[secdir] secdir review of draft-ietf-mip4-gre-key-extension-04
Radia Perlman <radiaperlman@gmail.com> Tue, 15 March 2011 04:49 UTC
Return-Path: <radiaperlman@gmail.com>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 3C3953A6AB9; Mon, 14 Mar 2011 21:49:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.07
X-Spam-Level:
X-Spam-Status: No, score=-4.07 tagged_above=-999 required=5 tests=[AWL=-0.471, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vqsxTi+YIQeL; Mon, 14 Mar 2011 21:49:35 -0700 (PDT)
Received: from mail-iw0-f172.google.com (mail-iw0-f172.google.com [209.85.214.172]) by core3.amsl.com (Postfix) with ESMTP id 3494B3A68BE; Mon, 14 Mar 2011 21:49:35 -0700 (PDT)
Received: by iwl42 with SMTP id 42so291269iwl.31 for <multiple recipients>; Mon, 14 Mar 2011 21:50:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:date:message-id:subject:from:to :content-type; bh=p4n04VFTVvKy7x0cKvzYmR5iI16wJGUScnA/iuIQJI8=; b=av7HKzPPwv9+LVtE2LOIKsl+c3KOaQ9zMmMoYBLN1r66dgVP9twJ9fwUKsM5r0s0Bq NZBxgsDUQfMH1qlrdcS4BOAN7btlp16tJxFGOvbL75sJ7TaRiEX1ZTjqD6eKMLsVVwSN Csgk9Wicjr6O/0JNCwVqb9m3DAb6qDpwMbWVE=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type; b=i5qG6u/VNIFEl+8iRlYjbLargEbRQ3zLRZ36l/jE+xGC/MafrvXAKPvSa1/if6IV44 xg44uCnBno6gaCF6XckdmPVCWRm6pj8N0jkB33b/9lkSfTUmjoDduIXqYyHNaKML8OMs 4ePIENBGHW0e/qnJEfBFhtE2KFJePOWFETQ9w=
MIME-Version: 1.0
Received: by 10.43.61.138 with SMTP id ww10mr6176103icb.390.1300161102753; Mon, 14 Mar 2011 20:51:42 -0700 (PDT)
Received: by 10.43.131.2 with HTTP; Mon, 14 Mar 2011 20:51:42 -0700 (PDT)
Date: Mon, 14 Mar 2011 20:51:42 -0700
Message-ID: <AANLkTi=-w_KxzGaOsWTAFfiCH9YX8Y=sTnuAiNvweApM@mail.gmail.com>
From: Radia Perlman <radiaperlman@gmail.com>
To: iesg@ietf.org, secdir@ietf.org, draft-ietf-mip4-gre-key-extension.all@tools.ietf.org
Content-Type: text/plain; charset="ISO-8859-1"
Subject: [secdir] secdir review of draft-ietf-mip4-gre-key-extension-04
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Mar 2011 04:49:36 -0000
Summary: No issues found I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. This document describes a new field, somewhat disturbingly called "key" (in that it has nothing to do with a cryptography key) which is an extension to Mobile IP that allows specification of a specific GRE tunnel, allowing (care of address, home address, and home agent address) not to need to be unique across VPNs. As they rightly point out, this does not introduce new security issues. Radia
- [secdir] secdir review of draft-ietf-mip4-gre-key… Radia Perlman