From internet-drafts@ietf.org Tue Oct 1 06:33:25 2013 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CCF1511E8228; Tue, 1 Oct 2013 06:33:25 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -102.536 X-Spam-Level: X-Spam-Status: No, score=-102.536 tagged_above=-999 required=5 tests=[AWL=0.064, BAYES_00=-2.599, NO_RELAYS=-0.001, USER_IN_WHITELIST=-100] Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WhMJHqeveVTv; Tue, 1 Oct 2013 06:33:25 -0700 (PDT) Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id D918A11E81BE; Tue, 1 Oct 2013 06:32:39 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable From: internet-drafts@ietf.org To: i-d-announce@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 4.72 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <20131001133239.4916.74510.idtracker@ietfa.amsl.com> Date: Tue, 01 Oct 2013 06:32:39 -0700 Cc: hipsec@ietf.org Subject: [Hipsec] I-D Action: draft-ietf-hip-reload-instance-09.txt X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.12 List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 01 Oct 2013 13:33:26 -0000 A New Internet-Draft is available from the on-line Internet-Drafts director= ies. This draft is a work item of the Host Identity Protocol Working Group of t= he IETF. Title : Host Identity Protocol-Based Overlay Networking Environm= ent (HIP BONE) Instance Specification for REsource LOcation And Discovery (= RELOAD) Author(s) : Ari Keranen Gonzalo Camarillo Jouni Maenpaa Filename : draft-ietf-hip-reload-instance-09.txt Pages : 10 Date : 2013-10-01 Abstract: This document is the Host Identity Protocol-Based Overlay Networking Environment (HIP BONE) instance specification for the REsource LOcation And Discovery (RELOAD) protocol. The document provides the details needed to build a RELOAD-based overlay that uses HIP. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-hip-reload-instance There's also a htmlized version available at: http://tools.ietf.org/html/draft-ietf-hip-reload-instance-09 A diff from the previous version is available at: http://www.ietf.org/rfcdiff?url2=3Ddraft-ietf-hip-reload-instance-09 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ From internet-drafts@ietf.org Fri Oct 4 06:09:06 2013 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8A02421F9C00; Fri, 4 Oct 2013 06:09:06 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -102.538 X-Spam-Level: X-Spam-Status: No, score=-102.538 tagged_above=-999 required=5 tests=[AWL=0.062, BAYES_00=-2.599, NO_RELAYS=-0.001, USER_IN_WHITELIST=-100] Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jKxk36KwmZBK; Fri, 4 Oct 2013 06:08:59 -0700 (PDT) Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 8075821F9C42; Fri, 4 Oct 2013 05:57:14 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable From: internet-drafts@ietf.org To: i-d-announce@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 4.80 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <20131004125714.12797.79957.idtracker@ietfa.amsl.com> Date: Fri, 04 Oct 2013 05:57:14 -0700 Cc: hipsec@ietf.org Subject: [Hipsec] I-D Action: draft-ietf-hip-rfc6253-bis-01.txt X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.12 List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 04 Oct 2013 13:09:06 -0000 A New Internet-Draft is available from the on-line Internet-Drafts director= ies. This draft is a work item of the Host Identity Protocol Working Group of t= he IETF. Title : Host Identity Protocol Certificates Author(s) : Tobias Heer Samu Varjonen Filename : draft-ietf-hip-rfc6253-bis-01.txt Pages : 12 Date : 2013-10-04 Abstract: The Certificate (CERT) parameter is a container for digital certificates. It is used for carrying these certificates in Host Identity Protocol (HIP) control packets. This document specifies the certificate parameter and the error signaling in case of a failed verification. Additionally, this document specifies the representations of Host Identity Tags in X.509 version 3 (v3) and Simple Public Key Infrastructure (SPKI) certificates. The concrete use cases of certificates, including how certificates are obtained, requested, and which actions are taken upon successful or failed verification, are specific to the scenario in which the certificates are used. Hence, the definition of these scenario- specific aspects is left to the documents that use the CERT parameter. This document extends I-D.draft-ietf-hip-rfc5201-bis. