Requirements for IPv6 Prefix Delegation
draft-ietf-ipv6-prefix-delegation-requirement-04
Revision differences
Document history
| Date | Rev. | By | Action |
|---|---|---|---|
|
2004-04-07
|
04 | Amy Vezza | State Changes to RFC Ed Queue from Approved-announcement sent by Amy Vezza |
|
2004-04-06
|
04 | Amy Vezza | IESG state changed to Approved-announcement sent |
|
2004-04-06
|
04 | Amy Vezza | IESG has approved the document |
|
2004-04-06
|
04 | Amy Vezza | Closed "Approve" ballot |
|
2004-04-03
|
04 | (System) | Removed from agenda for telechat - 2004-04-02 |
|
2004-04-02
|
04 | Amy Vezza | State Changes to Approved-announcement to be sent from IESG Evaluation by Amy Vezza |
|
2004-04-02
|
04 | Russ Housley | [Ballot comment] My original comment was: please explain "secure transmission" in section 3.5. It looks like section 3.5 has been renumbered, and it … [Ballot comment] My original comment was: please explain "secure transmission" in section 3.5. It looks like section 3.5 has been renumbered, and it is now section 3.6. The section now talks about authentication, which is good. I believe that integrity protection is necessary. I am not sure if confidentiality is also needed. |
|
2004-04-02
|
04 | Russ Housley | [Ballot Position Update] New position, No Objection, has been recorded for Russ Housley by Russ Housley |
|
2004-04-01
|
04 | David Kessens | [Ballot Position Update] New position, No Objection, has been recorded for David Kessens by David Kessens |
|
2004-04-01
|
04 | Steven Bellovin | [Ballot comment] The security terminology could be a bit clearer, but I'm not going to worry. That said, if the document goes back for any … [Ballot comment] The security terminology could be a bit clearer, but I'm not going to worry. That said, if the document goes back for any more work, I'll supply some new text. |
|
2004-04-01
|
04 | Steven Bellovin | [Ballot Position Update] New position, No Objection, has been recorded for Steve Bellovin by Steve Bellovin |
|
2004-03-31
|
04 | Ted Hardie | [Ballot Position Update] New position, No Objection, has been recorded for Ted Hardie by Ted Hardie |
|
2004-03-30
|
04 | Margaret Cullen | [Ballot Position Update] New position, Yes, has been recorded for Margaret Wasserman by Margaret Wasserman |
|
2004-03-30
|
04 | Thomas Narten | [Ballot Position Update] New position, Yes, has been recorded for Thomas Narten |
|
2004-03-30
|
04 | Thomas Narten | Ballot has been issued by Thomas Narten |
|
2004-03-30
|
04 | Thomas Narten | Created "Approve" ballot |
|
2004-03-30
|
04 | (System) | Last call text was added |
|
2004-03-30
|
04 | (System) | Ballot approval text was added |
|
2004-03-26
|
04 | Russ Housley | My original comment was: please explain "secure transmission" in section 3.5. It looks like section 3.5 has been renumberd, and it is now section 3.6. … My original comment was: please explain "secure transmission" in section 3.5. It looks like section 3.5 has been renumberd, and it is now section 3.6. The section now talks about authentication, which is good. I believe that integrity protection is necessary. I am not sure if confidentiality is also needed. |
|
2004-03-23
|
04 | Thomas Narten | State Change Notice email list have been change to rdroms@cisco.com,brian@innovationslab.net,bob.hinden@nokia.com, miyakawa@nttv6.jp from |
|
2004-03-23
|
04 | Thomas Narten | State Changes to IESG Evaluation from IESG Evaluation::Revised ID Needed by Thomas Narten |
|
2004-03-23
|
04 | Thomas Narten | Placed on agenda for telechat - 2004-04-02 by Thomas Narten |
|
2004-03-23
|
04 | Thomas Narten | [Note]: '2004-03-23: This document should be approved now. A revised ID was needed to deal with comments originally from Randy. This document is back on … [Note]: '2004-03-23: This document should be approved now. A revised ID was needed to deal with comments originally from Randy. This document is back on the agenda only because it''s an "old-style" ballot, so there is no formal record that the IESG signed off on the document, modulo Randy''s comments. Please, no new review of this document; it just needs to be approved.' added by Thomas Narten |
