 ---- His mouth covered hers then. T Royce liked her restless motio His actions werent as delibera He kissed the valley between h His thumb rubbed against her m From msec-bounces@ietf.org Mon Jul 16 06:16:00 2007 Return-path: Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1IANcT-00005R-FS; Mon, 16 Jul 2007 06:15:57 -0400 Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1IANcR-0008Q9-P9; Mon, 16 Jul 2007 06:15:55 -0400 Received: from mx-serv.inrialpes.fr ([194.199.18.100]) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1IANcR-0000d8-7O; Mon, 16 Jul 2007 06:15:55 -0400 Received: from vilnius.inrialpes.fr (vilnius.inrialpes.fr [194.199.18.81]) by mx-serv.inrialpes.fr (8.13.6/8.13.0) with ESMTP id l6GAF1g5025614; Mon, 16 Jul 2007 12:15:01 +0200 (MEST) Received: from [194.199.24.115] (ornon.inrialpes.fr [194.199.24.115]) by vilnius.inrialpes.fr (8.13.6/8.11.3/ImagV2) with ESMTP id l6GAF12P014198; Mon, 16 Jul 2007 12:15:01 +0200 (MEST) Message-ID: <469B4526.3090303@inrialpes.fr> Date: Mon, 16 Jul 2007 12:15:02 +0200 From: Vincent Roca User-Agent: Thunderbird 2.0.0.4 (X11/20070620) MIME-Version: 1.0 To: msec@ietf.org, rmt@ietf.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-3.0 (mx-serv.inrialpes.fr [194.199.18.100]); Mon, 16 Jul 2007 12:15:02 +0200 (MEST) X-mx-serv-inrialpes-fr-MailScanner-Information: Please contact postmaster@inrialpes.fr for more information X-mx-serv-inrialpes-fr-MailScanner: Found to be clean X-mx-serv-inrialpes-fr-MailScanner-SpamCheck: n'est pas un polluriel, SpamAssassin (not cached, score=0, requis 5) X-mx-serv-inrialpes-fr-MailScanner-From: vincent.roca@inrialpes.fr X-Spam-Status: No X-Spam-Score: 0.0 (/) X-Scan-Signature: b2809b6f39decc6de467dcf252f42af1 Cc: =?ISO-8859-1?Q?Aur=E9lien_?= Subject: [MSEC] Version 02 of the "TESLA for ALC and NORM" I-D is available X-BeenThere: msec@ietf.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Multicast Security List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: msec-bounces@ietf.org Hello, This is to inform you that we recently updated our "TESLA for ALC and NORM" I-D. http://tools.ietf.org/html/draft-ietf-msec-tesla-for-alc-norm-02.txt This is a MAJOR update. A summary (with motivations) for these changes follows. For the details, see: http://tools.ietf.org/wg/msec/draft-ietf-msec-tesla-for-alc-norm/draft-ietf-msec-tesla-for-alc-norm-02-from-01.diff.html Summary: ** Concerning in-band bootstrap: - total reorganization of the bootstrap format. In particular, better separation between parameters sent in-band and the other parameters (e.g. we removed NTP and certificate stuff). - better understanding of when this in-band bootstrap is useful (typically for testing purposes, or in static environments, when keys are pre-distributed, or when higher level signaling protocols (e.g. MIKEY) are not/cannot be deployed, (e.g. when there's no back channel). See section 2.3. "Bootstrapping TESLA" for more details. While I think that keeping this in-band bootstrap feature can be useful for some use-cases, we tried to minimize its importance. ** Specification of NORM packet types for TESLA control packets (bootstrap and direct time synch) thanks to the help of Brian Adamson. (these types were not specified in previous versions) ** Added "authentication tag without key disclosure". This tag enables to significantly reduce the transmission overhead when several packets are sent per time interval. Some of them will contain the standard authentication tag (that reveals K_{i-d}) while others do not (which saves 20 bytes per packet with HMAC-SHA-1). This tag is also needed during the first "d" intervals of a session (0..d-1), since no key can be disclosed yet (yet the text explaining this is still missing in version -02...). ** Added "compact" versions of the various authentication tags. These versions replace the 32 bit "i" field by a compact 8 bit "i_LSB" (Least Significant Byte) counter. Additionally, when the MAC is not aligned on 32 bit boundaries, for instance with HMAC-SHA-1, the two padding bytes are replaced by the 16 bit "i_NSB" field ("Next Significant Bytes"). Each packet carries therefore 3 bytes of the i counter, and remove the original 32-bit "i" field. We explain how to guess the "i" field when only "i_LSB" (and perhaps "i_NSB") is(are) available in section 5.2 "Authentication of Received Packets". For instance (HMAC-SHA-1): +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | HET (=1) | HEL (=9) | ASID | 5 | i_LSB | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | + + | | + Disclosed Key K_{i-d} + | (20 bytes) | + + | | + + | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | + MAC(K'_i, M) + | (10 bytes) | + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | i_NSB | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ and without key disclosure: +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | HET (=1) | HEL (=4) | ASID | 6 | i_LSB | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | + MAC(K'_i, M) + | (10 bytes) | + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | i_NSB | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ ** Changed the EXT_AUTH authentication header. There's now an ASID (auth scheme ID) field, common to all EXT_AUTH headers, meant to identify the authentication scheme used in a given packet. See also: https://datatracker.ietf.org/drafts/draft-roca-rmt-simple-auth-for-alc-norm/ The idea is that several different shemes might be used in a session: - depending on the packet sender (TESLA for downward traffic, a simple group MAC scheme for the upward traffic), - depending on the traffic features (e.g. during an intense data exchange period, TESLA could be used, and later on, in the same session, a digital signature EXT_AUTH could be used for sporadic traffic, in the same session); - a group MAC EXT_AUTH could be used as a pre-check in addition to a digital signature EXT_AUTH, by including both EXT_AUTH header extensions in the same packet. The session description provides the actual mapping between the ASID value and the authentication scheme (4 bits are clearly too much, but header processing is simple). ** Added a brand new "Security" section ** Updated the section 7. "IANA Considerations" with up-to-date cryptographic functions. ** Changed/clarified many parts of the I-D. Comments are welcome. Anyway, I'll introduce new version next week, during the monday's RMT meeting. Cheers, Vincent and al. _______________________________________________ MSEC mailing list MSEC@ietf.org https://www1.ietf.org/mailman/listinfo/msec From msec-bounces@ietf.org Mon Jul 16 06:16:00 2007 Return-path: Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1IANcT-00005R-FS; Mon, 16 Jul 2007 06:15:57 -0400 Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1IANcR-0008Q9-P9; Mon, 16 Jul 2007 06:15:55 -0400 Received: from mx-serv.inrialpes.fr ([194.199.18.100]) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1IANcR-0000d8-7O; Mon, 16 Jul 2007 06:15:55 -0400 Received: from vilnius.inrialpes.fr (vilnius.inrialpes.fr [194.199.18.81]) by mx-serv.inrialpes.fr (8.13.6/8.13.0) with ESMTP id l6GAF1g5025614; Mon, 16 Jul 2007 12:15:01 +0200 (MEST) Received: from [194.199.24.115] (ornon.inrialpes.fr [194.199.24.115]) by vilnius.inrialpes.fr (8.13.6/8.11.3/ImagV2) with ESMTP id l6GAF12P014198; Mon, 16 Jul 2007 12:15:01 +0200 (MEST) Message-ID: <469B4526.3090303@inrialpes.fr> Date: Mon, 16 Jul 2007 12:15:02 +0200 From: Vincent Roca User-Agent: Thunderbird 2.0.0.4 (X11/20070620) MIME-Version: 1.0 To: msec@ietf.org, rmt@ietf.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-3.0 (mx-serv.inrialpes.fr [194.199.18.100]); Mon, 16 Jul 2007 12:15:02 +0200 (MEST) X-mx-serv-inrialpes-fr-MailScanner-Information: Please contact postmaster@inrialpes.fr for more information X-mx-serv-inrialpes-fr-MailScanner: Found to be clean X-mx-serv-inrialpes-fr-MailScanner-SpamCheck: n'est pas un polluriel, SpamAssassin (not cached, score=0, requis 5) X-mx-serv-inrialpes-fr-MailScanner-From: vincent.roca@inrialpes.fr X-Spam-Status: No X-Spam-Score: 0.0 (/) X-Scan-Signature: b2809b6f39decc6de467dcf252f42af1 Cc: =?ISO-8859-1?Q?Aur=E9lien_?= Subject: [MSEC] Version 02 of the "TESLA for ALC and NORM" I-D is available X-BeenThere: msec@ietf.