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-hip-rfc6253-bis There's also a htmlized version available at: http://tools.ietf.org/html/draft-ietf-hip-rfc6253-bis-01 A diff from the previous version is available at: http://www.ietf.org/rfcdiff?url2=3Ddraft-ietf-hip-rfc6253-bis-01 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ From internet-drafts@ietf.org Sun Oct 6 20:32:11 2013 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8BEB921E813F; Sun, 6 Oct 2013 20:32:11 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -102.552 X-Spam-Level: X-Spam-Status: No, score=-102.552 tagged_above=-999 required=5 tests=[AWL=0.048, BAYES_00=-2.599, NO_RELAYS=-0.001, USER_IN_WHITELIST=-100] Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qjAgI1a03loM; Sun, 6 Oct 2013 20:32:11 -0700 (PDT) Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 02B9821E8133; Sun, 6 Oct 2013 20:32:11 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable From: internet-drafts@ietf.org To: i-d-announce@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 4.80.p1 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <20131007033210.2583.57944.idtracker@ietfa.amsl.com> Date: Sun, 06 Oct 2013 20:32:10 -0700 Cc: hipsec@ietf.org Subject: [Hipsec] I-D Action: draft-ietf-hip-rfc5201-bis-14.txt X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.12 List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 07 Oct 2013 03:32:11 -0000 A New Internet-Draft is available from the on-line Internet-Drafts director= ies. This draft is a work item of the Host Identity Protocol Working Group of t= he IETF. Title : Host Identity Protocol Version 2 (HIPv2) Author(s) : Robert Moskowitz Tobias Heer Petri Jokela Thomas R. Henderson Filename : draft-ietf-hip-rfc5201-bis-14.txt Pages : 127 Date : 2013-10-06 Abstract: This document specifies the details of the Host Identity Protocol (HIP). HIP allows consenting hosts to securely establish and maintain shared IP-layer state, allowing separation of the identifier and locator roles of IP addresses, thereby enabling continuity of communications across IP address changes. HIP is based on a SIGMA- compliant Diffie-Hellman key exchange, using public key identifiers from a new Host Identity namespace for mutual peer authentication. The protocol is designed to be resistant to denial-of-service (DoS) and man-in-the-middle (MitM) attacks. When used together with another suitable security protocol, such as the Encapsulated Security Payload (ESP), it provides integrity protection and optional encryption for upper-layer protocols, such as TCP and UDP. This document obsoletes RFC 5201 and addresses the concerns raised by the IESG, particularly that of crypto agility. It also incorporates lessons learned from the implementations of RFC 5201. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-hip-rfc5201-bis There's also a htmlized version available at: http://tools.ietf.org/html/draft-ietf-hip-rfc5201-bis-14 A diff from the previous version is available at: http://www.ietf.org/rfcdiff?url2=3Ddraft-ietf-hip-rfc5201-bis-14 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ From internet-drafts@ietf.org Fri Oct 11 01:12:23 2013 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DFE2E21E80E4; Fri, 11 Oct 2013 01:12:22 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -102.574 X-Spam-Level: X-Spam-Status: No, score=-102.574 tagged_above=-999 required=5 tests=[AWL=0.026, BAYES_00=-2.599, NO_RELAYS=-0.001, USER_IN_WHITELIST=-100] Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BCcGjoLhIZD7; Fri, 11 Oct 2013 01:12:22 -0700 (PDT) Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 0A3CE21E809C; Fri, 11 Oct 2013 01:12:22 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable From: internet-drafts@ietf.org To: i-d-announce@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 4.80.p1 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <20131011081222.4932.118.idtracker@ietfa.amsl.com> Date: Fri, 11 Oct 2013 01:12:22 -0700 Cc: hipsec@ietf.org Subject: [Hipsec] I-D Action: draft-ietf-hip-reload-instance-10.txt X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.12 List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 11 Oct 2013 08:12:23 -0000 A New Internet-Draft is available from the on-line Internet-Drafts director= ies. This draft is a work item of the Host Identity Protocol Working Group of t= he IETF. Title : Host Identity Protocol-Based Overlay Networking Environm= ent (HIP BONE) Instance Specification for REsource LOcation And Discovery (= RELOAD) Author(s) : Ari Keranen Gonzalo Camarillo Jouni Maenpaa Filename : draft-ietf-hip-reload-instance-10.txt Pages : 10 Date : 2013-10-11 Abstract: This document is the Host Identity Protocol-Based Overlay Networking Environment (HIP BONE) instance specification for the REsource LOcation And Discovery (RELOAD) protocol. The document provides the details needed to build a RELOAD-based overlay that uses HIP. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-hip-reload-instance There's also a htmlized version available at: http://tools.ietf.org/html/draft-ietf-hip-reload-instance-10 A diff from the previous version is available at: http://www.ietf.org/rfcdiff?url2=3Ddraft-ietf-hip-reload-instance-10 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ From ari.keranen@nomadiclab.com Fri Oct 11 01:26:57 2013 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7D87821E81C3 for ; Fri, 11 Oct 2013 01:26:41 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.599 X-Spam-Level: X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599] Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Rnb9wFiCWsuP for ; Fri, 11 Oct 2013 01:26:36 -0700 (PDT) Received: from gw.nomadiclab.com (gw.nomadiclab.com [193.234.218.122]) by ietfa.amsl.com (Postfix) with ESMTP id 241AA21E81B4 for ; Fri, 11 Oct 2013 01:26:01 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by gw.nomadiclab.com (Postfix) with ESMTP id 321824E6F2 for ; Fri, 11 Oct 2013 11:25:59 +0300 (EEST) X-Virus-Scanned: amavisd-new at nomadiclab.com Received: from gw.nomadiclab.com ([127.0.0.1]) by localhost (inside.nomadiclab.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8Dw4lbyjJtXu for ; Fri, 11 Oct 2013 11:25:58 +0300 (EEST) Received: from tri60.nomadiclab.com (localhost [IPv6:::1]) by gw.nomadiclab.com (Postfix) with ESMTPSA id 20F8A4E54F for ; Fri, 11 Oct 2013 11:25:58 +0300 (EEST) Message-ID: <5257B614.2010306@nomadiclab.com> Date: Fri, 11 Oct 2013 11:25:56 +0300 From: Ari Keranen User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.8; rv:17.0) Gecko/20130801 Thunderbird/17.0.8 MIME-Version: 1.0 To: hipsec@ietf.org References: <20131011081222.4932.118.idtracker@ietfa.amsl.com> In-Reply-To: <20131011081222.4932.118.idtracker@ietfa.amsl.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Re: [Hipsec] I-D Action: draft-ietf-hip-reload-instance-10.txt X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 11 Oct 2013 08:26:58 -0000 Hi all, FYI, this version fixes the IESG review comments about two different security modes. We ended up making the HIP over IPsec mode MUST and removed the ENCRYPTED parameter mode. This makes the whole security mechanism simpler and more secure (no need to worry about exposing headers). Cheers, Ari On 10/11/13 11:12 AM, internet-drafts@ietf.org wrote: > > A New Internet-Draft is available from the on-line Internet-Drafts directories. > This draft is a work item of the Host Identity Protocol Working Group of the IETF. > > Title : Host Identity Protocol-Based Overlay Networking Environment (HIP BONE) Instance Specification for REsource