Re: Authentication Question

To: Shahram Davari <davari at broadcom.com>
Subject: Re: Authentication Question
From: Vishwas Manral <vishwas.ietf at gmail.com>
Date: Mon, 17 Aug 2009 20:19:55 -0700
Cc: "rtg-bfd at ietf.org" <rtg-bfd at ietf.org>
Delivered-to: rtg-bfd at core3.amsl.com
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=RihuYGe450Plr7zazRGM7wrPXAEohbXG6wfJi2AmpMY=; b=Ky/FbTHmqaAL7AHdrPy02XVEJi0pMUJXTZKTQqOEvl0KOT/p960OHMLze+4cY6bxk7 ObFD/ryP/1Bbu27CQfYJeoMKb2ln4Ln6RdzZmPOKDn9rGxZUuG0P06ibI04lUBeNWINt xXDH2KtVt1M6gZoc5Mmj6YNeaMZqTsHoXi2WU=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=l/9LmhEdii8FS45C9StkX+ozy8yHGoEHfH+CHMzlpPS6/2VMhRUCGShIDADjmQIEu9 CBxqXEDiUd4+bhpIhjRnIm/dgNDRI+xC6dzKOb6C+Vfyd1d35j3BJr5v3CFntuNwVA+J LBrOSNy/p7e5BY1gOH0Z59ln68tjVKeDkMLL4=
In-reply-to: <2C2F1EBA8050E74EA81502D5740B4BD681573708D8 at SJEXCHCCR02.corp.ad.broadcom.com>
List-archive: <http://www.ietf.org/mail-archive/web/rtg-bfd>
List-help: <mailto:rtg-bfd-request@ietf.org?subject=help>
List-id: "RTG Area: Bidirectional Forwarding Detection DT" <rtg-bfd.ietf.org>
List-post: <mailto:rtg-bfd@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=unsubscribe>
References: <77ead0ec0908171649h67a18ec4ic76d0a48f6f92013 at mail.gmail.com> <2C2F1EBA8050E74EA81502D5740B4BD681573708D8 at SJEXCHCCR02.corp.ad.broadcom.com>

Hi Shahram,

I think the sentence is ok in the spec. Yes we should be able to
change Keys as well. I think something related to that is given in the
spec already.

Thanks,
Vishwas

On Mon, Aug 17, 2009 at 6:23 PM, Shahram Davari<davari at broadcom.com> wrote:
> Hi,
>
> For BFD processing, the Base text says:
>
> "If the A bit is set and no authentication is in use (bfd.AuthType is zero), the packet MUST be discarded."
>
> Isn't the bdf.AuthType set based on the A bit? If so then isn't this statement a circular logic? Shouldn't it be changed to:
>
> "If the A bit is set and no authentication is in use (Authentication header is not present), the packet MUST be discarded."
>
>
> And a general question. Since each packet is Authenticated on its own, can Authentication type change in the middle of a Session? Or can some BFD packets be transmitted with Authentication and some without (off course with proper setting of A flag)?
>
> Thanks,
> Shahram
>

References:
- BFD For MPLS LSPs
  - From: Vishwas Manral
- Authentication Question
  - From: Shahram Davari

Prev by Date: Authentication Question
Next by Date: Re: Authentication Question
Previous by thread: Authentication Question
Next by thread: Re: Authentication Question
Index(es):
- Date
- Thread

Re: Authentication Question

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.