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Multicast Security List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: msec-bounces@ietf.org Hello, This is to inform you that we recently updated our "TESLA for ALC and NORM" I-D. http://tools.ietf.org/html/draft-ietf-msec-tesla-for-alc-norm-02.txt This is a MAJOR update. A summary (with motivations) for these changes follows. For the details, see: http://tools.ietf.org/wg/msec/draft-ietf-msec-tesla-for-alc-norm/draft-ietf-msec-tesla-for-alc-norm-02-from-01.diff.html Summary: ** Concerning in-band bootstrap: - total reorganization of the bootstrap format. In particular, better separation between parameters sent in-band and the other parameters (e.g. we removed NTP and certificate stuff). - better understanding of when this in-band bootstrap is useful (typically for testing purposes, or in static environments, when keys are pre-distributed, or when higher level signaling protocols (e.g. MIKEY) are not/cannot be deployed, (e.g. when there's no back channel). See section 2.3. "Bootstrapping TESLA" for more details. While I think that keeping this in-band bootstrap feature can be useful for some use-cases, we tried to minimize its importance. ** Specification of NORM packet types for TESLA control packets (bootstrap and direct time synch) thanks to the help of Brian Adamson. (these types were not specified in previous versions) ** Added "authentication tag without key disclosure". This tag enables to significantly reduce the transmission overhead when several packets are sent per time interval. Some of them will contain the standard authentication tag (that reveals K_{i-d}) while others do not (which saves 20 bytes per packet with HMAC-SHA-1). This tag is also needed during the first "d" intervals of a session (0..d-1), since no key can be disclosed yet (yet the text explaining this is still missing in version -02...). ** Added "compact" versions of the various authentication tags. These versions replace the 32 bit "i" field by a compact 8 bit "i_LSB" (Least Significant Byte) counter. Additionally, when the MAC is not aligned on 32 bit boundaries, for instance with HMAC-SHA-1, the two padding bytes are replaced by the 16 bit "i_NSB" field ("Next Significant Bytes"). Each packet carries therefore 3 bytes of the i counter, and remove the original 32-bit "i" field. We explain how to guess the "i" field when only "i_LSB" (and perhaps "i_NSB") is(are) available in section 5.2 "Authentication of Received Packets". For instance (HMAC-SHA-1): +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | HET (=1) | HEL (=9) | ASID | 5 | i_LSB | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | + + | | + Disclosed Key K_{i-d} + | (20 bytes) | + + | | + + | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | + MAC(K'_i, M) + | (10 bytes) | + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | i_NSB | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ and without key disclosure: +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | HET (=1) | HEL (=4) | ASID | 6 | i_LSB | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | + MAC(K'_i, M) + | (10 bytes) | + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | i_NSB | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ ** Changed the EXT_AUTH authentication header. There's now an ASID (auth scheme ID) field, common to all EXT_AUTH headers, meant to identify the authentication scheme used in a given packet. See also: https://datatracker.ietf.org/drafts/draft-roca-rmt-simple-auth-for-alc-norm/ The idea is that several different shemes might be used in a session: - depending on the packet sender (TESLA for downward traffic, a simple group MAC scheme for the upward traffic), - depending on the traffic features (e.g. during an intense data exchange period, TESLA could be used, and later on, in the same session, a digital signature EXT_AUTH could be used for sporadic traffic, in the same session); - a group MAC EXT_AUTH could be used as a pre-check in addition to a digital signature EXT_AUTH, by including both EXT_AUTH header extensions in the same packet. The session description provides the actual mapping between the ASID value and the authentication scheme (4 bits are clearly too much, but header processing is simple). ** Added a brand new "Security" section ** Updated the section 7. "IANA Considerations" with up-to-date cryptographic functions. ** Changed/clarified many parts of the I-D. Comments are welcome. Anyway, I'll introduce new version next week, during the monday's RMT meeting. Cheers, Vincent and al. _______________________________________________ MSEC mailing list MSEC@ietf.org https://www1.ietf.org/mailman/listinfo/msec From msec-bounces@ietf.org Mon Jul 16 06:32:32 2007 Return-path: Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1IANsW-00088F-Qa; Mon, 16 Jul 2007 06:32:32 -0400 Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1IANsV-000888-9Q for msec@ietf.org; Mon, 16 Jul 2007 06:32:31 -0400 Received: from mx-serv.inrialpes.fr ([194.199.18.100]) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1IANsU-00010j-SC for msec@ietf.org; Mon, 16 Jul 2007 06:32:31 -0400 Received: from vilnius.inrialpes.fr (vilnius.inrialpes.fr [194.199.18.81]) by mx-serv.inrialpes.fr (8.13.6/8.13.0) with ESMTP id l6GAWPBW027847 for ; Mon, 16 Jul 2007 12:32:25 +0200 (MEST) Received: from [194.199.24.115] (ornon.inrialpes.fr [194.199.24.115]) by vilnius.inrialpes.fr (8.13.6/8.11.3/ImagV2) with ESMTP id l6GAWP7Y014324 for ; Mon, 16 Jul 2007 12:32:25 +0200 (MEST) Message-ID: <469B493A.8080201@inrialpes.fr> Date: Mon, 16 Jul 2007 12:32:26 +0200 From: Vincent Roca User-Agent: Thunderbird 2.0.0.4 (X11/20070620) MIME-Version: 1.0 To: msec@ietf.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-3.0 (mx-serv.inrialpes.fr [194.199.18.100]); Mon, 16 Jul 2007 12:32:25 +0200 (MEST) X-mx-serv-inrialpes-fr-MailScanner-Information: Please contact postmaster@inrialpes.fr for more information X-mx-serv-inrialpes-fr-MailScanner: Found to be clean X-mx-serv-inrialpes-fr-MailScanner-SpamCheck: n'est pas un polluriel, SpamAssassin (not cached, score=0, requis 5) X-mx-serv-inrialpes-fr-MailScanner-From: vincent.roca@inrialpes.fr X-Spam-Status: No X-Spam-Score: 0.0 (/) X-Scan-Signature: 68c8cc8a64a9d0402e43b8eee9fc4199 Subject: [MSEC] concerning draft-dondeti-msec-ipsec-tesla-02 X-BeenThere: msec@ietf.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Multicast Security List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: msec-bounces@ietf.org Hello Lakshminath/Ran, I've just seen that the TESLA for IPsec I-D is now available: http://www.ietf.org/internet-drafts/draft-dondeti-msec-ipsec-tesla-02.txt That's great. We are interested in it and will read it carefully. Perhaps some kind of harmonization between the IPsec and the ALC/NORM fields of application of TESLA is feasible. Cheers, Vincent. _______________________________________________ MSEC mailing list MSEC@ietf.org https://www1.ietf.org/mailman/listinfo/msec From msec-bounces@ietf.org Mon Jul 16 06:32:32 2007 Return-path: Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1IANsW-00088F-Qa; Mon, 16 Jul 2007 06:32:32 -0400 Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1IANsV-000888-9Q for msec@ietf.org; Mon, 16 Jul 2007 06:32:31 -0400 Received: from mx-serv.inrialpes.fr ([194.199.18.100]) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1IANsU-00010j-SC for msec@ietf.org; Mon, 16 Jul 2007 06:32:31 -0400 Received: from vilnius.inrialpes.fr (vilnius.inrialpes.fr [194.199.18.81]) by mx-serv.inrialpes.fr (8.13.6/8.13.0) with ESMTP id l6GAWPBW027847 for ; Mon, 16 Jul 2007 12:32:25 +0200 (MEST) Received: from [194.199.24.115] (ornon.inrialpes.fr [194.199.24.115]) by vilnius.inrialpes.fr (8.13.6/8.11.3/ImagV2) with ESMTP id l6GAWP7Y014324 for ; Mon, 16 Jul 2007 12:32:25 +0200 (MEST) Message-ID: <469B493A.8080201@inrialpes.fr> Date: Mon, 16 Jul 2007 12:32:26 +0200 From: Vincent Roca User-Agent: Thunderbird 2.0.0.4 (X11/20070620) MIME-Version: 1.0 To: msec@ietf.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-3.0 (mx-serv.inrialpes.fr [194.199.18.100]); Mon, 16 Jul 2007 12:32:25 +0200 (MEST) X-mx-serv-inrialpes-fr-MailScanner-Information: Please contact postmaster@inrialpes.fr for more information X-mx-serv-inrialpes-fr-MailScanner: Found to be clean X-mx-serv-inrialpes-fr-MailScanner-SpamCheck: n'est pas un polluriel, SpamAssassin (not cached, score=0, requis 5) X-mx-serv-inrialpes-fr-MailScanner-From: vincent.roca@inrialpes.fr X-Spam-Status: No X-Spam-Score: 0.0 (/) X-Scan-Signature: 68c8cc8a64a9d0402e43b8eee9fc4199 Subject: [MSEC] concerning draft-dondeti-msec-ipsec-tesla-02 X-BeenThere: msec@ietf.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Multicast Security List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: msec-bounces@ietf.org Hello Lakshminath/Ran, I've just seen that the TESLA for IPsec I-D is now available: http://www.ietf.org/internet-drafts/draft-dondeti-msec-ipsec-tesla-02.txt That's great. We are interested in it and will read it carefully. Perhaps some kind of harmonization between the IPsec and the ALC/NORM fields of application of TESLA is feasible. Cheers, Vincent. _______________________________________________ MSEC mailing list MSEC@ietf.org https://www1.ietf.org/mailman/listinfo/msec From sample@mx.broad-tech.net Mon Jul 16 21:13:17 2007 Return-path: Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1IAbcr-0003wz-Nz for msec-archive@ietf.org; Mon, 16 Jul 2007 21:13:17 -0400 Received: from pd5fe76.tokyff01.ap.so-net.ne.jp ([202.213.254.118] helo=mx.broad-tech.net) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1IAbcm-00009M-PX for msec-archive@ietf.org; Mon, 16 Jul 2007 21:13:17 -0400 Received: by mx.broad-tech.net (Postfix, from userid 12359) id 172CE6034AA; Tue, 17 Jul 2007 09:16:50 +0900 (JST) To: msec-archive@ietf.org Subject: Join the PowerSeller Program Now From: eBay PowerSellers Content-Type: text/html Message-Id: <20070717001650.172CE6034AA@mx.broad-tech.net> Date: Tue, 17 Jul 2007 09:16:50 +0900 (JST) X-Spam-Score: 4.8 (++++) X-Scan-Signature: 76c7db407a166e4c39f35d8215d8dd32 eBay sent this message to an eBay Seller.
eBay sent this message to an eBay Seller.
Your registered name is included to show this message originated from eBay. Learn more.
Dear eBay Seller,

