[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: draft-ietf-v6ops-nap-04
- To: "Brian E Carpenter" <brc@zurich.ibm.com>, "Margaret Wasserman" <margaret@thingmagic.com>
- Subject: RE: draft-ietf-v6ops-nap-04
- From: "Gunter Van de Velde \(gvandeve\)" <gvandeve@cisco.com>
- Date: Wed, 1 Nov 2006 19:42:33 +0100
- Authentication-results: ams-dkim-1; header.From=gvandeve@cisco.com; dkim=pass ( sig from cisco.com verified; );
- Cc: <v6ops@ops.ietf.org>, "Jari Arkko" <jari.arkko@piuha.net>
- Dkim-signature: a=rsa-sha1; q=dns; l=2209; t=1162406556; x=1163270556; c=relaxed/simple; s=amsdkim1002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=gvandeve@cisco.com; z=From:=22Gunter=20Van=20de=20Velde=20\(gvandeve\)=22=20<gvandeve@cisco.com> |Subject:RE=3A=20draft-ietf-v6ops-nap-04; X=v=3Dcisco.com=3B=20h=3DEUfYy+GNE0dSbWPrWARCYhuv4wI=3D; b=IZTP9FE3UGsIgsJ5XMag73c/5YQCbPb1hdBTP6QK/baedxlMJA9BGcF8hioCt9nHYCmEgHmM pvm8sEE4TuVQxVOzec0zzBDWtMd3WTWXoeQhQQV+GUB5os/K0vK1z7k8;
I was wondering on the message we agree upon here for this particular
point, so we can work on a re-write?
<>
NAT does provide a feeling of security that should not be there, however
with IPv6 people will receive more indicative signals on more secure
topologies for their infrastructure/applications/OperatingSoftware?
<>
G/
-----Original Message-----
From: owner-v6ops@ops.ietf.org [mailto:owner-v6ops@ops.ietf.org] On
Behalf Of Brian E Carpenter
Sent: Wednesday, November 01, 2006 4:50 PM
To: Margaret Wasserman
Cc: v6ops@ops.ietf.org; Jari Arkko
Subject: Re: draft-ietf-v6ops-nap-04
Margaret Wasserman wrote:
>
> Hi Brian,
>
> On Oct 31, 2006, at 6:07 AM, Brian E Carpenter wrote:
>
>>> the right place to define a new untraceable addressing mechanim.
>>
>>
>> It certainly can't purport to be a formal spec. But removing it would
>> leave a hole. Would you be OK with adding some clear disclaimer text
>> saying that it is not a formal spec?
>
>
> I can live with that.
>
>>
>>> > o On a local network, any user will have more security
awareness.
>>> > This awareness will motivate the usage of simple firewall
>>> > applications/devices to be inserted on the border between
the
>>> > external network and the local (or home network) as there
is no
>>> > Address Translator and hence no false safety perception.
>>> [Substantive] IPv6 will not make users have more security awareness.
>>> When we say something like this, we are emitting the same type of
>>> marketing hype that we deride in the vendors of NAT products. This
>>> bullet should just be omitted.
>>
>>
>> Yes, it's a bit slack, and naive about the way real users behave.
>
>
> Based on your indication that there are two issues that you are not
> going to fix, I gather you aren't going to fix this one, even though
> you agree that it is slack and naive? Why not?
That's really not what I meant. I think this text does need fixing.
I'm a bit reluctant to delete it because I think there is a nugget of
value in there. But we authors need to get together; I can't speak for
the others.
Brian