LOcation And Discovery (RELOAD) > Author(s) : Ari Keranen > Gonzalo Camarillo > Jouni Maenpaa > Filename : draft-ietf-hip-reload-instance-10.txt > Pages : 10 > Date : 2013-10-11 > > Abstract: > This document is the Host Identity Protocol-Based Overlay Networking > Environment (HIP BONE) instance specification for the REsource > LOcation And Discovery (RELOAD) protocol. The document provides the > details needed to build a RELOAD-based overlay that uses HIP. > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-hip-reload-instance > > There's also a htmlized version available at: > http://tools.ietf.org/html/draft-ietf-hip-reload-instance-10 > > A diff from the previous version is available at: > http://www.ietf.org/rfcdiff?url2=draft-ietf-hip-reload-instance-10 > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > _______________________________________________ > Hipsec mailing list > Hipsec@ietf.org > https://www.ietf.org/mailman/listinfo/hipsec > From iesg-secretary@ietf.org Wed Oct 16 08:53:00 2013 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4511711E8146; Wed, 16 Oct 2013 08:53:00 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -102.438 X-Spam-Level: X-Spam-Status: No, score=-102.438 tagged_above=-999 required=5 tests=[AWL=0.162, BAYES_00=-2.599, NO_RELAYS=-0.001, USER_IN_WHITELIST=-100] Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1vqKFX6dYBIF; Wed, 16 Oct 2013 08:52:59 -0700 (PDT) Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id C486411E831E; Wed, 16 Oct 2013 08:52:40 -0700 (PDT) Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit From: The IESG To: IETF-Announce X-Test-IDTracker: no X-IETF-IDTracker: 4.80.p2 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <20131016155240.32175.87861.idtracker@ietfa.amsl.com> Date: Wed, 16 Oct 2013 08:52:40 -0700 Cc: hip mailing list , hip chair , RFC Editor Subject: [Hipsec] Document Action: 'Host Identity Protocol-Based Overlay Networking Environment (HIP BONE) Instance Specification for REsource LOcation And Discovery (RELOAD)' to Experimental RFC (draft-ietf-hip-reload-instance-10.txt) X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.12 List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Oct 2013 15:53:00 -0000 The IESG has approved the following document: - 'Host Identity Protocol-Based Overlay Networking Environment (HIP BONE) Instance Specification for REsource LOcation And Discovery (RELOAD)' (draft-ietf-hip-reload-instance-10.txt) as Experimental RFC This document is the product of the Host Identity Protocol Working Group. The IESG contact persons are Ted Lemon and Brian Haberman. A URL of this Internet Draft is: http://datatracker.ietf.org/doc/draft-ietf-hip-reload-instance/ Technical Summary: This document is the Host Identity Protocol-Based Overlay Networking Environment (HIP BONE) instance specification for the REsource LOcation And Discovery (RELOAD) protocol. The document provides the details needed to build a RELOAD-based overlay that uses HIP. Working Group Summary: There is WG consensus behind this draft. The WG actively worked on this draft at the same time as RELOAD was being developed (this draft was also discussed in the P2PSIP WG, where RELOAD was developed, so that RELOAD had enough hooks to be able to run with HIP). This draft was put on hold when the RELOAD specification got stuck (for a long time) during its IESG review. Now that RELOAD has been published, this spec can be published as well (RELOAD is, obviously, an essential dependency for this draft). Document Quality: There is at least one implementation of this draft. The delay in the publication of RELOAD has a negative impact in the number of people implementing RELOAD-related specs. Nevertheless, now that RELOAD has been published, the interest seems to be growing again. Personnel: Who is the Document Shepherd? Who is the Responsible Area Director? Miika Komu is the document shepherd. Ted Lemon is the responsible AD. From gonzalo.camarillo@ericsson.com Wed Oct 30 03:33:02 