[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006

To: "Ahrenholz, Jeffrey M" <jeffrey.m.ahrenholz@boeing.com>
Subject: Re: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
From: Iljitsch van Beijnum <iljitsch@muada.com>
Date: Wed, 19 Jul 2006 20:47:57 +0200
Cc: shim6-wg <shim6@psg.com>
In-reply-to: <0DF156EE7414494187B087A3C279BDB40163DE6E@XCH-NW-6V1.nw.nos.boeing.com>
References: <0DF156EE7414494187B087A3C279BDB40163DE6E@XCH-NW-6V1.nw.nos.boeing.com>

On 19-jul-2006, at 17:35, Ahrenholz, Jeffrey M wrote:

To throw 2-cents into this conversation, the SIDR WG seems to be
considering a global PKI, albeit for BGP routers and not end hosts.

I don't take the discussions in SIDR to mean that every BGP routerwill have a certificate. That may or may not happen (I don't thinkstoring private keys in routers that may be housed in fairly insecureplaces is a very good idea) but even if it does, that's not the samething as having a certificate for EVERY host.

References:
- RE: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
  - From: "Ahrenholz, Jeffrey M" <jeffrey.m.ahrenholz@boeing.com>

Prev by Date: Shipping SHIM6 spec to IESG or not question per ULID Security
Next by Date: Re: Security Module for shim6 or hip really
Previous by thread: Shipping SHIM6 spec to IESG or not question per ULID Security
Next by thread: RE: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
Index(es):
- Date
- Thread