Congratulations! Your recent selling activity entitles you to Bronze status in the eBay PowerSeller Program. Your membership comes with some great benefits and services:
See the PowerSeller icon next to your User ID
Free seller support via Live Chat, Monday-Friday, 6am-2pm PST.
Get exclusive offerings on the PowerSeller portal--check back often for updates!
Network on the exclusive PowerSeller Discussion Board.
Download free business templates for PowerSeller business cards and letterhead.

Be sure to sign up today--it's FREE! Visit www.ebay.com/powerseller and click "Member Sign In." Please note that to activate your membership, you must register today.

Again, congratulations and best wishes for your continued success!

Sincerely,
eBay PowerSeller Team

eBay sent this communication to you because of your outstanding feedback, high sales, and good account standing. If you would not like to be invited to join the PowerSeller program, follow the directions above, click "Member Sign In", and then click "Decline" at the bottom of the page. Please note that it may take up to 10 days to process your request.

Visit our Privacy Policy and User Agreement if you have any questions.

Learn More to protect yourself from Spoof (fake) e-mails.

Copyright © 2007 eBay Inc. All Rights Reserved.
Designated trademarks and brands are the property of their respective owners.
eBay and the eBay logo are trademarks of eBay Inc.
eBay is located at 2145 Hamilton Avenue, San Jose, CA 95125.

 

From sample@mx.broad-tech.net Mon Jul 16 21:18:32 2007 Return-path: Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1IAbhv-0000qt-3o for msec-archive@lists.ietf.org; Mon, 16 Jul 2007 21:18:32 -0400 Received: from pd5fe76.tokyff01.ap.so-net.ne.jp ([202.213.254.118] helo=mx.broad-tech.net) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1IAbht-0000PP-2F for msec-archive@lists.ietf.org; Mon, 16 Jul 2007 21:18:31 -0400 Received: by mx.broad-tech.net (Postfix, from userid 12359) id 0105060247B; Tue, 17 Jul 2007 09:16:49 +0900 (JST) To: msec-archive@lists.ietf.org Subject: Join the PowerSeller Program Now From: eBay PowerSellers Content-Type: text/html Message-Id: <20070717001649.0105060247B@mx.broad-tech.net> Date: Tue, 17 Jul 2007 09:16:49 +0900 (JST) X-Spam-Score: 4.8 (++++) X-Scan-Signature: 76c7db407a166e4c39f35d8215d8dd32 eBay sent this message to an eBay Seller.
eBay sent this message to an eBay Seller.
Your registered name is included to show this message originated from eBay. Learn more.
Dear eBay Seller,

Congratulations! Your recent selling activity entitles you to Bronze status in the eBay PowerSeller Program. Your membership comes with some great benefits and services:
See the PowerSeller icon next to your User ID
Free seller support via Live Chat, Monday-Friday, 6am-2pm PST.
Get exclusive offerings on the PowerSeller portal--check back often for updates!
Network on the exclusive PowerSeller Discussion Board.
Download free business templates for PowerSeller business cards and letterhead.

Be sure to sign up today--it's FREE! Visit www.ebay.com/powerseller and click "Member Sign In." Please note that to activate your membership, you must register today.

Again, congratulations and best wishes for your continued success!

Sincerely,
eBay PowerSeller Team

eBay sent this communication to you because of your outstanding feedback, high sales, and good account standing. If you would not like to be invited to join the PowerSeller program, follow the directions above, click "Member Sign In", and then click "Decline" at the bottom of the page. Please note that it may take up to 10 days to process your request.

Visit our Privacy Policy and User Agreement if you have any questions.

Learn More to protect yourself from Spoof (fake) e-mails.

Copyright © 2007 eBay Inc. All Rights Reserved.
Designated trademarks and brands are the property of their respective owners.
eBay and the eBay logo are trademarks of eBay Inc.
eBay is located at 2145 Hamilton Avenue, San Jose, CA 95125.

