[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [RRG] Tunnel fragmentation/reassembly for RRG map-and-encaps architectures

To: Routing Research Group list <rrg@psg.com>
Subject: Re: [RRG] Tunnel fragmentation/reassembly for RRG map-and-encaps architectures
From: Tony Li <tli@cisco.com>
Date: Wed, 16 Jan 2008 15:21:47 -0800
In-reply-to: <20080116161013.39D9C872ED@mercury.lcs.mit.edu>
References: <20080116161013.39D9C872ED@mercury.lcs.mit.edu>


[Multi-reply...]

On Jan 16, 2008, at 8:10 AM, Noel Chiappa wrote:

My advice to the LISP people was that they didn't need to implementthissecurity stuff in any prototype implemenatations they were doing(wheremanpower is limited, and the chief concern is trying to get somereal-worlddata on things like delays, unforseen operational issues, etc),because itdoesn't change the fundamentals of the operation at all; it's justsecurity
sugar layered over everything.
However, it has all been thought through and worked out, to makesure that
the basic architecture they are trying out *is* securable.

As you mentioned elsewhere, there is no progress without pain. Oneof those pain points is that security is now a much more stringentrequirement today than it was previously, and having proven, deployedsecurity mechanisms as part of a proposal would seem to be a VeryGood Thing, IMHO. Just having the claim that something is securableis only going to hold so much water and will definitely attractskeptics.




On Jan 16, 2008, at 8:33 AM, Brian Dickson wrote:

We don't need to reinvent the wheel, IMHO - just take advantage ofthe dnssec.

That would be fine by me. However, DNSsec has been awaitingdeployment for about a decade now. I'm not hopeful that this isgoing to happen anytime soon.

More generally, my friends in the security and operations communitiespoint out that, in general, approaches with a full blown PKIinfrastructure are simply too heavyweight to be pragmaticallydeployable. There are simply too many interdependencies. Theirstrong suggestions point much more towards pairwise security and/orweb-of-trust approaches (ala PGP).



On Jan 16, 2008, at 2:11 PM, Brian Dickson wrote:

There's two distinct things:
1) how to *publish* the data;
2) how to *serve* the data

Both need to be secure to be trustworthy.

Is this really true? Does serving the data truly need to be secureas long as the data is authentic, accurate, timely, etc.?

If we can avoid securing the mapping transport layer, it would be avery big win.


Tony


--
to unsubscribe send a message to rrg-request@psg.com with the
word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/rrg/> & ftp://psg.com/pub/lists/rrg

Follow-Ups:
- Re: [RRG] Tunnel fragmentation/reassembly for RRG map-and-encaps architectures
  - From: Brian Dickson <briand@ca.afilias.info>

References:
- Re: [RRG] Tunnel fragmentation/reassembly for RRG map-and-encaps architectures
  - From: jnc@mercury.lcs.mit.edu (Noel Chiappa)

Prev by Date: Re: [RRG] Tunnel fragmentation/reassembly for RRG map-and-encaps architectures
Next by Date: Re: [RRG] Tunnel fragmentation/reassembly for RRG map-and-encaps architectures
Previous by thread: Re: [RRG] Tunnel fragmentation/reassembly for RRG map-and-encaps architectures
Next by thread: Re: [RRG] Tunnel fragmentation/reassembly for RRG map-and-encaps architectures
Index(es):
- Date
- Thread