From wwwrun@core3.amsl.com Fri Jul 9 08:14:52 2010 Return-Path: X-Original-To: msec@ietf.org Delivered-To: msec@core3.amsl.com Received: by core3.amsl.com (Postfix, from userid 30) id 28C933A6ABD; Fri, 9 Jul 2010 08:14:51 -0700 (PDT) X-idtracker: yes To: IETF-Announce From: The IESG Message-Id: <20100709151452.28C933A6ABD@core3.amsl.com> Date: Fri, 9 Jul 2010 08:14:52 -0700 (PDT) Cc: msec@ietf.org Subject: [MSEC] Last Call: draft-ietf-msec-ipsec-group-counter-modes (Using Counter Modes with Encapsulating Security Payload (ESP) and Authentication Header (AH) to Protect Group Traffic) to Proposed Standard X-BeenThere: msec@ietf.org X-Mailman-Version: 2.1.9 Precedence: list Reply-To: ietf@ietf.org List-Id: Multicast Security List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 09 Jul 2010 15:14:52 -0000 The IESG has received a request from the Multicast Security WG (msec) to consider the following document: - 'Using Counter Modes with Encapsulating Security Payload (ESP) and Authentication Header (AH) to Protect Group Traffic ' as a Proposed Standard The IESG plans to make a decision in the next few weeks, and solicits final comments on this action. Please send substantive comments to the ietf@ietf.org mailing lists by 2010-07-23. Exceptionally, comments may be sent to iesg@ietf.org instead. In either case, please retain the beginning of the Subject line to allow automated sorting. The file can be obtained via http://www.ietf.org/internet-drafts/draft-ietf-msec-ipsec-group-counter-modes-05.txt IESG discussion can be tracked via https://datatracker.ietf.org/public/pidtracker.cgi?command=view_id&dTag=15718&rfc_flag=0 From bew@cisco.com Fri Jul 9 11:32:44 2010 Return-Path: X-Original-To: msec@core3.amsl.com Delivered-To: msec@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 7CC323A6AA5 for ; Fri, 9 Jul 2010 11:32:41 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -10.599 X-Spam-Level: X-Spam-Status: No, score=-10.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8DAYtSg4nyfe for ; Fri, 9 Jul 2010 11:32:36 -0700 (PDT) Received: from sj-iport-5.cisco.com (sj-iport-5.cisco.com [171.68.10.87]) by core3.amsl.com (Postfix) with ESMTP id 345243A63C9 for ; Fri, 9 Jul 2010 11:32:35 -0700 (PDT) Authentication-Results: sj-iport-5.cisco.com; dkim=neutral (message not signed) header.i=none X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: AlUFAJEHN0yrRN+K/2dsb2JhbACUB4xAcaRAmmGCeoItBIN5hFA X-IronPort-AV: E=Sophos;i="4.55,174,1278288000"; d="scan'208";a="224222047" Received: from sj-core-4.cisco.com ([171.68.223.138]) by sj-iport-5.cisco.com with ESMTP; 09 Jul 2010 18:32:10 +0000 Received: from dhcp-128-107-163-140.cisco.com (dhcp-128-107-163-140.cisco.com [128.107.163.140]) by sj-core-4.cisco.com (8.13.8/8.14.3) with ESMTP id o69IWA26000610 for ; Fri, 9 Jul 2010 18:32:10 GMT Message-Id: <789AF37F-ACED-493C-9D8C-A2A05DE0ABFF@cisco.com> From: Brian Weis To: msec@ietf.org Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit Mime-Version: 1.0 (Apple Message framework v936) Date: Fri, 9 Jul 2010 11:32:07 -0700 X-Mailer: Apple Mail (2.936) Subject: [MSEC] Agenda items for IETF 78 X-BeenThere: msec@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: Multicast Security List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 09 Jul 2010 18:32:44 -0000 Greetings, The MSEC WG will be meeting on Friday morning at IETF 78. If you would like to propose an agenda item, please send it to the chairs (msec-chairs@tools.ietf.org ). Thanks, Brian -- Brian Weis Security Standards and Technology, ARTG, Cisco Systems Telephone: +1 408 526 4796 Email: bew@cisco.com From root@core3.amsl.com Mon Jul 12 15:30:02 2010 Return-Path: X-Original-To: msec@ietf.org Delivered-To: msec@core3.amsl.com Received: by core3.amsl.com (Postfix, from userid 0) id 41B193A69C7; Mon, 12 Jul 2010 15:30:02 -0700 (PDT) From: Internet-Drafts@ietf.org To: i-d-announce@ietf.org Content-Type: Multipart/Mixed; Boundary="NextPart" Mime-Version: 1.0 Message-Id: <20100712223002.41B193A69C7@core3.amsl.com> Date: Mon, 12 Jul 2010 15:30:02 -0700 (PDT) Cc: msec@ietf.org Subject: [MSEC] I-D Action:draft-ietf-msec-gdoi-update-06.txt X-BeenThere: msec@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: Multicast Security List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 12 Jul 2010 22:30:02 -0000 --NextPart A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Multicast Security Working Group of the IETF. Title : The Group Domain of Interpretation Author(s) : B. Weis, et al. Filename : draft-ietf-msec-gdoi-update-06.txt Pages : 60 Date : 2010-07-12 This document describes an updated version of the Group Domain of Interpretation (GDOI) protocol specified in RFC 3547. The GDOI provides group key management to support secure group communications according to the architecture specified in RFC 4046. The GDOI manages group security associations, which are used by IPsec and potentially other data security protocols. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-msec-gdoi-update-06.txt Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ Below is the data which will enable a MIME compliant mail reader implementation to automatically retrieve the ASCII version of the Internet-Draft. --NextPart Content-Type: Message/External-body; name="draft-ietf-msec-gdoi-update-06.txt"; site="ftp.ietf.org"; access-type="anon-ftp"; directory="internet-drafts" Content-Type: text/plain Content-ID: <2010-07-12152754.I-D@ietf.org> --NextPart-- From vincent.roca@inrialpes.fr Mon Jul 19 02:52:43 2010 Return-Path: X-Original-To: msec@core3.amsl.com Delivered-To: msec@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 31C743A6A0A for ; Mon, 19 Jul 2010 02:52:43 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -6.249 X-Spam-Level: X-Spam-Status: No, score=-6.249 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HELO_EQ_FR=0.35, RCVD_IN_DNSWL_MED=-4] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iUTxo1l73qJN for ; Mon, 19 Jul 2010 02:52:42 -0700 (PDT) Received: from mail3-relais-sop.national.inria.fr (mail3-relais-sop.national.inria.fr [192.134.164.104]) by core3.amsl.com (Postfix) with ESMTP id 1BBF53A69F2 for ; Mon, 19 Jul 2010 02:52:41 -0700 (PDT) X-IronPort-AV: E=Sophos;i="4.55,226,1278280800"; d="scan'208";a="54438247" Received: from ornon.inrialpes.fr (HELO [194.199.24.115]) ([194.199.24.115]) by mail3-relais-sop.national.inria.fr with ESMTP/TLS/DHE-RSA-CAMELLIA256-SHA; 19 Jul 2010 11:52:54 +0200 Message-ID: <4C442075.6090000@inrialpes.fr> Date: Mon, 19 Jul 2010 11:52:53 +0200 From: Vincent Roca Organization: INRIA User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.1.9) Gecko/20100430 Fedora/3.0.4-2.fc12 Thunderbird/3.0.4 ThunderBrowse/3.3 MIME-Version: 1.0 To: msec@ietf.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: [MSEC] MSEC WGLC on draft-ietf-msec-gdoi-update-06 X-BeenThere: msec@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: Multicast Security List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 Jul 2010 09:52:43 -0000 Hello, Since draft-ietf-msec-gdoi-update-06 is now available, it's time to start officially the WGLC. So please review draft-ietf-msec-gdoi-update-06 and send comments to the WG mailing list before July 30th (MSEC meeting at IETF'78). If ever this is too short, then just tell me... Regards, Vincent NB: Thanks Yoav for your valuable review of the -05 version. From ynir@checkpoint.com Wed Jul 28 11:29:32 2010 Return-Path: X-Original-To: msec@core3.amsl.com Delivered-To: msec@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 9E9453A6894 for ; Wed, 28 Jul 2010 11:29:32 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.723 X-Spam-Level: X-Spam-Status: No, score=-2.723 tagged_above=-999 required=5 tests=[AWL=-0.124, BAYES_00=-2.599] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pLOlRfWxqTSO for ; Wed, 28 Jul 2010 11:29:31 -0700 (PDT) Received: from michael.checkpoint.com (smtp.checkpoint.com [194.29.34.68]) by core3.amsl.com (Postfix) with ESMTP id 7F5683A686E for ; Wed, 28 Jul 2010 11:29:28 -0700 (PDT) X-CheckPoint: {4C5082D1-0-1B221DC2-2FFFF} Received: from il-ex01.ad.checkpoint.com (il-ex01.checkpoint.com [194.29.34.26]) by michael.checkpoint.com (8.12.10+Sun/8.12.10) with ESMTP id o6SIToDq018746; Wed, 28 Jul 2010 21:29:50 +0300 (IDT) Received: from il-ex01.ad.checkpoint.com ([126.0.0.2]) by il-ex01.ad.checkpoint.com ([126.0.0.2]) with mapi; Wed, 28 Jul 2010 21:30:22 +0300 From: Yoav Nir To: Vincent Roca Date: Wed, 28 Jul 2010 21:29:48 +0300 Thread-Topic: [MSEC] MSEC WGLC on draft-ietf-msec-gdoi-update-06 Thread-Index: Acsugu9IYYeGE1JIS9y/KFPJJPZDNg== Message-ID: References: <4C442075.6090000@inrialpes.fr> In-Reply-To: <4C442075.6090000@inrialpes.fr> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: acceptlanguage: en-US Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 Cc: "msec@ietf.org" Subject: Re: [MSEC] MSEC WGLC on draft-ietf-msec-gdoi-update-06 X-BeenThere: msec@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: Multicast Security List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 28 Jul 2010 18:29:32 -0000 Hi. Nearly every issue I had with -05 is resolved by this. The one exception is in section 2.1.2 (UDP port). I'm still not sure which = port is used to set up the IKEv1 SA. Do I run the Main Mode over port 500 l= ike regular IKE, or over port 848? Otherwise, this looks ready for publication to me. Yoav On Jul 19, 2010, at 11:52 AM, Vincent Roca wrote: > Hello, >=20 > Since draft-ietf-msec-gdoi-update-06 is now available, > it's time to start officially the WGLC. >=20 > So please review draft-ietf-msec-gdoi-update-06 and send > comments to the WG mailing list before July 30th (MSEC > meeting at IETF'78). If ever this is too short, then just > tell me... From sheela@cisco.com Thu Jul 29 07:10:50 2010 Return-Path: X-Original-To: msec@core3.amsl.com Delivered-To: msec@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 389EF3A679F for ; Thu, 29 Jul 2010 07:10:50 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -10.599 X-Spam-Level: X-Spam-Status: No, score=-10.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Og1KYNQmiqwC for ; Thu, 29 Jul 2010 07:10:46 -0700 (PDT) Received: from sj-iport-4.cisco.com (sj-iport-4.cisco.com [171.68.10.86]) by core3.amsl.com (Postfix) with ESMTP id 9A4473A687D for ; Thu, 29 Jul 2010 07:10:46 -0700 (PDT) Authentication-Results: sj-iport-4.cisco.com; dkim=neutral (message not signed) header.i=none X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: AvsEAA4pUUyrR7H+/2dsb2JhbACgCHGlJJsChTgEhBOHJA X-IronPort-AV: E=Sophos;i="4.55,280,1278288000"; d="scan'208";a="164693133" Received: from sj-core-2.cisco.com ([171.71.177.254]) by sj-iport-4.cisco.com with ESMTP; 29 Jul 2010 14:11:06 +0000 Received: from xbh-sjc-221.amer.cisco.com (xbh-sjc-221.cisco.com [128.107.191.63]) by sj-core-2.cisco.com (8.13.8/8.14.3) with ESMTP id o6TEB4SF024259; Thu, 29 Jul 2010 14:11:04 GMT Received: from xmb-sjc-224.amer.cisco.com ([128.107.191.98]) by xbh-sjc-221.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.3959); Thu, 29 Jul 2010 07:11:04 -0700 X-MimeOLE: Produced By Microsoft Exchange V6.5 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Date: Thu, 29 Jul 2010 07:11:02 -0700 Message-ID: <6B9C4B97B82F924485E26968EB05A6EE0A1AA07E@xmb-sjc-224.amer.cisco.com> In-Reply-To: X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: [MSEC] MSEC WGLC on draft-ietf-msec-gdoi-update-06 Thread-Index: Acsugu9IYYeGE1JIS9y/KFPJJPZDNgApEsng References: <4C442075.6090000@inrialpes.fr> From: "Sheela Rowles (sheela)" To: "Yoav Nir" , "Vincent Roca" X-OriginalArrivalTime: 29 Jul 2010 14:11:04.0446 (UTC) FILETIME=[E18BD9E0:01CB2F27] Cc: msec@ietf.org Subject: Re: [MSEC] MSEC WGLC on draft-ietf-msec-gdoi-update-06 X-BeenThere: msec@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: Multicast Security List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 29 Jul 2010 14:10:51 -0000 Since port 848 has been assigned for the use of GDOI, 848 SHOULD be used for the phase 1 & phase 2 of GDOI. =20 All your comments have been valuable. =20 Thanks, Sheela -----Original Message----- From: msec-bounces@ietf.org [mailto:msec-bounces@ietf.org] On Behalf Of Yoav Nir Sent: Wednesday, July 28, 2010 11:30 AM To: Vincent Roca Cc: msec@ietf.org Subject: Re: [MSEC] MSEC WGLC on draft-ietf-msec-gdoi-update-06 Hi. Nearly every issue I had with -05 is resolved by this. The one exception is in section 2.1.2 (UDP port). I'm still not sure which port is used to set up the IKEv1 SA. Do I run the Main Mode over port 500 like regular IKE, or over port 848? Otherwise, this looks ready for publication to me. Yoav On Jul 19, 2010, at 11:52 AM, Vincent Roca wrote: > Hello, >=20 > Since draft-ietf-msec-gdoi-update-06 is now available, > it's time to start officially the WGLC. >=20 > So please review draft-ietf-msec-gdoi-update-06 and send > comments to the WG mailing list before July 30th (MSEC > meeting at IETF'78). If ever this is too short, then just > tell me... _______________________________________________ MSEC mailing list MSEC@ietf.org https://www.ietf.org/mailman/listinfo/msec