2013 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BEEDE21E8064 for ; Wed, 30 Oct 2013 03:32:59 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -103.871 X-Spam-Level: X-Spam-Status: No, score=-103.871 tagged_above=-999 required=5 tests=[AWL=-1.272, BAYES_00=-2.599, USER_IN_WHITELIST=-100] Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Fo+ASxypw9Mr for ; Wed, 30 Oct 2013 03:32:51 -0700 (PDT) Received: from sesbmg20.ericsson.net (sesbmg20.ericsson.net [193.180.251.56]) by ietfa.amsl.com (Postfix) with ESMTP id 7BC3911E812F for ; Wed, 30 Oct 2013 03:32:50 -0700 (PDT) X-AuditID: c1b4fb38-b7f178e00000233b-8c-5270e05025be Received: from ESESSHC016.ericsson.se (Unknown_Domain [153.88.253.124]) by sesbmg20.ericsson.net (Symantec Mail Security) with SMTP id F0.71.09019.050E0725; Wed, 30 Oct 2013 11:32:48 +0100 (CET) Received: from [131.160.126.146] (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.68) with Microsoft SMTP Server id 14.2.328.9; Wed, 30 Oct 2013 11:32:48 +0100 Message-ID: <5270E04F.8040600@ericsson.com> Date: Wed, 30 Oct 2013 12:32:47 +0200 From: Gonzalo Camarillo User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/20130801 Thunderbird/17.0.8 MIME-Version: 1.0 To: Miika Komu References: <51DE5DB2.70408@ericsson.com> <51DE71F2.8050602@cs.hut.fi> In-Reply-To: <51DE71F2.8050602@cs.hut.fi> X-Enigmail-Version: 1.5.1 Content-Type: text/plain; charset="ISO-8859-1" Content-Transfer-Encoding: 7bit X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFupjluLIzCtJLcpLzFFi42KZGfG3RjfgQUGQwbcP+hZTF01mtmje9pzN gcnjVf9aZo8lS34yBTBFcdmkpOZklqUW6dslcGXc3LGTuWAqa8XmrfwNjBNZuhg5OSQETCR+ fDjDDGGLSVy4t54NxBYSOMIoMWmuVhcjF5C9llFi59m3rCAJXgFtiaaVPUA2BweLgKrEsQdi IGE2AQuJLbfug80UFYiS2LD9AgtEuaDEyZlPwGwRAQWJVZOPsIC0MguISmyfVQUSFhawkri+ dw7UWjeJfQfPgp3DKaApMfH2QyaI0yQltrxoZwexmQX0JKZcbWGEsOUltr+dwwzRqy2x/FkL ywRGoVlINs9C0jILScsCRuZVjBzFqcVJuelGBpsYgWF6cMtvix2Ml//aHGKU5mBREuf9+NY5 SEggPbEkNTs1tSC1KL6oNCe1+BAjEwenVAPj4maDNdkGGgsuvecUEJiyrevbgmVlN3aL3RN/ NFMxuqtwy/2dgU+zZ/25s01W0E3xd8JXs7eNHxkv3bJZcftZ074SgY2pUokWQc/nZkprrM01 U7feMzti3dKuM/0b6mff+y+0Smt///J/lQs0Y19d2ePwsObN7QDVPmulXmnziFqJs0pfjj7a r8RSnJFoqMVcVJwIAC5pnlwhAgAA Cc: hipsec@ietf.org Subject: Re: [Hipsec] Status of draft-ietf-hip-rfc4423-bis X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 30 Oct 2013 10:33:02 -0000 Hi Miika, this draft does not seem to have been revised since our last email exchange below. What is the current status of this draft? Thanks, Gonzalo On 11/07/2013 11:50 AM, Miika Komu wrote: > Hi Gonzalo, > > On 11/07/13 10:24, Gonzalo Camarillo wrote: >> Hi Bob, >> >> what is the status of 4423bis? The current draft expired a few months ago: >> >> http://tools.ietf.org/html/draft-ietf-hip-rfc4423-bis-05 > > I have promised to help with Bob with 4423bis during this summer. > > _______________________________________________ > Hipsec mailing list > Hipsec@ietf.org > https://www.ietf.org/mailman/listinfo/hipsec > > From gonzalo.camarillo@ericsson.com Wed Oct 30 03:45:54 2013 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 018B811E8109 for ; Wed, 30 Oct 2013 03:45:54 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -105.659 X-Spam-Level: X-Spam-Status: No, score=-105.659 tagged_above=-999 required=5 tests=[AWL=0.590, BAYES_00=-2.599, HELO_EQ_SE=0.35, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100] Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4vJ8PsMwSYZG for ; Wed, 30 Oct 2013 03:45:48 -0700 (PDT) Received: from mailgw2.ericsson.se (mailgw2.ericsson.se [193.180.251.37]) by ietfa.amsl.com (Postfix) with ESMTP id A915511E8135 for ; Wed, 30 Oct 2013 03:45:37 -0700 (PDT) X-AuditID: c1b4fb25-b7eff8e000000eda-19-5270e350e719 Received: from ESESSHC023.ericsson.se (Unknown_Domain [153.88.253.124]) by mailgw2.ericsson.se (Symantec Mail Security) with SMTP id AE.14.03802.053E0725; Wed, 30 Oct 2013 11:45:36 +0100 (CET) Received: from [131.160.126.146] (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.89) with Microsoft SMTP Server id 