[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006

To: "Bound, Jim" <Jim.Bound@hp.com>
Subject: Re: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
From: Iljitsch van Beijnum <iljitsch@muada.com>
Date: Thu, 20 Jul 2006 13:21:51 +0200
Cc: "marcelo bagnulo braun" <marcelo@it.uc3m.es>, "Francis Dupont" <Francis.Dupont@point6.net>, <shim6@psg.com>, "Pekka Savola" <pekkas@netcore.fi>
In-reply-to: <816DD9299957E547B5D758D7F977D6DC3838FF@tayexc14.americas.cpqcorp.net>
References: <816DD9299957E547B5D758D7F977D6DC3838FF@tayexc14.americas.cpqcorp.net>

On 19-jul-2006, at 21:58, Bound, Jim wrote:

I believe if we encrypt everything (not just shim6 and I did notagree with all the mipv6 threats either and let it go andemphatically disagree with RR strategy ) at the IP layer we aregoing to be 90% secure most of the time world wide.

A lot of mail servers these days encrypt the SMTP session. We stillsee all kinds of bad stuff in email.

Simply encrypting everything only increases packet overhead, CPUrequirements and makes debugging extremely hard without necessarilysolving anything.

Authentication is much more important and even that is certainly notalways required.

References:
- RE: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
  - From: "Bound, Jim" <Jim.Bound@hp.com>

Prev by Date: Re: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
Next by Date: Re: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
Previous by thread: Re: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
Next by thread: RE: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
Index(es):
- Date
- Thread