From btns-bounces@ietf.org Tue Oct 7 14:04:22 2008 Return-Path: X-Original-To: btns-archive-1@ietf.org Delivered-To: ietfarch-btns-archive-1@core3.amsl.com Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id EB7393A6A2C; Tue, 7 Oct 2008 14:04:22 -0700 (PDT) X-Original-To: btns@ietf.org Delivered-To: btns@core3.amsl.com Received: by core3.amsl.com (Postfix, from userid 30) id 0D9213A6B61; Tue, 7 Oct 2008 07:21:04 -0700 (PDT) X-idtracker: yes From: The IESG To: IETF-Announce Message-Id: <20081007142105.0D9213A6B61@core3.amsl.com> Date: Tue, 7 Oct 2008 07:21:05 -0700 (PDT) X-Mailman-Approved-At: Tue, 07 Oct 2008 14:04:21 -0700 Cc: Internet Architecture Board , btns mailing list , btns chair , RFC Editor Subject: [btns] Protocol Action: 'Better-Than-Nothing-Security: An Unauthenticated Mode of IPsec' to Proposed Standard X-BeenThere: btns@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: Better-Than-Nothing-Security Working Group discussion list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: btns-bounces@ietf.org Errors-To: btns-bounces@ietf.org The IESG has approved the following document: - 'Better-Than-Nothing-Security: An Unauthenticated Mode of IPsec ' as a Proposed Standard This document is the product of the Better-Than-Nothing Security Working Group. The IESG contact persons are Tim Polk and Pasi Eronen. A URL of this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-btns-core-07.txt Technical Summary The Internet network security protocol suite, IPsec, consisting of IKE, ESP, and AH, generally requires authentication of network layer entities to bootstrap security. This authentication can be based on mechanisms such as pre-shared symmetric keys, certificates and associated asymmetric keys, or the use of Kerberos. The need to deploy authentication information and its associated identities to network layer entities can be a significant obstacle to use of network security. This document describes extensions to the SPD and PAD to allow BTNS IPsec. Working Group Summary This document had rough consensus of the BTNS working group. Protocol Quality Sam Hartman reviewed the specification for the IESG. Note to RFC Editor Section 2: old: bind the same public key. These certificates need not to have been new: bind the same public key. These certificates do not need to be _______________________________________________ btns mailing list btns@ietf.org https://www.ietf.org/mailman/listinfo/btns From btns-bounces@ietf.org Tue Oct 7 14:04:23 2008 Return-Path: X-Original-To: btns-archive-1@ietf.org Delivered-To: ietfarch-btns-archive-1@core3.amsl.com Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 1815B3A6B4C; Tue, 7 Oct 2008 14:04:23 -0700 (PDT) X-Original-To: btns@ietf.org Delivered-To: btns@core3.amsl.com Received: by core3.amsl.com (Postfix, from userid 30) id 2B6113A6B1D; Tue, 7 Oct 2008 08:09:36 -0700 (PDT) X-idtracker: yes From: The IESG To: IETF-Announce Message-Id: <20081007150937.2B6113A6B1D@core3.amsl.com> Date: Tue, 7 Oct 2008 08:09:37 -0700 (PDT) X-Mailman-Approved-At: Tue, 07 Oct 2008 14:04:21 -0700 Cc: Internet Architecture Board , btns mailing list , btns chair , RFC Editor Subject: [btns] Document Action: 'Problem and Applicability Statement for Better Than Nothing Security (BTNS)' to Informational RFC X-BeenThere: btns@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: Better-Than-Nothing-Security Working Group discussion list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: btns-bounces@ietf.org Errors-To: btns-bounces@ietf.org The IESG has approved the following document: - 'Problem and Applicability Statement for Better Than Nothing Security (BTNS) ' as an Informational RFC This document is the product of the Better-Than-Nothing Security Working Group. The IESG contact persons are Tim Polk and Pasi Eronen. A URL of this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-btns-prob-and-applic-07.txt Technical Summary The Internet network security protocol suite, IPsec, consisting of IKE, ESP, and AH, generally requires authentication of network layer entities to bootstrap security. This authentication can be based on mechanisms such as pre-shared symmetric keys, certificates and associated asymmetric keys, or the use of Kerberos. The need to deploy authentication information and its associated identities to network layer entities can be a significant obstacle to use of network security. This document explains the rationale for extending the Internet network security suite to enable use of IPsec security mechanisms without authentication. These extensions are intended to protect communication in a "better than nothing" (BTNS) fashion. The extensions may be used on their own (Stand Alone BTNS, or SAB), or may be useful in providing network layer security that can be authenticated by higher layers in the protocol stack, called Channel Bound BTNS (CBB). This document also explains situations in which use of SAB and CBB extensions are appropriate. Working Group Summary This document is a product of the Better Than Nothing Security (BTNS) working group. Document Quality This document was reviewed by Sam Hartman for the IESG. Personnel The Document Shepherd for this document is Julien Laganier (BTNS co-chair) and the Responsible Area Director is Tim Polk. _______________________________________________ btns mailing list