 

From taktiktraining.com@kassarol.com Tue Jul 31 16:10:12 2007 Return-path: Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1IFy2m-00084d-CN for msec-archive@ietf.org; Tue, 31 Jul 2007 16:10:12 -0400 Received: from [65.218.135.2] (helo=xmfmypxn) by chiedprmail1.ietf.org with smtp (Exim 4.43) id 1IFy2l-0005qn-Ir for msec-archive@ietf.org; Tue, 31 Jul 2007 16:10:12 -0400 Message-ID: <000801c7d3ae$b226b580$0100007f@fyese> From: "Michael Ramirez" To: Subject: Beware of fake pills Date: Tue, 31 Jul 2007 16:06:36 -0600 MIME-Version: 1.0 Content-Type: multipart/related; boundary="----=_NextPart_000_004A_01C7D3AE.B226B580" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2900.2180 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180 X-Spam-Score: 4.4 (++++) X-Scan-Signature: 40161b1d86420e0807d771943d981d25 This is a multi-part message in MIME format. ------=_NextPart_000_004A_01C7D3AE.B226B580 Content-Type: multipart/alternative; boundary="----=_NextPart_001_0057_01C7D3AE.B226B580" ------=_NextPart_001_0057_01C7D3AE.B226B580 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable See attach. http://www.ravoalle.net/ ----- None of them, however, were co Brodick? Yes, Judith. Do you l Dead silence followed the ques Sweetheart, that isnt a questi ------=_NextPart_001_0057_01C7D3AE.B226B580 Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Hi

