[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: comments from Steve Bellovin ondraft-ietf-ipv6-scoping-arch-01.txt

To: JINMEI Tatuya / $B?@L@x#:H(B <jinmei@xxxxxxxxxxxxxxxxxxxxx>
Subject: Re: comments from Steve Bellovin ondraft-ietf-ipv6-scoping-arch-01.txt
From: Francis Dupont <Francis.Dupont@xxxxxxxxxxxxxxxx>
Date: Tue, 17 Aug 2004 17:21:31 +0200
Cc: ipv6@xxxxxxxx, smb@xxxxxxxxxxxxxxxx
Delivery-date: Tue, 17 Aug 2004 18:35:10 +0300
Envelope-to: archive@lists.atm.tut.fi
In-reply-to: Your message of Tue, 17 Aug 2004 18:26:54 +0900.<y7v3c2m2jz5.wl@ocean.jinmei.org>
List-help: <mailto:ipv6-request@ietf.org?subject=help>
List-id: "IP Version 6 Working Group $ipv6$" <ipv6.ietf.org>
List-post: <mailto:ipv6@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ipv6>,<mailto:ipv6-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipv6>,<mailto:ipv6-request@ietf.org?subject=unsubscribe>
Sender: ipv6-bounces@xxxxxxxx

 In your previous mail you wrote:

   Then how about the following change?
   
=> we have almost finished:

   Proposed resolution (new)
   
      A limited scoped address without its zone identifier value has
      security implications, and cannot be used for some security
      contexts.  For example, a link-local address cannot be used as a
      part of a security association for Internet Key Exchange (IKE) when
      the IKE packets are carried over global addresses.  Also, a
      link-local address without its zone identifier cannot be used in
      access control lists.
   
   Proposed resolution (better)
   
      A limited scoped address without its zone identifier value has
      security implications, and cannot be used for some security
      contexts.  For example, a link-local address cannot be used in
      a traffic selector of a security association established by
      Internet Key Exchange (IKE) when
      the IKE messages are carried over global addresses.  Also, a
      link-local address without its zone identifier cannot be used in
      access control lists.
   
Thanks

Francis.Dupont@enst-bretagne.fr

--------------------------------------------------------------------
IETF IPv6 working group mailing list
ipv6@ietf.org
Administrative Requests: https://www1.ietf.org/mailman/listinfo/ipv6
--------------------------------------------------------------------

Follow-Ups:
- Re: comments from Steve Bellovinon draft-ietf-ipv6-scoping-arch-01.txt
  - From: JINMEI Tatuya / $B?@L@C#:H(B

References:
- Re: comments from Steve Bellovinon draft-ietf-ipv6-scoping-arch-01.txt
  - From: JINMEI Tatuya / $B?@L@C#:H(B

Prev by Date: RE: I-D ACTION:draft-ietf-ipv6-rfc2462bis-05.txt
Next by Date: Re: Section 2.4, item (f) of draft-ietf-ipngwg-icmp-v3-04.txt
Previous by thread: Re: comments from Steve Bellovinon draft-ietf-ipv6-scoping-arch-01.txt
Next by thread: Re: comments from Steve Bellovinon draft-ietf-ipv6-scoping-arch-01.txt
Index(es):
- Date
- Thread