btns@ietf.org https://www.ietf.org/mailman/listinfo/btns From btns-bounces@ietf.org Tue Oct 7 14:31:12 2008 Return-Path: X-Original-To: btns-archive-1@ietf.org Delivered-To: ietfarch-btns-archive-1@core3.amsl.com Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 63AE53A6AA0; Tue, 7 Oct 2008 14:31:12 -0700 (PDT) X-Original-To: btns@core3.amsl.com Delivered-To: btns@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 668913A6A2E for ; Tue, 7 Oct 2008 14:31:11 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -5.184 X-Spam-Level: X-Spam-Status: No, score=-5.184 tagged_above=-999 required=5 tests=[AWL=0.862, BAYES_00=-2.599, HELO_MISMATCH_COM=0.553, RCVD_IN_DNSWL_MED=-4] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id v0tTQ5XsKx56 for ; Tue, 7 Oct 2008 14:31:10 -0700 (PDT) Received: from sca-ea-mail-1.sun.com (sca-ea-mail-1.Sun.COM [192.18.43.24]) by core3.amsl.com (Postfix) with ESMTP id BB3303A6768 for ; Tue, 7 Oct 2008 14:31:10 -0700 (PDT) Received: from dm-central-02.central.sun.com ([129.147.62.5]) by sca-ea-mail-1.sun.com (8.13.7+Sun/8.12.9) with ESMTP id m97LVJ5u014553 for ; Tue, 7 Oct 2008 21:31:19 GMT Received: from binky.Central.Sun.COM (binky.Central.Sun.COM [129.153.128.104]) by dm-central-02.central.sun.com (8.13.8+Sun/8.13.8/ENSMAIL, v2.2) with ESMTP id m97LVJnM045734 for ; Tue, 7 Oct 2008 15:31:19 -0600 (MDT) Received: from binky.Central.Sun.COM (localhost [127.0.0.1]) by binky.Central.Sun.COM (8.14.3+Sun/8.14.3) with ESMTP id m97LNPlR001104 for ; Tue, 7 Oct 2008 16:23:28 -0500 (CDT) Received: (from nw141292@localhost) by binky.Central.Sun.COM (8.14.3+Sun/8.14.3/Submit) id m97LNIEL001099 for btns@ietf.org; Tue, 7 Oct 2008 16:23:18 -0500 (CDT) X-Authentication-Warning: binky.Central.Sun.COM: nw141292 set sender to Nicolas.Williams@sun.com using -f Date: Tue, 7 Oct 2008 16:23:18 -0500 From: Nicolas Williams To: btns mailing list Message-ID: <20081007212317.GL8906@Sun.COM> References: <20081007150937.2B6113A6B1D@core3.amsl.com> Mime-Version: 1.0 Content-Disposition: inline In-Reply-To: <20081007150937.2B6113A6B1D@core3.amsl.com> User-Agent: Mutt/1.5.7i Subject: Re: [btns] Document Action: 'Problem and Applicability Statement for Better Than Nothing Security (BTNS)' to Informational RFC X-BeenThere: btns@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: Better-Than-Nothing-Security Working Group discussion list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: btns-bounces@ietf.org Errors-To: btns-bounces@ietf.org The applicability statement and btns core are in the RFC-Editor queue now. Woohoo! Where are we on connection latching? Nico -- _______________________________________________ btns mailing list btns@ietf.org https://www.ietf.org/mailman/listinfo/btns From btns-bounces@ietf.org Tue Oct 7 15:14:10 2008 Return-Path: X-Original-To: btns-archive-1@ietf.org Delivered-To: ietfarch-btns-archive-1@core3.amsl.com Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id EA15D3A6B9B; Tue, 7 Oct 2008 15:14:10 -0700 (PDT) X-Original-To: btns@core3.amsl.com Delivered-To: btns@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 6F25E3A686C for ; Tue, 7 Oct 2008 15:14:09 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.599 X-Spam-Level: X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eIVy6HQPO2qG for ; Tue, 7 Oct 2008 15:14:08 -0700 (PDT) Received: from deprox.docomolab-euro.com (deprox.docomolab-euro.com [212.119.9.186]) by core3.amsl.com (Postfix) with ESMTP id 9947B3A68D7 for ; Tue, 7 Oct 2008 15:14:08 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by deprox.docomolab-euro.com (Postfix) with ESMTP id 854A017037; Wed, 8 Oct 2008 00:14:47 +0200 (CEST) Received: from deprox.docomolab-euro.com ([127.0.0.1]) by localhost (deprox.docomolab-euro.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6A5hBD6QsGtC; Wed, 8 Oct 2008 00:14:45 +0200 (CEST) Received: from DEMAIL.docomolab-euro.com (demail.docomolab-euro.com [172.27.20.3]) by deprox.docomolab-euro.com (Postfix) with ESMTP; Wed, 8 Oct 2008 00:14:45 +0200 (CEST) Received: from [192.168.99.12] ([192.168.99.12]) by DEMAIL.docomolab-euro.com with Microsoft SMTPSVC(6.0.3790.3959); Wed, 8 Oct 2008 00:14:45 +0200 Message-ID: <48EBDF58.6030408@googlemail.com> Date: Wed, 08 Oct 2008 00:14:48 +0200 From: Julien Laganier User-Agent: Thunderbird 2.0.0.17 (Windows/20080914) MIME-Version: 1.0 To: Nicolas Williams References: <20081007150937.2B6113A6B1D@core3.amsl.com> <20081007212317.GL8906@Sun.COM> In-Reply-To: <20081007212317.GL8906@Sun.COM> X-OriginalArrivalTime: 07 Oct 2008 22:14:45.0553 (UTC) FILETIME=[1AD65A10:01C928CA] Cc: btns mailing list Subject: Re: [btns] Document Action: 'Problem and Applicability Statement for Better Than Nothing Security (BTNS)' to Informational RFC X-BeenThere: btns@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: Better-Than-Nothing-Security Working Group discussion list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset="us-ascii"; Format="flowed" Sender: btns-bounces@ietf.org Errors-To: btns-bounces@ietf.org Connection latching is currently in AD review. --julien Nicolas Williams wrote: > The applicability statement and btns core are in the RFC-Editor queue > now. Woohoo! > > Where are we on connection latching? > > Nico _______________________________________________ btns mailing list btns@ietf.org https://www.ietf.org/mailman/listinfo/btns