|
2004-03-18
|
04 | (System) | New version available: draft-ietf-ipv6-prefix-delegation-requirement-04.txt |
|
2004-02-11
|
04 | Thomas Narten | State Changes to IESG Evaluation::Revised ID Needed from IESG Evaluation::AD Followup by Thomas Narten |
|
2003-09-04
|
04 | Amy Vezza | Removed from agenda for telechat - 2003-09-04 by Amy Vezza |
|
2003-09-04
|
04 | Amy Vezza | State Changes to IESG Evaluation::AD Followup from IESG Evaluation by Amy Vezza |
|
2003-09-04
|
04 | Randy Bush | 3.1 Number and Length of Delegated Prefixes The prefix delegation mechanism should allow for delegation of prefixes of lengths between /48 and /64, … 3.1 Number and Length of Delegated Prefixes The prefix delegation mechanism should allow for delegation of prefixes of lengths between /48 and /64, inclusively. Other lengths may be supported. The mechanism should allow for delegation of more than one prefix to the customer. should it not provide for allocation of lengths less than /48? --- 3.4 Policy-based Assignment The prefix delegation mechanism should allow for the use of policy in assigning prefixes to a customer. For example, the customer's identity and type of subscribed service may be used to determine the address block from which the customer's prefix is selected, and the length of the prefix assigned to the customer. is this not really a function further back in the isp? note that the document's goals are The delegation mechanism will be intended to automate the process of informing the customer's networking equipment of the prefixes to be used at the customer's site. --- 3.5 Security and Authentication The prefix delegation mechanism must provide for reliable authentication of the identity of the customer to which the prefixes are to be assigned, and must provide for reliable, secure transmission of the delegated prefixes to the customer. and should the customer not be able to authenticate the delegator e.g., to prevent being given bad address space on a multi-isp medium? it seems that they know this issue, as the sec cons says A rogue delegating router can issue bogus prefixes to a requesting router. This may cause denial of service due to unreachability. --- 3.6 Accounting The prefix delegation mechanism must allow for the ISP to provide accounting information about delegated prefixes. is this not really a function further back in the isp? note that the document's goals are The delegation mechanism will be intended to automate the process of informing the customer's networking equipment of the prefixes to be used at the customer's site. --- 3.7 Hardware technology Considerations The prefix delegation mechanism should work on any hardware technology perhaps it should be scoped to PE/CPE equipment? --- 5. Security considerations ... A rogue requesting router (CPE) may be able to mount a denial of service attack by repeated requests for delegated prefixes that exhaust the delegating router's available prefixes. this is the first hint that the model includes request as well as push. if this is really intended, and i am not hard against it, then sec cons should mandate authentication of the request. and probably request semantics should be discussed above, e.g., length of request, preference for expanding existing delegation(s), etc. -30- |
|
2003-08-27
|
04 | Thomas Narten | State Changes to IESG Evaluation from Publication Requested by Thomas Narten |
|
2003-08-27
|
04 | Thomas Narten | Placed on agenda for telechat - 2003-09-04 by Thomas Narten |
|
2003-08-27
|
04 | Natalia Syracuse | Draft Added by Natalia Syracuse |
|
2003-08-25
|
03 | (System) | New version available: draft-ietf-ipv6-prefix-delegation-requirement-03.txt |
|
2003-07-01
|
02 | (System) | New version available: draft-ietf-ipv6-prefix-delegation-requirement-02.txt |
|
2003-02-28
|
01 | (System) | New version available: draft-ietf-ipv6-prefix-delegation-requirement-01.txt |
|
2002-11-07
|
00 | (System) | New version available: draft-ietf-ipv6-prefix-delegation-requirement-00.txt |