Re: [Mipshop] WG Last Call on draft-ietf-mipshop-cga-cba-01.txt

To: "CAO, ZHEN" <caozhenpku at gmail.com>
Subject: Re: [Mipshop] WG Last Call on draft-ietf-mipshop-cga-cba-01.txt
From: Christian Vogt <chvogt at tm.uka.de>
Date: Tue, 10 Oct 2006 18:56:18 +0200
Cc: Wassim Haddad <whaddad at tcs.hut.fi>, mipshop at ietf.org, Jari Arkko <jari.arkko at piuha.net>
In-reply-to: <a7c8d0a30610091917vb639a6dm13521e910f522959@mail.gmail.com>
List-help: <mailto:mipshop-request@ietf.org?subject=help>
List-id: mipshop.ietf.org
List-post: <mailto:mipshop@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/mipshop>, <mailto:mipshop-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/mipshop>, <mailto:mipshop-request@ietf.org?subject=unsubscribe>
References: <4521A801.3060705@azairenet.com> <a7c8d0a30610091855w5d13a1cfr37345fdbec985e59@mail.gmail.com> <a7c8d0a30610091917vb639a6dm13521e910f522959@mail.gmail.com>
User-agent: Mozilla/5.0 (X11; U; Linux i686; de; rv:1.8.0.7) Gecko/20060911 SUSE/1.5.0.7-0.1 Thunderbird/1.5.0.7 Mnenhy/0.7.4.0

Hi Zhen,

thanks for pointing this out.  You are right in that the paragraph may
be confusing.

Note, however, that a CGA is not fully verified unless the signature is
checked.  Simply recomputing the hash solely confirms that the CGA
originates from a given public key.  The interesting part is to whom
that public key really belongs.

Nonetheless, this will be clarified.

- Christian

-- 
Christian Vogt, Institute of Telematics, Universitaet Karlsruhe (TH)
www.tm.uka.de/~chvogt/pubkey/



CAO, ZHEN wrote:
> 
> Hi everybody,
>  
> In section 3 Protocol Design:
> <snip>
>    Semi-permanent security associations
> 
>       Cryptographically generated addresses involve public-key
>       cryptography and are computationally inefficient to validate.
> <snip>
>  
> IMO, cryptographically generated address generation and verification
> does not need any public-key cryptographical computation (only hash
> computation). Only when the CGA signature is used will the public-key
> cryptography be involved. I think the sentence here refers to the CGA
> signature or implys that any CGA should be used with a private key
> signature. But unfortunately it is not clear enough in the document.
>  
> Many thanks,
> Zhen



_______________________________________________
Mipshop mailing list
Mipshop at ietf.org
https://www1.ietf.org/mailman/listinfo/mipshop

References:
- [Mipshop] WG Last Call on draft-ietf-mipshop-cga-cba-01.txt
  - From: Vijay Devarapalli
- Re: [Mipshop] WG Last Call on draft-ietf-mipshop-cga-cba-01.txt
  - From: CAO, ZHEN

Prev by Date: Re: [Mipshop] WG Last Call on draft-ietf-mipshop-cga-cba-01.txt
Next by Date: [Mipshop] FW: Internet-Drafts Submission Cutoff Dates for the 67th IETF Meeting in San Diego, California, USA
Previous by thread: Re: [Mipshop] WG Last Call on draft-ietf-mipshop-cga-cba-01.txt
Next by thread: RE: [Mipshop] WG Last Call on draft-ietf-mipshop-cga-cba-01.txt
Index(es):
- Date
- Thread

Re: [Mipshop] WG Last Call on draft-ietf-mipshop-cga-cba-01.txt

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.