[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Security Module for shim6 or hip really

To: <shim6@psg.com>
Subject: Security Module for shim6 or hip really
From: "Bound, Jim" <Jim.Bound@hp.com>
Date: Wed, 19 Jul 2006 10:19:56 -0400
In-reply-to: <816DD9299957E547B5D758D7F977D6DC33800A@tayexc14.americas.cpqcorp.net>

A suggestion proposed at the Montreal IETF SHIM6 WG meeting was to treat
the security of ULIDs as module (abstractly speaking) for SHIM6 where
the user or implementer can plug in different solutions.  We would
abstract out ULID processing for security so that multiple solutions
could be used.  Each solution would be its own IETF draft specification
and IETF discussion with close collaboration with the IETF Security
Area.  I think this would be doing proper engineering diligence for this
problem and we can explore HBA, TLS, IPsec and even other options.  This
also would permit the shim6 spec to move forward and provide a security
note in the spec and avoid the in process IPR debate for CGA.

Thoughts?

/jim

Follow-Ups:
- Re: Security Module for shim6 or hip really
  - From: Iljitsch van Beijnum <iljitsch@muada.com>
- Re: Security Module for shim6 or hip really
  - From: marcelo bagnulo braun <marcelo@it.uc3m.es>

References:
- RE: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
  - From: "Bound, Jim" <Jim.Bound@hp.com>

Prev by Date: RE: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
Next by Date: RE: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
Previous by thread: RE: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
Next by thread: Re: Security Module for shim6 or hip really
Index(es):
- Date
- Thread