[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: draft-ietf-msdp-spec-19

To: Alex Zinin <zinin@psg.com>
Subject: Re: draft-ietf-msdp-spec-19
From: Russ Housley <housley@vigilsec.com>
Date: Wed, 28 May 2003 16:05:13 -0400
Cc: iesg@ietf.org
In-reply-to: <62406211000.20030528123150@psg.com>
References: <5.2.0.9.2.20030527223314.038705a8@mail.binhost.com><5.2.0.9.2.20030527223314.038705a8@mail.binhost.com>

Alex:

Is an IESG note appropriate?  Something simple, like:

  If follow-on work is done in this area, a more robust integrity mechanism,
  such as HMAC-SHA1 [Ref] ought to be employed.

Thoughts?

Russ

At 12:31 PM 5/28/2003 -0700, Alex Zinin wrote:

Russ,

>    I accept that Keyed MD5 as specified in RFC 2385 is the current
> practice.  The security considerations ought to be updated to encourage a
> more robust authentication mechanism, preferably HMAC-SHA1.

It would be ok for us to get back to the WG with this if the spec was
going STD track.

In this case, the WG is ready to disband and the spec documents what's
been implemented and deployed, yet is only an interim step. Given
this, it seems that investing more effort into it is not worthwhile
or maybe even relevant (few implementations do even MD5 today.)

Can we let this one go?

Alex

Follow-Ups:
- Re: draft-ietf-msdp-spec-19
  - From: Alex Zinin <zinin@psg.com>

References:
- draft-ietf-msdp-spec-19
  - From: Russ Housley <housley@vigilsec.com>
- Re: draft-ietf-msdp-spec-19
  - From: Alex Zinin <zinin@psg.com>

Prev by Date: Re: draft-ietf-isis-hmac-04
Next by Date: Re: draft-ietf-msdp-spec-19
Previous by thread: Re: draft-ietf-msdp-spec-19
Next by thread: Re: draft-ietf-msdp-spec-19
Index(es):
- Date
- Thread