RE: [savi] Broadband Forum liaison to IETF on IPv6 security

To: "Hemant Singh (shemant)" <shemant at cisco.com>, Thomas Narten <narten at us.ibm.com>, "Stark, Barbara" <bs7652 at att.com>
Subject: RE: [savi] Broadband Forum liaison to IETF on IPv6 security
From: Alan Kavanagh <alan.kavanagh at ericsson.com>
Date: Wed, 11 Nov 2009 11:11:13 -0500
Accept-language: en-US
Acceptlanguage: en-US
Cc: "6man-ads at tools.ietf.org" <6man-ads at tools.ietf.org>, IETF IPv6 Mailing List <ipv6 at ietf.org>, "savi-ads at tools.ietf.org" <savi-ads at tools.ietf.org>, "v6ops-ads at tools.ietf.org" <v6ops-ads at tools.ietf.org>, IPv6, Operations <v6ops at ops.ietf.org>
Delivered-to: ipv6 at core3.amsl.com
In-reply-to: <AF742F21C1FCEE4DAB7F4842ABDC511C11DD28 at XMB-RCD-114.cisco.com>
List-archive: <http://www.ietf.org/mail-archive/web/ipv6>
List-help: <mailto:ipv6-request@ietf.org?subject=help>
List-id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-post: <mailto:ipv6@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
References: <AFC1ACFB-FDFA-482C-AAF9-7995F5CEFE1F at broadband-forum.org><F311A255-3303-4C9D-B270-D1D23DE31E31 at cisco.com><200911061358.nA6DwXNq025458 at cichlid.raleigh.ibm.com><B52C3C2B-924A-4454-B863-57B02F54E5D4 at apple.com><7582BC68E4994F4ABF0BD4723975C3FA10C3768C at crexc41p> <200911061917.nA6JHwVf005230 at cichlid.raleigh.ibm.com> <AF742F21C1FCEE4DAB7F4842ABDC511C11DD28 at XMB-RCD-114.cisco.com>
Thread-index: AcpfefQ8mQXNe/doSyamAQLJQEVjLQAEuBzgANcZDGA=
Thread-topic: [savi] Broadband Forum liaison to IETF on IPv6 security

Hi Thomas/Hermant

I will put together 2-3 pages as Thomas suggest on the main "crooks of the issue" at hand in BBF. I was intending on coming to IETF and presenting the issue in detail at the SAVI working Group this week but due to other work commitments it was not possible. However my colleague Suresh Krishnan is attending and you can discuss the issue with him if this needs to be addressed more urgently.

Alan

-----Original Message-----
From: owner-v6ops at ops.ietf.org [mailto:owner-v6ops at ops.ietf.org] On Behalf Of Hemant Singh (shemant)
Sent: November 7, 2009 4:40 AM
To: Thomas Narten; Stark, Barbara
Cc: 6man-ads at tools.ietf.org; savi-ads at tools.ietf.org; james woodyatt; v6ops-ads at tools.ietf.org; IPv6 Operations; IETF IPv6 Mailing List
Subject: RE: [savi] Broadband Forum liaison to IETF on IPv6 security

I agree with Thomas.  The reason I and Wes could reply with some ideas is because we are familiar with the cable deployment and contributed text for ND Proxy behavior in cable standards.  A start for diagram may be RFC4779 that DSL folks should look at and tell us what they talking about.  If a DSL deployment doesn't exist in RFC4779, then for long-term one should bis RFC4779 to include the new DSL deployment so that all can reference a common doc and discuss deployment problems for IPv6.

Hemant

-----Original Message-----
From: savi-bounces at ietf.org [mailto:savi-bounces at ietf.org] On Behalf Of Thomas Narten
Sent: Friday, November 06, 2009 2:18 PM
To: Stark, Barbara
Cc: 6man-ads at tools.ietf.org; SAVI Mailing List; savi-ads at tools.ietf.org; james woodyatt; v6ops-ads at tools.ietf.org; IPv6 Operations; IETF IPv6 Mailing List
Subject: Re: [savi] Broadband Forum liaison to IETF on IPv6 security

> The liaison was posted in March 2009. It can be found here:
> https://datatracker.ietf.org/documents/LIAISON/file621.doc

This is too skimpy of problem statement for me to understand the details of the problem.

I don't know that a lot is needed. Maybe 2-3 pages is enough. But show me a diagram, label the pieces, show me the properties of the pieces and explain what the *exact* problem is. Who needs to do DAD? Why doesn't it work? etc.

And note that comments like (quoting from the above statement):

  "We can envision a number of scenarios, both malice or vendor
   incompetence by which this can happen."

There is very little anyone can do to prevent "vendor incompetence". I hope you aren't asking the IETF to solve this problem! :-)

Thomas
_______________________________________________
savi mailing list
savi at ietf.org
https://www.ietf.org/mailman/listinfo/savi

References:
- Fwd: Broadband Forum liaison to IETF on IPv6 security
  - From: Fred Baker
- Re: Fwd: Broadband Forum liaison to IETF on IPv6 security
  - From: Thomas Narten
- Re: Broadband Forum liaison to IETF on IPv6 security
  - From: james woodyatt
- RE: Broadband Forum liaison to IETF on IPv6 security
  - From: Stark, Barbara
- Re: Broadband Forum liaison to IETF on IPv6 security
  - From: Thomas Narten
- RE: [savi] Broadband Forum liaison to IETF on IPv6 security
  - From: Hemant Singh (shemant)

Prev by Date: RE: Fwd: Broadband Forum liaison to IETF on IPv6 security
Next by Date: Re: Thoughts on address selection
Previous by thread: RE: [savi] Broadband Forum liaison to IETF on IPv6 security
Next by thread: Re: Broadband Forum liaison to IETF on IPv6 security
Index(es):
- Date
- Thread

RE: [savi] Broadband Forum liaison to IETF on IPv6 security

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.