Re: recommendation against publication of draft-cerpa-necp-02.txt

ietf

Re: recommendation against publication of draft-cerpa-necp-02.txt

2000-04-07 08:10:03

Keith,

Without comments on other aspects of the technology in question, Iwould like to make some observations about the security aspects ofthe processing you cite as violating IP.

By now we all should know that it is a bad idea to rely on anunauthenticated IP address as a basis for determining the source of apacket. Similarly. the IP header checksum offers no security. Wehave a variety of IETF standard protocols (e.g., IPsec and TLS) thatprovide suitable assurance for data origin authentication andintegrity for application data sent via IP. Thus, if anyone isreally concerned about know with whom they are communicating, andwhether a packet was modified in transit, they should be using thesestandards security technologies. Many web sites for which thesesecurity concerns are significant already make use of SSL/TLS anyway.


Steve

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
RE: recommendation against publication of draft-cerpa-necp-02.txt, (continued) RE: recommendation against publication of draft-cerpa-necp-02.txt, Bernard Aboba Re: recommendation against publication of draft-cerpa-necp-02.txt, Keith Moore Re: recommendation against publication of draft-cerpa-necp-02.txt, Matt Holdrege Re: recommendation against publication of draft-cerpa-necp-02.txt, Joe Touch Re: recommendation against publication of draft-cerpa-necp-02.txt, John Martin Re: recommendation against publication of draft-cerpa-necp-02.txt, Eliot Lear Re: recommendation against publication of draft-cerpa-necp-02.txt, John Martin Re: recommendation against publication of draft-cerpa-necp-02.txt, Eliot Lear Re: recommendation against publication of draft-cerpa-necp-02.txt, John Martin Re: recommendation against publication of draft-cerpa-necp-02.txt, Keith Moore Re: recommendation against publication of draft-cerpa-necp-02.txt, Stephen Kent <= Re: recommendation against publication of draft-cerpa-necp-02.txt, Leslie Daigle Re: recommendation against publication of draft-cerpa-necp-02.txt, Stephen Kent Re: recommendation against publication of draft-cerpa-necp-02.txt, Valdis . Kletnieks Re: recommendation against publication of draft-cerpa-necp-02.txt, Leslie Daigle Re: recommendation against publication of draft-cerpa-necp-02.txt, Stephen Kent Re: recommendation against publication of draft-cerpa-necp-02.txt, Paul Francis Re: recommendation against publication of draft-cerpa-necp-02.txt, Stephen Kent Re: recommendation against publication of draft-cerpa-necp-02.txt, Dennis Glatting Re: recommendation against publication of draft-cerpa-necp-02.txt, Valdis . Kletnieks Re: recommendation against publication of draft-cerpa-necp-02.txt, Daniel Senie

Previous by Date:	Re: recommendation against publication of draft-cerpa-necp-02.txt, Keith Moore
Next by Date:	Re: recommendation against publication of draft-cerpa-necp-02.txt, Leslie Daigle
Previous by Thread:	Re: recommendation against publication of draft-cerpa-necp-02.txt, Keith Moore
Next by Thread:	Re: recommendation against publication of draft-cerpa-necp-02.txt, Leslie Daigle
Indexes:	[Date] [Thread] [Top] [All Lists]