[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: security requirement for multi6

To: Masataka Ohta <mohta@necom830.hpcl.titech.ac.jp>
Subject: Re: security requirement for multi6
From: Brian E Carpenter <brc@zurich.ibm.com>
Date: Thu, 13 Nov 2003 23:21:24 +0100
Cc: Multi6 Mailing List <multi6@ops.ietf.org>
Organization: IBM
References: <0C42FFFA-161A-11D8-8943-000A9598A184@kurtis.pp.se> <3FB3F28D.7090706@necom830.hpcl.titech.ac.jp>

Masataka,

Whether a threat is new or old really doesn't matter.

Our objective is to have a complete threat analysis that we can use
to evaluate the security of proposed solutions.

As Kurt says, if you have additional threats that should be added
to Erik's threat analysis draft, please send text.

    Brian

Masataka Ohta wrote:
> 
> Kurt;
> 
> > If you can't describe any new threats I think we can kill this thread.
> 
> No, we can't.
> 
> This thread is whether threats claimed to be new are really new
> or not.
> 
> You miss the point.
> 
> I showed that some are not new.
> 
> Iljitsch showed a new case, which was expected to be a new
> threat.
> 
> I modified the case using current TCP to show that the threat
> is not new.
> 
> Note that our security requirement is not more security but
> not-less security.
> 
>                                                 Masataka Ohta

Follow-Ups:
- Re: security requirement for multi6
  - From: Masataka Ohta <mohta@necom830.hpcl.titech.ac.jp>

References:
- Re: security requirement for multi6
  - From: Kurt Erik Lindqvist <kurtis@kurtis.pp.se>
- Re: security requirement for multi6
  - From: Masataka Ohta <mohta@necom830.hpcl.titech.ac.jp>

Prev by Date: Re: noid and applications (generic requirements from applications)
Next by Date: Re: how many locators?
Previous by thread: Re: security requirement for multi6
Next by thread: Re: security requirement for multi6
Index(es):
- Date
- Thread