[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: simple security
In your letter dated Wed, 24 Mar 2010 15:17:30 +0100 you wrote:
>If any of these devices get a global IPv6 address, I think they should
>be expected to operate on the Global IPv6 Internet in a secure manner.
I don't think anyone in the security community would find it reasonable
to expect all devices with global IPv6 address to operate in a secure manner.
There is more than enough evidence to suggest that in practice it will be
exactly the opposite.
And remember, in the typical SLAAC scenario any device that understands RAs
will automatically get a global IPv6 address, there is not much you can
do about it.