ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: secdir review of draft-ietf-opsec-igp-crypto-requirements

2010-09-19 09:29:48
from [Samuel Weiler] [Permanent Link] 
On Thu, 16 Sep 2010, Bhatia, Manav (Manav) wrote:
In describing each routing protocol's authentication options, it would be helpful to say whether there's any in-band negotiation available.
I am not sure I understand whats being meant by in-band negotiation here?
Many protocols negotiate which crypto algorithm (or even more generic security mechanism) to use. Those negotiations, if done poorly, can be subject to downgrade attacks.
Given how common security negotiation is, it's worthwhile to point out whether or not each of these protocols do it or whether they depend entirely on static configuration of each endpoint. 

-- Sam
_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Discussion of draft-hardie-advance-mechanics-00.txt, Ted Hardie
Next by Date:  Re: [Gen-art] Gen-ART LC Review of draft-ietf-nsis-nslp-auth-06, Lars Eggert
Previous by Thread:  Re: secdir review of draft-ietf-opsec-igp-crypto-requirements, Joel Jaeggli
Next by Thread:  RE: secdir review of draft-ietf-opsec-igp-crypto-requirements, Bhatia, Manav (Manav)
Indexes:  [Date] [Thread] [Top] [All Lists]