Re: BFD Authentication

To: Vishwas Manral <vishwas.ietf at gmail.com>
Subject: Re: BFD Authentication
From: Tom Sanders <toms.sanders at gmail.com>
Date: Wed, 19 Aug 2009 09:42:07 +0530
Cc: "rtg-bfd at ietf.org" <rtg-bfd at ietf.org>
Delivered-to: rtg-bfd at core3.amsl.com
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=RdrcitH5qx3uMxYrrgFp6dU5kuVx+TVy74dQQe7ChO8=; b=H6z65/VcOo3uSQaP5GBQQtkU2ZaZ+Dm0tH2bP7ew9HTOJ86XE+uyCBZs/g0K+v9v7Q JzmswhzuikfqG/OhL25oKpAvdCJucDb+KdI+gDs68uhZ/l4vIGvu+XKZv3m0PhhFILL1 +XMCwmC8MPuJu5DjFY8XrqbnkGdplwU5WRt5M=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=neCD41iecLq6h2Vbd39qD3dhP4togl+mQ3/ZNBgvRuElHdngik6st9MJTzVT6WQ2Mz AoIt/VYfs5sDLqGNw7xco91ZXoj0NjTNALj8JcsF7TayrPW1KvpetzVXqU4g2IsKICJn uvNk/83x7/rgbnyp4eTfmI7hphbReGHvnwWyg=
In-reply-to: <77ead0ec0908181601j72bcbd0dnfacecd4a2bf178f2 at mail.gmail.com>
List-archive: <http://www.ietf.org/mail-archive/web/rtg-bfd>
List-help: <mailto:rtg-bfd-request@ietf.org?subject=help>
List-id: "RTG Area: Bidirectional Forwarding Detection DT" <rtg-bfd.ietf.org>
List-post: <mailto:rtg-bfd@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=unsubscribe>
References: <2C2F1EBA8050E74EA81502D5740B4BD681573709A9 at SJEXCHCCR02.corp.ad.broadcom.com> <77ead0ec0908181601j72bcbd0dnfacecd4a2bf178f2 at mail.gmail.com>

> Here is the document we wrote to address the other concern. It also
> talks about a way of doing Key Rollovers like you mentioned.
>
> http://tools.ietf.org/html/draft-bhatia-bfd-crypto-auth-00

I remember WG discussing this draft some time back - what happened to
it? I skimmed through the draft (expired copy) and it seems that one
can support any authentication type using the proposed mechanism
(including GMAC based authentication) as its only the Key ID that's
passed in the messages.

One could rollover by using a new Key ID as alluded by Dave.

Any plans of resurrecting this work?

Toms.

Follow-Ups:
- Re: BFD Authentication
  - From: Vishwas Manral

References:
- BFD Authentication
  - From: Shahram Davari
- Re: BFD Authentication
  - From: Vishwas Manral

Prev by Date: Parameter change
Next by Date: Re: Parameter change
Previous by thread: Re: BFD Authentication
Next by thread: Re: BFD Authentication
Index(es):
- Date
- Thread

Re: BFD Authentication

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.