14.2.328.9; Wed, 30 Oct 2013 11:45:36 +0100 Message-ID: <5270E350.2090506@ericsson.com> Date: Wed, 30 Oct 2013 12:45:36 +0200 From: Gonzalo Camarillo User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/20130801 Thunderbird/17.0.8 MIME-Version: 1.0 To: HIP References: <51DE5CA0.4010708@ericsson.com> <51E4F03C.2040000@ericsson.com> In-Reply-To: <51E4F03C.2040000@ericsson.com> X-Enigmail-Version: 1.5.1 Content-Type: text/plain; charset="ISO-8859-1" Content-Transfer-Encoding: 7bit X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrFJMWRmVeSWpSXmKPExsUyM+JvjW7A44Igg8t7bSymLprM7MDosWTJ T6YAxigum5TUnMyy1CJ9uwSujEfzDrEW9IhWzD2u2sDYINDFyMkhIWAi8fxWMzOELSZx4d56 ti5GLg4hgUOMEvdWn4Jy1jJKrHi6ggWkildAW2L181VMIDaLgKrE8qnXwWw2AQuJLbfug9WI CkRJbNh+AapeUOLkzCdgtoiApETP3aVgtrBAqMTmPS/ZQGwhAW+Jg5POsYLYnAI6Eq9XL2GE uEhSYsuLdnYQm1lAT2LK1RZGCFteYvvbOcwQvdoSy5+1sExgFJyFZN0sJC2zkLQsYGRexcie m5iZk15utIkRGH4Ht/xW3cF455zIIUZpDhYlcd4Pb52DhATSE0tSs1NTC1KL4otKc1KLDzEy cXBKNTCGdrE90Zz/lSNtr2W75Y1C0UuCL3zbbk0VOPrr7YxZF9Sy9u+ylc41UhB07LPL3Ohp V2K5S0+xQS7zftWbJ3pah5wvN2i/PbTs5qNFd00P97/jbvJILfyf99/g6kPmUO3I+J3eTdN8 Z0gemhNUeoHrVGLze+78XpWiow/bV23/zcEk3Gr+5bgSS3FGoqEWc1FxIgCaxUEpDQIAAA== Subject: Re: [Hipsec] References to expired work in progress in 4843bis and 5201bis X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 30 Oct 2013 10:45:54 -0000 Authors of draft-ietf-hip-rfc4843-bis, could you please fix the nits below? Also, note that the current draft will expire in a week. Thanks, Gonzalo On 16/07/2013 10:03 AM, Gonzalo Camarillo wrote: > Hi, > > ID nits complains about the following in 4843bis. These nits need to be > fixed before we request the publication of the draft: > > http://tools.ietf.org/idnits?url=http://tools.ietf.org/id/draft-ietf-hip-rfc4843-bis-04.txt > > == Unused Reference: 'Hi3' is defined on line 433, but no explicit > reference was found in the text > > == Unused Reference: 'NodeID' is defined on line 443, but no explicit > reference was found in the text > > -- Obsolete informational reference (is this intentional?): RFC 4773 > (Obsoleted by RFC 6890) > > ID nits also complains about 5201bis. Could the authors please have a > look at this output and fix whatever needs to be fixed? > > http://tools.ietf.org/idnits?url=http://tools.ietf.org/id/draft-ietf-hip-rfc5201-bis-12.txt > > And the same for 5202bis: > > http://tools.ietf.org/idnits?url=http://tools.ietf.org/id/draft-ietf-hip-rfc5202-bis-03.txt > > Thanks, > > Gonzalo > > > > On 11/07/2013 10:20 AM, Gonzalo Camarillo wrote: >> Hi, >> >> as you know, we are preparing the publication request for 4843bis, >> 5201bis, and 5202bis. The two former drafts have references to work in >> progress that has expired years ago. Do we want to keep those references >> in the drafts (see below)? >> >> Thanks, >> >> Gonzalo >> >> >> http://tools.ietf.org/html/draft-ietf-hip-rfc4843-bis-04#section-9 >> >> [PRIVACYTEXT] Dupont, F., "A Simple Privacy Extension >> for Mobile IPv6", Work in Progress, >> July 2006. >> >> >> http://tools.ietf.org/html/draft-dupont-mip6-privacyext-04 >> >> >> http://tools.ietf.org/html/draft-ietf-hip-rfc5201-bis-12#section-12 >> >> [I-D.ietf-btns-c-api] Richardson, M., Williams, N., Komu, M., >> and S. Tarkoma, "C-Bindings for IPsec >> Application Programming Interfaces", >> draft-ietf-btns-c-api-04 (work in >> progress), March 2009. >> >> http://tools.ietf.org/html/draft-ietf-btns-c-api-04 >> >> >> _______________________________________________ >> Hipsec mailing list >> Hipsec@ietf.org >> https://www.ietf.org/mailman/listinfo/hipsec >> > > _______________________________________________ > Hipsec mailing list > Hipsec@ietf.org > https://www.ietf.org/mailman/listinfo/hipsec > > From gonzalo.camarillo@ericsson.com Wed Oct 30 04:24:27 2013 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AB86911E8167 for ; Wed, 30 Oct 2013 04:24:27 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -103.85 X-Spam-Level: X-Spam-Status: No, score=-103.85 tagged_above=-999 required=5 