Re: [tcpm] [OPSEC] draft-gont-tcp-security

To: Lars Eggert <lars.eggert at nokia.com>
Subject: Re: [tcpm] [OPSEC] draft-gont-tcp-security
From: Fernando Gont <fernando at gont.com.ar>
Date: Tue, 14 Apr 2009 15:13:43 -0300
Cc: "'tcpm at ietf.org'" <tcpm at ietf.org>, "'ietf at ietf.org'" <ietf at ietf.org>, Joe Touch <touch at ISI.EDU>, "Smith, Donald" <Donald.Smith at qwest.com>, 'Joe Abley' <jabley at ca.afilias.info>, "'opsec at ietf.org'" <opsec at ietf.org>
Delivered-to: tcpm at core3.amsl.com
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:sender:message-id:date:from :user-agent:mime-version:to:cc:subject:references:in-reply-to :x-enigmail-version:openpgp:content-type:content-transfer-encoding; bh=fV/JPQL733nZWB41/rMJagl/yIHeoNhAAEsSstTUcRk=; b=vAlZsIpuJ92c+2uV6RDgHKYqaIE4nPAOBPkm1PjRggkCOOOK9I6hoEuz0UmncvxJ/0 rxT/JTjB7e5bgeZLLmmJ+rm4MVVZx+kJ+/xaGsBU8m+t+x9lRRJxArwD88LIlFzem2UN RHEcPj612cB+JIQnRV8+D17Lg6cKCvZ7eyc28=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=sender:message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:x-enigmail-version:openpgp:content-type :content-transfer-encoding; b=HFhJLFOxzkKttO3vbX4oCvfAagmujZWqKF3FIZnwiuKwMpzKqVTcww+yBS4Y/y2FuI /gFqVAfOObl7x3vedYElnIwDVJBzQHzvR3U8rq3hzqXts5mApJ5lIa0UYkI6Gcy8QkDn lMerUsqiXaRKD6FrRIgPCvX1uVcIR79LVuxCY=
In-reply-to: <C9E987CC-0213-4C67-BA0A-11C736772EE7 at nokia.com>
List-archive: <http://www.ietf.org/mail-archive/web/tcpm>
List-help: <mailto:tcpm-request@ietf.org?subject=help>
List-id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-post: <mailto:tcpm@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
Openpgp: id=D076FFF1
References: <C304DB494AC0C04C87C6A6E2FF5603DB221318F5E8 at NDJSSCC01.ndc.nasa.g ov><49E36AB9.40507 at isi.edu> <49E384E9.1050106 at gont.com.ar><49E3878C.9080200 at isi.edu> <49E39119.1060902 at gont.com.ar> <B01905DA0C7CDC478F42870679DF0F1004BC4176D0 at qtdenexmbm24.AD.QINTRA.COM> <49E3A88F.9060301 at gont.com.ar> <49E3ABC0.1050601 at isi.edu> <49E3B9BF.1060901 at gont.com.ar> <49E3BED9.1030701 at isi.edu> <C9E987CC-0213-4C67-BA0A-11C736772EE7 at nokia.com>
Sender: Fernando Gont <fernando.gont.netbook.win at gmail.com>
User-agent: Thunderbird 2.0.0.21 (Windows/20090302)

Lars Eggert wrote:

> I agree with Joe that some of the hardening techniques that vendors are
> implementing come with consequences (make TCP more brittle). To me, this
> is a *reason* this document should be published via the IETF (i.e.,
> TCPM) - we are probably in the best position to correctly evaluate and
> classify the impact of various hardening techniques. Stack vendors have
> been putting these mechanisms in to their stacks without clear
> specifications and discussions of the potential upsides and downsides
> that would let them make an educated decision. It seems clear to me that
> the vendor community is looking for guidance here, and I do believe the
> IETF should give it.

This is the reason for which the output of the CPNI project was
submitted as an IETF I-D.

Kind regards,
-- 
Fernando Gont
e-mail: fernando at gont.com.ar || fgont at acm.org
PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1

Follow-Ups:
- Re: [tcpm] [OPSEC] draft-gont-tcp-security
  - From: Todd Glassey

References:
- Re: [tcpm] draft-gont-tcp-security
  - From: Joe Touch
- Re: [tcpm] draft-gont-tcp-security
  - From: Fernando Gont
- Re: [tcpm] draft-gont-tcp-security
  - From: Joe Touch
- Re: [tcpm] draft-gont-tcp-security
  - From: Fernando Gont
- Re: [tcpm] [OPSEC] draft-gont-tcp-security
  - From: Smith, Donald
- Re: [tcpm] [OPSEC] draft-gont-tcp-security
  - From: Fernando Gont
- Re: [tcpm] [OPSEC] draft-gont-tcp-security
  - From: Joe Touch
- Re: [tcpm] [OPSEC] draft-gont-tcp-security
  - From: Fernando Gont
- Re: [tcpm] [OPSEC] draft-gont-tcp-security
  - From: Joe Touch
- Re: [tcpm] [OPSEC] draft-gont-tcp-security
  - From: Lars Eggert

Prev by Date: Re: [tcpm] WGLC on draft-ietf-tcpm-early-rexmt
Next by Date: Re: [tcpm] [OPSEC] draft-gont-tcp-security
Previous by thread: Re: [tcpm] [OPSEC] draft-gont-tcp-security
Next by thread: Re: [tcpm] [OPSEC] draft-gont-tcp-security
Index(es):
- Date
- Thread

Re: [tcpm] [OPSEC] draft-gont-tcp-security

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.