Re: [tcpm] draft-gont-tcp-security

To: "Eddy, Wesley M. (GRC-RCN0)[Verizon]" <wesley.m.eddy at nasa.gov>
Subject: Re: [tcpm] draft-gont-tcp-security
From: Joe Touch <touch at ISI.EDU>
Date: Mon, 13 Apr 2009 09:39:21 -0700
Cc: Joe Abley <jabley at ca.afilias.info>, Joel Jaeggli <joelja at bogus.com>, "tcpm at ietf.org" <tcpm at ietf.org>, Fernando Gont <fernando at gont.com.ar>
Delivered-to: tcpm at core3.amsl.com
In-reply-to: <C304DB494AC0C04C87C6A6E2FF5603DB221318F5E8 at NDJSSCC01.ndc.nasa.gov>
List-archive: <http://www.ietf.org/mail-archive/web/tcpm>
List-help: <mailto:tcpm-request@ietf.org?subject=help>
List-id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-post: <mailto:tcpm@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
References: <C304DB494AC0C04C87C6A6E2FF5603DB221318F5E8 at NDJSSCC01.ndc.nasa.gov>
User-agent: Thunderbird 2.0.0.21 (Windows/20090302)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi, all,

Eddy, Wesley M. (GRC-RCN0)[Verizon] wrote:
> Fernando has a draft intended for BCP, that has been discussed somewhat
> on the OPSEC and IETF mailing lists:
> 
> http://tools.ietf.org/html/draft-gont-tcp-security-00
> 
> Since it concerns TCP and facets of both TCP implementation and stack
> configuration, TCPM holds the most technical ability to evaluate or
> work on this, in my opinion.
> 
> As I understand, Fernando is interested in having this document done
> as a WG item, but hasn't gotten clear signals as to whether OPSEC or
> TCPM would be more appropriate, or on the relative level of support in
> the WGs to read/review/revise the material.
> 
> It is a big document, but if TCPM'ers could take a look at it and let
> us know if they would support this in TCPM as a WG item, that would be
> very helpful.  Or if you have other thoughts about how to handle it,
> of course share those too :).

I'm not at all clear that the WG needs this document. It summarizes
issues already raised by the WG, and makes recommendations (IMO) in
excess of what the WG has agreed upon for general use.

TCP itself is not a secure protocol, nor is it intended to be.

IMO, if there are operational issues with deploying TCP in environments
under attack, that is an OPSEC issue.

Joe
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAknjarkACgkQE5f5cImnZrv2GQCfX+X26YXAqZD27LTAwciPSwVz
a6cAn3XXvR96WFECBFr+bK5Gd3Fo75KL
=6D2U
-----END PGP SIGNATURE-----

Follow-Ups:
- Re: [tcpm] draft-gont-tcp-security
  - From: Fernando Gont

References:
- [tcpm] draft-gont-tcp-security
  - From: Eddy, Wesley M. (GRC-RCN0)[Verizon]

Prev by Date: [tcpm] draft-gont-tcp-security
Next by Date: Re: [tcpm] draft-gont-tcp-security
Previous by thread: [tcpm] draft-gont-tcp-security
Next by thread: Re: [tcpm] draft-gont-tcp-security
Index(es):
- Date
- Thread

Re: [tcpm] draft-gont-tcp-security

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.