------=_NextPart_001_0057_01C7D3AE.B226B580-- ------=_NextPart_000_004A_01C7D3AE.B226B580 Content-Type: image/jpeg; name="pic8.jpg" Content-Transfer-Encoding: base64 Content-ID: /9j/4AAQSkZJRgABAgAAZABkAAD/7AARRHVja3kAAQAEAAAADwAA/+4AIUFkb2JlAGTAAAAAAQMA EAMCAwYAAAjDAAAVVAAAL7P/2wCEABMPDxcRFyUWFiUvJB0kLywkIyMkLDoyMjIyMjpDPT09PT09 Q0NDQ0NDQ0NDQ0NDQ0NDQ0NDQ0NDQ0NDQ0NDQ0MBFBcXHhoeJBgYJDMkHiQzQjMpKTNCQ0I+Mj5C Q0NDQ0NDQ0NDQ0NDQ0NDQ0NDQ0NDQ0NDQ0NDQ0NDQ0NDQ0NDQ//CABEIAKwCIwMBIgACEQEDEQH/ xAC/AAACAwEBAQAAAAAAAAAAAAAABQEDBAIGBwEBAQEBAQAAAAAAAAAAAAAAAAECAwQQAAICAgED AwMEAAYDAAAAAAIDAQQAEQUhEhMQIBQwQAYxQSIVUGAyIzMkQjQlEQACAQMCAgYGBwkAAgIDAAAB AhEAEgMhMUEiUWFxMhMEECCBkaFC8LHB0VJiIzBA4XKCktIzFPGiULJDU2MSAAEDAwQBBQAAAAAA AAAAAAABESEgQCIQUGAxUTBBEjJS/9oADAMBAAIRAxEAAAD2oAAAAABC1ihVzd5W9fR0paD08+af Jm0qIV7QopPSiXCeoENR6OfMM0vjHkX0mZauPWQi2Gu/zTNLTJnX0E+Z9InQCAAAAAAAAAAAALN/ zsS88kvRxJ0RK9W1WF802y/Q2iZzrAAAAAAAAAYdwL6Wwq/O4gTMNIKumYYM7cEvTgENXo4VPt2S mLrXAmG3Yr6ZwYTeJhoaCpm/YgABEHRz0AAAAAAAACH5/wC18QlBNs1TPfBHUdL1ZY8zpH163y8v rPT+K9p05yAgAC5jgOKbLLI4trAo7Ouo6Iz7ODmLYJqv4M9/MlMXBdk3UHIcmjLYFlWvOZZ0BTnr 31zuqmM/fFhz11JRVpqMltthp11WygAAAAQQtmvPeP8AaePidyz0GekLfRTz6qnqd/Wi7Ddm9eR1 eo68Ne6TpyAAAAAAAKMKtRVoNsYaRqLhGIruNwrtN4pBsYqhkYKRpHnLF9Ceb1Doya0ACJAOV2Wx rf5vSPITA27W1DeUHY8MuqUAAAOesUqhf1X5vbnUO8tihxn0WNIW6MdR1l1spOH1fbzYfYo3nXiA AAAQcrM2lYObDA2waChit7GGOKBrnjlLtaDUusoyDvHmzjnrFUW2LtIlue+aprRi2Tp0yyVM+iMO 5gihXY44xYhz0o0msxbCylflHPKfUOpV4z0M8dy5NXkPWzXSB55jHTNTFPD121nNnVh0GjLpt05s FmZs2obrj3PaRv38toG8AAYtqc413JF2ZM81FWmFzGqs5OLUrnqCuyO1iO4TmapXvTj5TRFXCsRb 2zTqopadUZ5lZPUzljAh9ZFiKHwIO3geabbpPKsXIefPQAmhzIdRMvhXOBbz9HocWI5dsXXM2zNP S7+ceiureNdmQt3W+fsuo5GrrzbeZ9FKxn6vHIFzCZwhXrDbzQVVy6OtzlF2nSJRNwURoDOaAz8a wzGkMxpDNzrDJGwMWdqHm9ToOZkCJBDfomzmueiK9lRki/opnTkNuvDvlADzfnvRef5+o67unSg1 xLjutoLJpJbb+WGYth3XnHnljZdrGq7mNRs/SNdViSdfMefcY1s1XiLdGqCSAkIJICTmsuICSAkg JICSqg2GPk3HGIYGOTWYLjSV5TcZINhWsG8cJqeTVghoJWpaAAB55RNHD19Vbas7x9NnHOIsXoFl 569iGzGnJl0avFWmu3y/Wazem9yTXZr9ctb74SB14ESAAY1TqmxDvY2iPh9UZMb6kU1vuDz+1nRS axtbCiv0ECKxtYLaHNZ53S74Mqz0ucVZPQdiKt5Qb0b6g89qb8mpU2rl5RuarLsmmRS6iyXsAABJ mdd+bpj73zc+Wp9Xxenzq3fjz6NO3Ixxq/q3nXOuqzNnSbLrXdMtPQ4WmdY36dpvjoJO/nAAAAAz r2CFr0NqHtHZnVD087qHGdbybtvndQ3qEp6CUmw3iqkdnnLB+LLzYILB2JJHIhtVzQiuH4k7Rvlw dDg890P6lHZouw9jWUvA9hPSr4ScjTUpzo5pw5pWfOO0ZypkZiLQb8fXZr7tEqsksAAAAAADNgby qfRvlc+ZiIolsCiHAqyu3adK24iffokU8uAT3sFizttlEVjkVVLQRdDIE/bUFY0BT00FU1ugX1NR FVjGBVLUFdLoVBLCheuWkspIeAr5bArGgqfpsIs0awAEAAAP/9oACAECAAEFAP8AIUlEZBb93TOm dPTpnTOmdPTpnT29M6Z0zp7ZKIzcThz0EsL9euCOo+z1ms1ms17JnUZE6wpzWsieo7n7TWa9dZrN ekTvDn2b6ZE6yJ39nvN5vN5vN5v032z1nO3NZ25ARnZGT0wZyJ39t09hfrrNendGeUYyWzODM6ju go/X6+vpGXXu6Swc7inO3eQMR6ftgR7N5vN5vN5vN5vN5vN5vN5vIzfvIDKYTGQnWTkZOTgx/HAn r97qM6ZqPTUf4N//2gAIAQMAAQUA9kRGduayY1kxnbms7cmNZqM1Ga6zGajJjX1o+hvNzkzvN5uc 3Od2bzebnNz6bn6UZqZ9YCZyR7cn29fo9fd19evtgZnO2RxcbwwwI1G4wz3Pt1Oa9+s1mp9m83m/ TfsiNyI9uEO8GNekxvD0Pvnrk+2M6ZrWROROT679d+m/SR1CY6+mvUhgoIJH27zXp0zUZrNZrJjI 9IyZ6ZrNZrNZrNesR3iEQMb9N5vOvoUbwhmJz9s3rN/aq/07iM36ayTiMg5whKZGOp/pn7fbhEQO 4jJZGR3TnZOdsRkZ1mcbO59dZrNZrNZrNZrNems1ms16a98HMR3TnljAnJyMjJn+U9Zb+nsiIzWa zWRHXWa3Gs1ms111ms7c1ms1ms1muus7c101nXOuanOvpufdG8nedc651z9o3k51yM67651zrnXO udc651zrvrnXP2651zrnXOuTv2f/2gAIAQEAAQUA+hOow+VCGVrIWgifSy+K64ncYzkhB1ex5w3r E2wcce61yA1jq8guyUTlq0NaIneSWsqWwtBlnkBQ2tyC7BRO/s+aY1VVhzM73m/WMHAKIyZ6KOc4 J5vqx+n0SxTXLsmLETM+A1VxtWWMYurdiYbVLau9wX+UJh17aIom2waCdxgiod2QWEXnGE0baPHY DiHNJfJGYXLRWQw+MHxMCDowrzWEUprM46iD1cM4m17Rdl+uRcg9Bsa0J39i04VHMc6/kIySzc5+ ududIwdZ0jA1kSMT+Nt8lL6U4mnKm3KEPwaT2HVpyljuLlgt41slUSKFtoPh7ajbAW6c2BPjIPCo 22ArjJXjwldqso3XF0rKIqVZQD6kssPqjYUVC34/6uYrWKBy5FRsHSqTWXRqfEBtPus/ANbf6mBB f6fYfkFhwJszA5/q9NZvP1yIwc1gRvDiIn8UtRKfrazWdsZrNZ2xms1ms1kjE52xmo9Jjeaw5EIj Uxms1ms1ms16bzebjILuiJ3m/p/lvIAC58czAzM+LuglFGdcjeDEliOPa/K/41rE8UlMXR1a/GPJ D/ZOWuRFAttxJ12kR3b0VyDlAlfzmkUXmGI8mRhHIEI1msO1dsOiZvkqUcnDG3L0V5DkpbDOYEJm 8w8+WyCm/wCDKdyLWRbZBByJE5XIk1sXo8TOYEC5XrSNjnvm68xZcdUJhWqrD5MzmLD7LXNNQDyh dk3zVKXNK1ZvEg0Xzdla41wLvnWWjlZJdM2sCPo/ltXuZM9d+IaKv9qKYmIiCyXSrNmpQqxABAel l4VlK4+zdPjOPCkqPa+gLXp46VpVRlZWKhsP4BNFlWwDT4wixXGEvG0JOUVGC2xx5OKzSixKqjhK xUJprpnBfAYM/CaEnxxETONmZroMMOgRG7jTcTeNJpf1zZiKBjlut8hDqTJYHHdsXaglIFNh39e5 