Re: Working Group Last Call (WGLC): draft-ietf-ipdvb-ar-04.txt

[George Gross <gmgross@nac.net>]

Hi Gorry,

first off, a question about this draft: I'm assuming it is planned for
"informational RFC" status, correct?  just checking, since there are no
MUST/SHOULD ;o)

in section 8, the "Security Considerations" should mention that when the
optional IPDVB SNDU security mechanisms are present, ARP and ND security
becomes nearly at rough parity with a private wireless LAN. The ARP or ND
multicast transmissions will be accepted only from those peer DVB
terminals that share a common group encryption and common group
authentication key provided by SNDU key management.

Whereas, without that optional ULE security extension, security is
dependent on the Adversary not cracking into the DVB satellite receiver
terminal to eavesdrop on the ARP or ND packets addressed to any other DVB
terminal in the satellite network. If a DVB terminal is cracked open, then
the Adversary could then issue bogus ARP or ND packets, masquerading as a
legitimate peer in the ARP or ND protocols.

there would also need to be an informational reference added to point at
the IPDVB ULE security extension draft (which I'm assuming will become a
proposed standard RFC someday).

hth,
	George

On Wed, 28 Jun 2006, Gorry Fairhurst wrote:

> This note starts the ipdvb WG Last Call for comments for the WG document
> named below:
>
> draft-ietf-ipdvb-ar-04.txt
> http://tools.ietf.org/wg/ipdvb/draft-ietf-ipdvb-ar/
>
> This last call will end on 18th July 2006.
>
> The period of this last call has been extended because it also includes
> the week of the IETF meeting.
>
> You are asked to read the draft and send any issues, comments, or
> corrections to this mailing list. The WGLC procedure is the last chance
> for this working group to modify/correct this.
>
> Please do forward any comments to the ipdvb list.
>
> Best wishes,
>
> Gorry Fairhurst
> (ipdvb WG Chair)
>