tests=[AWL=-1.251, BAYES_00=-2.599, USER_IN_WHITELIST=-100] Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mL6wJm9dvheZ for ; Wed, 30 Oct 2013 04:24:22 -0700 (PDT) Received: from sesbmg20.ericsson.net (sesbmg20.ericsson.net [193.180.251.56]) by ietfa.amsl.com (Postfix) with ESMTP id 4342D11E8150 for ; Wed, 30 Oct 2013 04:24:21 -0700 (PDT) X-AuditID: c1b4fb38-b7f178e00000233b-5a-5270ec642b0c Received: from ESESSHC013.ericsson.se (Unknown_Domain [153.88.253.124]) by sesbmg20.ericsson.net (Symantec Mail Security) with SMTP id DD.EA.09019.46CE0725; Wed, 30 Oct 2013 12:24:20 +0100 (CET) Received: from [131.160.126.146] (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.59) with Microsoft SMTP Server id 14.2.328.9; Wed, 30 Oct 2013 12:24:20 +0100 Message-ID: <5270EC63.6070101@ericsson.com> Date: Wed, 30 Oct 2013 13:24:19 +0200 From: Gonzalo Camarillo User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/20130801 Thunderbird/17.0.8 MIME-Version: 1.0 To: HIP X-Enigmail-Version: 1.5.1 Content-Type: text/plain; charset="ISO-8859-1" Content-Transfer-Encoding: 7bit X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFnrCJMWRmVeSWpSXmKPExsUyM+JvjW7Km4Igg6k71CymLprM7MDosWTJ T6YAxigum5TUnMyy1CJ9uwSujPd37zEXvOau+HxhLWMD4znOLkZODgkBE4nF16cyQdhiEhfu rWfrYuTiEBI4wijR8G4XC4SzllFiz9cDbCBVvALaEn+f/WQEsVkEVCUen3wDZrMJWEhsuXWf BcQWFYiS2LD9AgtEvaDEyZlPwGwRAUmJnrtLwWxhgQiJjfNfs0JslpTY8qKdHcRmFtCTmHK1 hRHClpfY/nYOM4gtBLR3+bMWlgmM/LOQjJ2FpGUWkpYFjMyrGDmKU4uTctONDDYxAkPq4Jbf FjsYL/+1OcQozcGiJM778a1zkJBAemJJanZqakFqUXxRaU5q8SFGJg5OqQbGio8Mi67cOP5J m2139NcLS2M4Jdqnp85S8/I9FTaj5tLcy7Ucmsf6Pm9V7tjvmjuFrSpYX5njt5P22prNzK+O 3v2dUsRYlWXYskS5S2AG25WYUFPXZpXdkce49qZ+O8b66+Wr2W2v152XXZnibe6RVPZ/2u1T lp3Z5nqnV5RebWJes1Mn4doBJZbijERDLeai4kQAeu8o1fcBAAA= Subject: [Hipsec] Status update on the four core drafts: 4423bis, 4843bis, 5201bis, and 5202bis X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 30 Oct 2013 11:24:27 -0000 Folks, here you have a status update on the four core drafts. Note that at this point only one of them is ready for publication request. Authors and editors, please put some energy into this so that we can send them to our AD shortly. https://datatracker.ietf.org/doc/draft-ietf-hip-rfc4423-bis/ This draft needs to be revised. The last version expired in April: http://tools.ietf.org/id/draft-ietf-hip-rfc4423-bis-05.txt We agreed that this draft will be Informational (the current version still says PS). Given the slow progress of this draft, we will not be blocking the other three drafts on this one. Nevertheless, we need to make some progress with this one as well. https://datatracker.ietf.org/doc/draft-ietf-hip-rfc4843-bis/ This draft, which expires in a week, needs to be revised to fix a few nits. I am hoping that a new revision of this draft will be ready for publication request. https://datatracker.ietf.org/doc/draft-ietf-hip-rfc5201-bis/ This revision seems to be ready for publication request. We will request the publication of the three drafts (4843bis, 5201bis, and 5202bis) together, though. https://datatracker.ietf.org/doc/draft-ietf-hip-rfc5202-bis/ We need to add CMAC and GMAC to 5202-bis to provide a modern null cipher. We are waiting for text from Bob. Also, I still have not received a confirmation from all authors that they do not know any additional IPR on the draft. I hope to get it shortly. Cheers, Gonzalo From mkomu@cs.hut.fi Wed Oct 30 05:37:14 2013 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7348B21E80C7 for ; Wed, 30 Oct 2013 05:37:14 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -6.599 X-Spam-Level: X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4] Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MR4J4KaaOH49 for ; Wed, 30 Oct 2013 05:37:05 -0700 (PDT) Received: from mail.cs.hut.fi (mail.cs.hut.fi [130.233.192.7]) by ietfa.amsl.com (Postfix) with ESMTP id 98BB021E80B7 for ; Wed, 30 Oct 2013 05:36:47 -0700 (PDT) Received: from [127.0.0.1] (hutcs.cs.hut.fi [130.233.192.10]) by mail.cs.hut.fi (Postfix) with ESMTP id 70522308FBA for ; Wed, 30 Oct 2013 14:36:45 +0200 (EET) Message-ID: <5270FD5D.20809@cs.hut.fi> Date: Wed, 30 Oct 2013 14:36:45 +0200 From: Miika Komu User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.0 MIME-Version: 1.0 To: hipsec@ietf.org References: <51DE5DB2.70408@ericsson.com> <51DE71F2.8050602@cs.hut.fi> <5270E04F.8040600@ericsson.com> In-Reply-To: <5270E04F.8040600@ericsson.