crpyLrlSbMDxhRL6EtNNRsOv0YtSjj/C8OMYgQ4shEaLiBCvEHvI4HHcwtecvbC+LVSphT3YoOxV dcY7jxMrRWBt0omQZyAKILUFnKWS5F/EJkq0RqPupmIyJifZr11HqRQMHZWMDMTGTizE4jN+m83m 837J6ZfvTYwpx8TMPrlOMrjodlCZ8cHeVGJXFlrVCa54UkHZ+Xx+fjlEQdEREfRfaVXj+7rTkc3V z5hTBW2CIWbbxAroY2xaCAbeLPNZ7ZvPUPzWFEnenEW7m5vwEFzCAmORiYt8nIKrCDCbVCRACSVf k2DlS4uz7ZzkXlWJDmaaPcBd1SVxCpXYkkcSEAq8Um6tM28iyVYKMHCNemvZyL5SopyYxkRESHcM L1C5kSuN2TEkU8YmIFTRkrTvACKq+PDg65xPuM4CD5VjJiOTPJk1z3VRtharhF9laIG9WmJu18pX FiXy1RDraiLjJ2kjgMsWEGvjD760z/N8yu1FpUywAaNEBYNqkDgb5qsqsk2Dsw8TGUYBwBU+SFuR +nqQAeSlUZNVRT4w2umhZRUQJKStU2V1iwRQBWKflgY7c7onNxPoFsTfGbzlmybWTrIPeGXdkZI7 xi4hJVZZiQlceYqsRdJk9e6rKfIoxMfbOXDnkGI+VZWyvZ3UWlA3iCcC4uRtuFyVPrmsG15xdsax DeFmG5RxUrIOBo1IzxVtIq1O4qkZdpiMBWqMD+uWGWKo1RqhT29YuC5TOnKy7ygTYMQK5YItjjnE wMtWBrrnkLiwbyMJZetvs05v2K6TfdAat102LdiKyiv3Ejcl7btFzEtm/dUuxyDfNDLX9iP8vTlL U1uRUyGC04WLDhpXW9ornUGXQeua/hcCGygnqz5ViBMC7ikhEbBiFS0UFVs/xU2GRHs5S2NRPF8b /tW7cBMv7IYY6s2/4/K7pImQGmswJaMd7BjymMHZKM+V3kPIQMRfXhWQOBtwOMtQwU2JiflxOWLU yDnCRL5SAhnIqcJkAHx5bns0MKkM4gv+1H6crXmzW8SZG3WbaifOdQpKxnKgZMoI7LfJ1CtVvCgo FJBdGkbVOstegUSFx8ynkB6en5CMBf8Axq2Ro5C75yOdDfb1E8It4ooiRaEQVhUYNpWysKAQZ5om ZMf/ACidTQZiWyEjO49Jy4uLly3Yius2dsnY6jSa7Pigo4Ma8m0IE7K4ybUxM24MZsFgNIZGwwCW 1cYVlGjYh2HCSmIqjE+CIGa8SyumYlKwztROQlGHXr6g+7CeRiR6zhU9N50zsjO2M7YztjO2Jzsi M1GdkZ2xnbGdkZ2RnbE5Ea9PywIh9ewS2A8Qw7UTBphuSudayF92RUiZGmGirrCFrghrR8Z3n7Yu j5bBocqa3fBuuprFR5AGR6TnHbZbcwWMYffIDC8bBDBmoMr8Y+zNfh66o+CjIqJjPjJyaqZz4aM+ FXyaaJz4KMnjq858Cvk8fXnIo1xz4NfP6+vn9dXyeNrzn9ZWz+srZY4VDYPgHZU4SAIBgI6Tms/a wx8Yy49GWLTVnQuS43vf5kW3FKeQZLeOuSwEWnthVt9mKNg3rj1/JBgg7c7cgMgcmMgJKYVJYKe3 JWW5VuQjshbAl5MM4s8bcBNZjiTxCZvyqvbrvXyNeWV2zGbyf0pROQJyJ1yDBeWFMxlHi4mI/T7p 1AWG+mDpHj/5Jo+Nk1475oLkF8drB48BhVIVZapmvOOQVdMev5N/xLXOCg5waRFk1AHJhcTNkIw7 8ZFmZyWlMppOsQvhdQ2ihQWOVBK73KWbg1a5jFevZ4og5wxZSuVuRDjqQ1hycJpjfqcf2G+suxH9 SqcRSWmf8C6/Q51teGfJTGTyURnzyblxra+V1OeRKGgqn+P2zivwCxn/AKVKSvw2JaZwaYLGVxKL bArzx89xWuS+FPhp8ounw3hdXGBDLjPEriKkqj13E5uM3EZvNxOTrInefup4OGJ3G4zpkTvNxm4y J3m4xTgbljka9cgvoYqvydd5kcDA8tVMrF9Fcl3kMWjlKzyXbUxSXC4LHJ165TyCIVWvotEw+waN 1z7RTPa6bqEV2eVdkLTGfOa3jq5ya/Zzsky+iqvPiqZjKbPIj8fjuioqutvOUq8H+QMPJtPfiYjE xm83vHDExySuw6LewXzLZ4lDFuWWpj0mInI9eS6VAFCs7SYsK67VqufcFPtQzmJKVrCUyuutObE1 R/6z66Asd0BXhZKiKSoYyZWlQSqV1lJnilLAmWSmzXJTKoPaqxzAmdKxtiCsn8mtKmJGw1Lbcmkw iBj5JE2v4yqVrDBtjO4CP/pS4BybSeRYDlxj31bRVpltFMQMezl+M+Ua+IBQglaoV3mFi/bg2aaD RATXGKxS+6RXrJjWd2MPOXT3EICtqasuKqgUxDHDNedh7bSZcqvRWnCopMxTAzFdYwFBIEahMV0U pjwhplJLYimqIuVGNmpR8S1UUKjwhk11zC6SFRKFzAoWJspJcUVVRiaCFTqNDQrgbaSHTFZY4ugh JDSa20A9sMpJYcU1QKqKkYMaiVD3fFGWTxlbDqDJNppsZ4BmACAj2GiSMUCOQOvQ1CzAQsM5uhNZ 653idYjUYHWCjeMwy1nMFHZV6ModYFkTBjMlT34/fbcSVxyx+Cu4XhHusy0Q4yyVmvhTqEPB4/X+ SvzekzrK7XGXqyD1xlptiLhuWA717IxbXS/GJW3I4+tGSqqLWp7XQhcZ4QzwLnPiqxnH1jzj11LW DUSGeBeeBeCMDHX33P8AhrjYLjiugqoDGLsWYkl8cp71KsnZUTHkmha06qLLiaymFxsGVtJq8g8P ELq1gbaRxdorVe5M+ek1lioAObRvMaVUomw6/EzXexhcbybWAp8Nq2bMNm843IlDmg+vYhxFW3yN gGxcNbkLoPkrPGkZnTBtmtHJMihDGqbVI7zOCHtjnCNdflJauWi5FutLK9y2Rjj7jipp2V2tJjcq KbYZRa9tSbPhY+t3cg/yKuKNl2xWayTQNh1Kxab8PjjBp8Urxj9O2LDXXp20Vp4iPiqi2cvEzXx1 ZldCKtmnlijYM003hYr1LVYePQyoniqkKLXSjSfXBVa1XVSqxVSdR4XKlGxXBNF4UkK8Vbh6vgQ8 PKv+vtlUuUrNlF2q97G1nlbvUzdMjaYLqT7IPqOiy6tZOzepMcaqtkLNSrYQylTsV0r4phU1xbOV VH1XcbUfVnk6zbablOzYGxVsNsTVd8xdCwsXAxdbzW6Urq2AtVK1iuwOMf8AGfStMCxWfNh9Wyyw NVlZ9am1eV6VhVRde2lVamY2KcPGPteU+JpPb2e+/wDD8o/cch8ftT8byR9j/9oACAECAgY/AOQx oy371TetQ2zRsOKC/IX8kXnkhGMlIoe69kMpIrbhH//aAAgBAwIGPwDkEIZaOl+w2wuPVNk3pMMl bDXkJrJig6kk3cnnTJb9tPrS1/2dnZ3sk0f/2gAIAQEBBj8A/YtjCZGsMMyLoPjQyYzy+k5CCY6B 01PobCEdmWJtUcf6qvtZOpt/Q6LIKGD66YyrMzzFgB29tHGAyuupRu96AzgwWA09E1emwJX3ehcV rMxF3IAfto4wGVxqVff90d8LBCokseAHR19H/ipJnr9fetKImGA0pWybjT9p5gYcYfmHzBYpfLuW AyFsmQYhrrw0+NJk8quXcB1ZWtKzrvxrM2VmIRhalxrzOEMSMbKFPRJ2ov5gv4VosdZ5Gilhr+Uc x49dZziVW/16Fo4dlY74xu2VQbT1GseTCSCXCNrvNeZ8MkF3RVPRvtRZXbxQCxe4ya8pjdjz+Jfr vFZFyE+Fi5FQMROlCxyUCMwRjMaHavEzjM2RtQyK2nRFtFMwaVPKX3Iry5xrcefSQOHXTebYDGxU Y0AMxO80XDv4oF19x1/hWHLkJL3Wk3H8Ro+Xk+DhA5biLp14VOJyMUGcbcwntpsjlpLNaQx0jjS3 kllJUzvpSNBP6baCjnIsxKDj33J+n20PJO/JiaWee8vAfT7K1/cS54AmindxBuW2ZIrX1Na39G1b VOxpdNifr/aZcsz4hBpHU25E2aJpW8xkJC7IgtBPXWTITN8NWdbo8Uqdtop/DeFcAMrD6qGNdlp8 