[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Mini WGLC draft-ietf-multi6-multihoming-threats-02.txt

To: Margaret Wasserman <margaret@thingmagic.com>
Subject: Re: Mini WGLC draft-ietf-multi6-multihoming-threats-02.txt
From: Brian E Carpenter <brc@zurich.ibm.com>
Date: Wed, 01 Dec 2004 16:35:09 +0100
Cc: Iljitsch van Beijnum <iljitsch@muada.com>, Kurt Erik Lindqvist <kurtis@kurtis.pp.se>, Multi6 List <multi6@ops.ietf.org>
In-reply-to: <p06200707bdd385bcee5d@[192.168.2.2]>
Organization: IBM
References: <44BEF211-3F73-11D9-B14D-000A95928574@kurtis.pp.se> <E6FF5A0C-4327-11D9-92FB-000A95CD987A@muada.com> <41ADA175.6030609@zurich.ibm.com> <7966538F-4398-11D9-92FB-000A95CD987A@muada.com> <p06200707bdd385bcee5d@[192.168.2.2]>
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.6) Gecko/20040113

Margaret Wasserman wrote:

Hi Iljitsch,
At 1:56 PM +0100 12/1/04, Iljitsch van Beijnum wrote:
Page 32:
    - Third trusted party.  A third party establishes that a given
"Identifier" is defined very differently from the use of "ULID" in the more recent DT drafts, to the degree that an ULID can't be an identifier according to this document's definition.
I think that this is a good point...
I am not sure that all of the threats related to redirection exist when you use ULIDs vs. a pure ID/Loc split.

Are there other places in the document where the threat model would be different for ULIDs than for IDs that are not also usable as locators?


Personal opinion: this document is intended to discuss generic threats,
and I think it's a bit unfair to expect it to discuss threats for a
model that hadn't even been invented when the document was almost final.

So I would resolve this by adding a sentence that the specific form of
ULID introduced by the recent design team was not considered and may
(only may) introduce additional threats.

That doesn't let us off the hook of course - ULID threats still need to
be analyzed.

   Brian

Follow-Ups:
- Re: Mini WGLC draft-ietf-multi6-multihoming-threats-02.txt
  - From: Iljitsch van Beijnum <iljitsch@muada.com>
- Re: Mini WGLC draft-ietf-multi6-multihoming-threats-02.txt
  - From: Margaret Wasserman <margaret@thingmagic.com>
- Re: Mini WGLC draft-ietf-multi6-multihoming-threats-02.txt
  - From: Kurt Erik Lindqvist <kurtis@kurtis.pp.se>

References:
- Mini WGLC draft-ietf-multi6-multihoming-threats-02.txt
  - From: Kurt Erik Lindqvist <kurtis@kurtis.pp.se>
- Re: Mini WGLC draft-ietf-multi6-multihoming-threats-02.txt
  - From: Iljitsch van Beijnum <iljitsch@muada.com>
- Re: Mini WGLC draft-ietf-multi6-multihoming-threats-02.txt
  - From: Brian E Carpenter <brc@zurich.ibm.com>
- Re: Mini WGLC draft-ietf-multi6-multihoming-threats-02.txt
  - From: Iljitsch van Beijnum <iljitsch@muada.com>
- Re: Mini WGLC draft-ietf-multi6-multihoming-threats-02.txt
  - From: Margaret Wasserman <margaret@thingmagic.com>

Prev by Date: Re: Mini WGLC draft-ietf-multi6-multihoming-threats-02.txt
Next by Date: Re: Mini WGLC draft-ietf-multi6-multihoming-threats-02.txt
Previous by thread: Re: Mini WGLC draft-ietf-multi6-multihoming-threats-02.txt
Next by thread: Re: Mini WGLC draft-ietf-multi6-multihoming-threats-02.txt
Index(es):
- Date
- Thread