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Re: [Hipsec] Status of draft-ietf-hip-rfc4423-bis X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 30 Oct 2013 12:37:15 -0000 Hi, yes it has been, but only in my local copy. I'll spend some quality time this weekend in updating it. Sorry for the delay, too much other work lately. P.S. I'll fix the nits too. On 10/30/2013 12:32 PM, Gonzalo Camarillo wrote: > Hi Miika, > > this draft does not seem to have been revised since our last email > exchange below. What is the current status of this draft? > > Thanks, > > Gonzalo > > On 11/07/2013 11:50 AM, Miika Komu wrote: >> Hi Gonzalo, >> >> On 11/07/13 10:24, Gonzalo Camarillo wrote: >>> Hi Bob, >>> >>> what is the status of 4423bis? The current draft expired a few months ago: >>> >>> http://tools.ietf.org/html/draft-ietf-hip-rfc4423-bis-05 >> >> I have promised to help with Bob with 4423bis during this summer. >> >> _______________________________________________ >> Hipsec mailing list >> Hipsec@ietf.org >> https://www.ietf.org/mailman/listinfo/hipsec >> >> > > _______________________________________________ > Hipsec mailing list > Hipsec@ietf.org > https://www.ietf.org/mailman/listinfo/hipsec > From rgm@htt-consult.com Wed Oct 30 07:21:48 2013 Return-Path: X-Original-To: hipsec@ietfa.amsl.com Delivered-To: hipsec@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6B73711E8222 for ; Wed, 30 Oct 2013 07:21:48 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.599 X-Spam-Level: X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599] Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VzCx6rplfjRa for ; Wed, 30 Oct 2013 07:21:48 -0700 (PDT) Received: from klovia.htt-consult.com (klovia.htt-consult.com [IPv6:2607:f4b8:3:0:218:71ff:fe83:66b9]) by ietfa.amsl.com (Postfix) with ESMTP id E820B11E8180 for ; Wed, 30 Oct 2013 07:21:47 -0700 (PDT) Received: from localhost (unknown [127.0.0.1]) by klovia.htt-consult.com (Postfix) with ESMTP id F122262A70 for ; Wed, 30 Oct 2013 14:21:44 +0000 (UTC) X-Virus-Scanned: amavisd-new at localhost Received: from klovia.htt-consult.com ([127.0.0.1]) by localhost (klovia.htt-consult.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kdtlkrKbpz-Y for ; Wed, 30 Oct 2013 10:21:35 -0400 (EDT) Received: from lx120e2.htt-consult.com (unknown [107.18.164.98]) (Authenticated sender: rgm@htt-consult.com) by klovia.htt-consult.com (Postfix) with ESMTPSA id 60F1062A67 for ; Wed, 30 Oct 2013 10:21:34 -0400 (EDT) Message-ID: <527115EC.4060608@htt-consult.com> Date: Wed, 30 Oct 2013 07:21:32 -0700 From: Robert Moskowitz User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130625 Thunderbird/17.0.7 MIME-Version: 1.0 To: HIP Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: [Hipsec] Adding CMAC and GMAC to 5202-bis X-BeenThere: hipsec@ietf.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: "This is the official IETF Mailing List for the HIP Working Group." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 30 Oct 2013 14:21:48 -0000 We added the 'modern' modes: CCM and GCM to 5202-bis, but left out the authentication only modes. Thus I propose adding to sec 5.1.2: AES-CMAC-96 14 [RFC4493], [RFC4494] AES-GMAC 15 [RFC4543] If you have CCM in your implementation, it makes sense to offer CMAC, and likewise GCM/GMAC. If there is no down votes on this, Tom said he would add them. There is JUST one MINOR point about manditory to implement, also in sec 5.1.2. Keep it as is, or change it two either CCM or GCM? I can argue this all ways around. I suspect that sensor implementations may well ignore the manditory and just do CCM.