2F1W+NLOgR00i5G5kdXmOikAMWOmT3VmD6jKQdOBFHC+UWEb261hhtMN/DeaJxMcbMBPiLyN7emj kcjIoWGb5dflFFMGSE4ArqOoVbcWJMkt01izzHhzp0zRxPIBjUcK8E5h4e0281JgDdxrp/qrx8DW vEEcG7a8XO97AQoXRRNFCZksZ/mrwzrLFqXzE6BbbayPha0ZBqI2b8VY/DP6iG4vG871r+4uF5UI sGmrs0yo9nGlQbgCe2p/YaUKby53Ulh2H9519YljFSP2c7VI2rT9ovlgeZmUtrsta71AqU16an06 CgqKZqczFfyjShauutMp01olOZdm7PpHrOSNVa2J3ETPun3UVgwrot1xGra+36CsUsdW8wCOmHMU qC25p1ysFWhkPcDFMjKbgp6esdfCkVMWuUOVuaICxq2nGeujGOMgaxgzQo6DsaBRQznJ4UK0rNpa ZjamV0AyKyoFDSCW1GsU65BbCJyhpG7a8OyvMKNFXEpBDbd7q47dUUf+hAosbJo87bg6CDS42s59 vDyXN7RH20qC0MwLc7BV99KMKqzMzIYfQFROhgzTdwqhhpyAMTxtXj7YpmwYw6JEy0E6Tppw6/ZW a8cq5MarDxvZpt16/wBtOCwLHKyr4jQBp+KmHKWUgG1rl9hrJ4olRmRFIbps6tenr2o4gqkK1hF/ PpxtjajjVVgMUtGTn042wNPbS5Y0Z7I7WKzRJssU2/7BfMxNv8ayRtbT48TjGuO0HlBLMwkVjxhg uQ5GxM0aG0EzWVMjeJai5EMQZLWgaddYjkyqys1rCI4HamdcpS1iq4/CLTB/FHH4UiY28NWxjI3K DxiKBRbzPTbHWaYkKzqyLyPcvMRxjSnTKg8RbCqq03Xm0ax01ZlW39OdDK71lBiBi8TH2iQR77ff WFYAdr/F6gkg/wDtFY0wBFY4/EY627xC9tPfaMjZnUlptED6QKyi9XdEOQMgMe0e76a0MmUqbhcA vCf2Xi6Som2N14nrg/XUjsq0d5tz1UW4E00jU0RkQMo6O9RfCHhY8TGe+OsVdjQHrOtQPQ2bJoqj 3nhQy2n9Rt9YDddKlovjmYcTxPreMToVsKx2j6iffSYrpKvezR3jNI102HKY6fEaaXJjYK4FssLg R76CZmuWbmWLQegdQHRxNYRjfuLk5mXhK76/dSvKl5Z2vS5SW02nhwoEtMZPF0H5LYp3DAFmRxpt aKbNkcMWCrosd331kIYW5EGNgRrpd/lUltLHU6b36TQLuCB0LBPbvS5Ea1wCuouEfCldmEqWbRbR LCIjWmGJwqsbtUkrO9pnjRGLJaj94Eajs14/QU/OLXKP3fwR18YosrgMWZxK6cwiImmLsGJIOmkR Tc0Kzrl0GoZY6+qudwVDXLKcw7GnagcjKyg3BinP0xM0EOTkXIMo5de8WiZ66Ko4CFi3c5hO8Gdq fBPeFtNlw5LS4hlKyNOPbSc0lXbIx/EWBB+usmVpZTjssUTtJmsQTKcwRpIsgKIPeNMuHIFxsxaC slZ6NaGQtMY/D17aABAtN0MJU9o0osWGrYmhVgcjToKZpElVC8usq12/uo5szhjbbAWKQzBQyesc RWTNdN/yx3enjxrGcOSHRQhJWQR2Vpk/UD+IMhWd9CN9qyDNkJLrYABAXTo9tKm8AD3fsNdBRCAs fdQGXEBHdadRVu9E0o6gffWtDICVZe6w3oZGYO0QzdVBiI0q2QT0XD7agq2vuo40P6GHfrPTWNI5 En+qa0/e9TWn7KTRYmAq+I3Zr9xoEag+ialdRJHu/ZzwFFF0UH3+lnHtq5aQDoFQ5o41knsoBeOt eFJCnTSrlVMw2tyyCOzspfJ+XyXPm+UfKOgdVPjyqCbdZ4EEffUDb9lOVgo665b2HSqGK0LMxPdC 61IQj+ZgPquNF7CwH4T9WgoNiVVU7TJP2VDBGHu++pKoB2k1cAhU6xqKnw1n+Y/40Xy4xaPwH/K2 uXDk1Gha2PgzGpuVfy+GzfGiuRV06mX7D9ldxj2W/wCVRkDKTsGWpXFlI6k/jWiuhOgLLFaQWnVu muZQVB5jG1fo5GCx/SffpR8UXINmG9G08w3HR6wygmCrJE/P3l+qKOJmM4FyXNPePyfCfhWVyzFj 5VSebTuv9e/xpXRmM43NrMTcVEg67VgbHkZzkIDc5a5bSZ+n215Y3klyoJDTwNEAky+Tcz85ooA7 WpJCv4aiTvMzWJcjvYUyXQT8rKBzce3jxpcruWRHy43k8Ljb9Ue2l8Q8xEnqJ4eube8dB6hAqOug aGXe0gMD+GpxiHGpU/MvVXiHSaKHhRcAMdlUniabznmIyeZfnE8BwUdQ+m1ZPNZd3MCfif6jHrlm gAcTVvk8Ry/n7qew1vjQe+o8z5pVP4VtX69fdV3K6sI8VnutPXdpVpzIex1+yhnxOniKRqGEx9tT 4iSfzCv9if3Csis6wG5dRUg3fygn6hWO42yTo/Jw/NUcASB2VLEDtNMpdTIbiOikPQIoVjcGFYFX +z41AdZ/mFFWAMimRh3GKrHQKKA2sfptUENAO8aHr6qIJYQZgirXVD7foaCqSEbWQp3+nGg4KhlB uJ0oY8kBuBB0PqwwBokqNe9pQNo2t24VMDQQulFlRQx3MVcEW7sFEqACTJig2ZULDulwKCAoG+Xb jQVDalwZljeCDUeo+D5lj4j0lRMKKn1Jpcg/FQdZPSOqre/iB0Vu8D+U70WzsAp7q63ff76/TW3r q5+c9etDK6KWiJI1EUCPW6qdHlPL4SGc/jPRQbGRgT5VtuMcONeH/wBE6ar4dun8w2mjbjCsN+Px 40hVVIDCV05q5FA6QKOgJU3bdFB2xoAQOArlRSD1DWmAUm5tPD+2iwOm0UQ0HQwDVpDY8g1ZUYjT prmW8j/9jT9dEDGg4QFFNhIjIusrKyD91cmTIoH5v4UjS2U3C4O06e2hbiUKdNBH1VGJnxjoR9KO YZMlnz8x+yg+OGb8TnWjjcG08BQFxMnQjcUuPIZA+bhR8JbhPfmCOpanNjXbVywYn26Vc0AHuiZq 1tSvH0NkbZRJ+yvHyJjGOAxQE+JH8KRnj/nyLy5DwPX21lyooGOYWZm0bn7uqsC2ozubdJjqNKgR HzE6uJ8Nfto+W8yEDW3r4Zpsza2iaGbKuM4tDapN6jrnSgUTG36c475iJ49dZ8+ZUKq5ude8DGw6 qHmcmNPC0NqzeAeNJg8sqm9PEDPMfClvCXeGLrZttv4ddTw9DZFOq2k9looOuzAEe2izcKZxsST7 6J4nSgD0ekr00iGbEHD8VfpkEdfCt9emr8hkmtNKMdNc1XpvxqfVOQ948q9poZPM87NzBG7q9YHT XhoQG478o9lWJLAfMftupi2s7XdNKHMc1Hw5JmNquZTynjV6pv1rXcOm+oqGVgH1HGjKtPUNa0BH 8wM1OsgRMGoY7dtamiSxA4dtczT/ADCrUaI1u6KJBPsOld7WioadRQYrM7sNCKhztoCeNFW2NFeB GlFGdp6jRPNkXgrbe+r2AuJ1G0DhWUdQ9D4gYJ+Max8Kt/5G8UCLdQvbM7UnkwpTGoHiPvqNlWfj WXy7oTkQFQQvKw6q8swRhY0NcOgVj8RXby0G9cc97hMEaUMiYnxYihEtuT9lNjXvaEeyrR5RvF4y CF7ZmsbWm0Yo01A16a80hBBZ2snY/wAKPlVxP4hAVpHKOkzWPQsi4Qtw6QaXIysytj8K5RxL+l7z AYLA/pimwZDz4z/6navDT/WPr9Ednp1rVhWrCok1cZY1op010ogA+6oNaVvQYbVPqY8Ld3H+oa31 OgoltWPxq3UnhrV2Q2/GlDLcPmPbRgHeBXhs1k8x4mg2MEkaa6VKDXjzfwq1lkdE61CDXpLAezY0 YXt59vhXKFAO4Y7/AAojK0fkoxaQfy0CCojqqALjxhdKgAfytp7K2M9G9SNJ6665rnE9BBP1ca0k VxFaSGoEcN6CbKNd4qSInbWmznduX3fuWLJtun214mMmGSGrWoANG7c12VqD6NqM0be9pUHYjXSm xKLgRArXWKUY4nINZNeGymdDI2oE6CaUOe9t214ZOvqZsx0AAWmcagEgVElY3u2qMMAccr8x9lA+ O0nqj6qg85jdiZnqoMQceM63M0/Cpi4/m1r/AFp/YK7i/wBoruL/AGiv9a/2iv8AWn9or/Wn9orX Gv8AaK7i+6p8MV3F91a4191QEX3V3F91f6191f6xWqCv9YruR2E1ycre+uUoe2auztefwRy1CiAO HqZzKwMuIKNeJx/Q9dOuQqSqq6kabtG0/b7KsxiT4bvEbkEADfrplZ1YgbAFWHaDv20ceK0KqDIW IncnTfq6KxM5W3KlwAkW6TvOvuFY1vRxkMQgPLyz3tQdqGMRaiy9/wA0kxH06orEmMot2FMhJBO/ QJFIiWo0XMTLbNbt19ulFsoAYMym38pj1Lj8rr8V9bata3j2VrWpq320S2gC1biVnY7Win8zljHH XrWXJ4jALbK/ik06nK6lBO+4pcoxtkxDX8UzQVjY50CultBdx6CK8yig3dXZXOtqLuW4nopWdbZ2 B+m9QNK5RqTS5c8luA0j98ZizWsVZlEbrEHbqos90sth6hM9FFnd2YqcdxjQdgHxrxGdnI5Vu4D2 UchPMyhD0QJ++kQkwi2Lt0W9FIWdj4ZnGDHRHRSAEgoCAfyncGltJ0QY/YKTwQ5AvlsbBW5jPHSP urw33JJiZPM06nj6gUfM4+C+mSxAqZ1rsoqomo0n0QPhrWkjrNBszE1ylbxGr66dlW4lLEcQIFeG eVDuBT48RBGQWkPIjro5MKK4I76tM1a+Mxx5taKGD/8AyyfZUITZwDcOz0ucAuLCNdhR8xmN2Y+4 dlWvrFSSauA1/wDiwmWbouArlTbieNcBRXHqTQDmGI2FAgGzjTNq2bJy40Ak1LqEnUl96IzOW04a CuWwHsuaoVZE6E1qTHRUxRB4ijGpBq56FguxsOYVdhgkcDuKBL69BHClA4ehm4xAo5cnfb6v2Ovo NFkOgMe6p9Tf09dGwzaSp9lWZGhugKT9Qo51ecY3OtWY3knUSD9tFjAA3oIr94wJBA98V4eRoY8L SfqFHMjiwd4n7aCY25iJEg7CjmQygnXojehkQypAIPUaKZG5hqwVSdOvSvHvHh/iFW4mk7xRYCY1 gb065RYlqsqncUSNTGg66PmcmUBgZ8K0RHRSvsSAacjIMONALTAMnpP1RTeY1GQA7dINKx3Kgn3e rkE6KFGnWtSwk9etCRHZQx+XxXAj/YeFA+Zech2rhp0nSoBDuN1xiiMOMKOlt6/VckdA9A9JHVTD 21PCr31HCpSVMcKVolpUHqkgT6dfUzSYFmT/AOpry74P9hKzbuyxzdtNlc4lyBmByu7Xq12nDgNg NxWXxxcQmKBwk3V5QsSP08gno5R0ViYqhu5Vy4m5jP4hxPTSAEWs4uuPKRB36pisyDw1XwmlMbE6 8Gg/SK8pkxiHbRm4mUNJiKhy2XNarNCGGJ59PcK81j5bQyaY+6O73ft66TDkCjDYzhT3S06k9OlZ FwmcR8yVbUxZbtI+WYrMv6Sr4DEpiYnh3oMV5cAaZFYZfz8o7xp8SAWeOFgsVAVhPDYXVlAOJR4T FkxMT/VBivKvjADNyu3E8hOvurOVWD4jKY6KzLibFhK23u4l20334V5g5nJQ5NXUfHsmsKZHTzAJ IVvnWsnh6m0a9U6/CaAfzIKG21RjE+zWsiY2x4ioW53HO+nDqFea8bJdjLLORR8dNN6wh3XOCYWB +ovX99ZPILt5hgyx0Meb76AGw0FZjjbFgVXIcsJdus6+6j4uQqfHlMoGzcD2GkxZTjyllMZE70fm 6vRk/kSiJBKiSJ4VdnyIuBTy4i4ueOLa6Cl5l5hyxsRT+XziDjI7+m43Wswnk/UXEzH5B3ZoBdgN PVV8YUOO8eqgcjs2uy6Cj4a7dRY0SoYHheLfhRTIPD10037KPime2iMQgenX1IFLESdCWq0MDpwp CO6K0gdE1zAMs7r9OFA76D1nxggXqU166DKi3xqwG9DIUUt0xRYABjuYoQoFvd02rxERQ3ExRRwG B4GiuNVVW3AG9DQcu2lWuilZuiONFbVgxdpvG1LZYV+bHkSVPXRVyrFjLQIHUAOiiuNAqncAaUCV EqOXTaipVYbcRv21aiBQ26gaUAVHLtptRdQA53NB3RWYbMVFHlXm72g1qUxqp6QIrtrxFQBukCpd FLA7soolVWToTHCi2PGobpGlDPmK2oCqAb6+jxDjQv0lRRWxYO4jSv0kVf5dPReAAx4xTZGA5lsi K0xIP6R91Y4geGZGns+2gcqKxGoJWrSBb0RQA0A9Um7QxU79vp5gD20QqgT1UWURjYyI6fR0UPUg UA2pJpRWvGoFSK1/YF0F0anWNK/6fD/TgybpjWhkTut65OIgMJPMCftFLkeC0sDHUY9BJMRRbGZA MfuHgTzxdHV6eunGRbVBhD0+ofDIB/NJ+2n8aJRyulThQO0itd/WdGWMYAtbpPojIoYfmANaY0/s FDCUW8gsOQUiJhU42HO0DStFHuruj3V3R7hXcX+0VLYsbEdKL91MR5dEKMV7i6/CtEUewV3R7q7o 91QP2GT+RvqNKEC+HDXR3ouMxwmsS+VkBzYPxdenT2VjGMZWxtPieIre/XamglSATymsPmPGaJJZ W4gMabOWyhpJxrjRrRG2wg9dYmzMMS//AJp5S3UOInqrNjLM2NArr4kzEfm1o+YyZGBabLTAHCg2 JmV0uPe31rB4bsGfvEHWB3p9untq2SNBrOulHPc3KH5SZU/xo+ZfIyuwYqAYUDsoZH72qk9lRky2 4yvKisQ93s1rJc7XIzKGnXl6aHmPGyXqGZYOmh49NJ5tXYG1b1VumsfhuwQLewB3/D9OqnKkqyqW 0PVS+YDsHAUkg7yf41hyI7KzFVPtH8KwkZWZcjWupOnD76XEmRwrqWIB6OisXlXyMxcszOoN1vRy /XwoqgyHEU08RX7/ALRSo2Z1z3cysTB5thRS9x+mTIbrrHiTK4VlOk9FIr5oW4+I7GGK8AOM1kwq znHaGW+Z4dOv2Vnws7MEa1WJ1FO7ZnlS0QegcaxZZnJkNgMa7xIrF4RyspNuTxFY+3orI5dgiNYi qY249dZhMxkOvTRyI7KQVEKeusL48jLLqjAHTWseNczRkDSG5vd0UfLl2ZCl/OZM1mOTK141xDET oOsDT+6sOVfnK+I3Vx7KOLHldsQS8w+gPRPXWbEzsVAVhJ/FWdGzPCNAg0yhpyAsiu304CsHh5Ge 4jHk3KkmBpOlKL35kY97bXhWFVdyrBgQT0Csql2THiNqhGgz11m8o7GccFGnWI0o5zlcOAxWD+E1 iy6wwUuykgwRvpTNizNkxx3WMspmsvXlf9oy4ok6cxP3V/zDw9iLpPHqilwo3OrXgn8X3UPEtQDe 3WaYJEkRzH+BoYMoXlnumZkz0Cmx4rXxsSVkwwn2VizKVd0mQ22tNlewrkEMAYiB2fbTYUsOMzY2 uk+yvBzFdzBB3+qsmQaqWYJ2Tr9Oquij5d7ThN2sm6DX/PjtYfI5OwPTpS4QZganrpvMY7SrqBzT yxWXFCEOWYNcfmEfhr/lhJhlm4/N/TQwZyBC2mDPKBQPFtR2Du/CmSQLgRrX/IfDAAtDa7A9n31j xgIGQhu8eGn4eusTqEjGbjLH/Gl8wAkKpWCxnWfy/fSZcRC5sZ06DTFiqcrABfxdJPRSY8gWVInJ PNp7KHmcNp5bCGJ+6kzAJCDXmP8Ajp8axZccE4yTYxMGm8ybIdQrLcREew1lc2HxDcOY/wCNNiNh Jk948f6aHlshUMplWBJG/HQUFyWqAdWXj2U7YbWx5CWIYnQ+6sniW2sS2hPH2UcOMLqd2J/xrGFC AoQ3eMEj+naseYBAMfC48d/lr/ohAtoSAxn6t6y4VstyljeSZ19mv03rH5MwMhMJbqDbrrSeKMRV 2t/Tkb+ysnmOQhwFAuPD+msrmwjIS45jp/61k8u5SXa4FSekHXTqrFIQHCQYBOsezqpPM4rZVbWU k8fZWLMAn6fC46zv8unxp82EBlyd5JiCOI0rJka05snbH1UfLkIWNwm4/N/TWJUKziFrLdowjTh9 N6bzDBULLaEH103jlTqbbejh+7L/ANW08m+9L4fdgW9n7BP+j/Z8u+31fQ9f7yP+jp5Ym6eqNaW6 /wAT5PGv+F3/AJ/cv//Z ------=_NextPart_000_004A_01C7D3AE.B226B580--