[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Proposed Update to Netconf Charter

To: Tom Petch <nwnetworks@dial.pipex.com>
Subject: Re: Proposed Update to Netconf Charter
From: Andy Bierman <ietf@andybierman.com>
Date: Thu, 07 Jul 2005 05:59:05 -0700
Cc: Faye Ly <fayely@juniper.net>, netconf@ops.ietf.org
In-reply-to: <03d301c582e0$f5d9bd20$0601a8c0@pc6>
References: <EC0401F13E645E4DA7072EA6E5944F760263BF05@gluon.jnpr.net> <03d301c582e0$f5d9bd20$0601a8c0@pc6>
User-agent: Mozilla Thunderbird 1.0.2 (Windows/20050317)

Tom Petch wrote:

<inline>
Tom Petch
----- Original Message -----
From: "Faye Ly" <fayely@juniper.net>
To: "Andy Bierman" <ietf@andybierman.com>; "Sharon Chisholm"
<schishol@nortel.com>
Cc: <netconf@ops.ietf.org>
Sent: Wednesday, July 06, 2005 8:14 PM
Subject: RE: Proposed Update to Netconf Charter
Andy,
I agree with 'defining common authentication scheme for access control'
and also would like to see 'define a way to multiplex channels over a
single secured connection between manager and agent'.  The latter is
needed to support multiple management channels like notification,
syslog, image/file management and/or regular netconf.
This is to help lower the cost of configuring many secured connections
between manager and agent.
-faye
Common authentication implies that you are authenticating the same thing. SNMP, because the operators wanted it, authenticates a 'principal' which may or may not correspond to a human user, but is distinct from the platform which is providing the other end of the connection. I think it easy, and at times too simplistic, to think in terms of setting up a secure channel with, and authenticating, a 'client' (or server) without realising that one should be authenticating at a finer level of detail. The 'principals' for syslog, netconf etc may be different even though they share a secure channel and platform.


Good points.
I'll raise an even stronger concern...

SNMP has its own security model, which (IMO) is bloated and over-engineered. I am strongly opposed to any integration between SNMP and NETCONF security models because NETCONF is new and we should try not to ruin it so soon. NETCONF is not SNMPv4 and never will be if I can help it, and its security mechanisms should not be compromised to work well for SNMP (or SYSLOG or anything else, other than NETCONF).

Andy


--
to unsubscribe send a message to netconf-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/netconf/>

--
to unsubscribe send a message to netconf-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/netconf/>

Follow-Ups:
- Re: Proposed Update to Netconf Charter
  - From: Eliot Lear <lear@cisco.com>

References:
- RE: Proposed Update to Netconf Charter
  - From: "Faye Ly" <fayely@juniper.net>
- Re: Proposed Update to Netconf Charter
  - From: "Tom Petch" <nwnetworks@dial.pipex.com>

Prev by Date: Re: Proposed Update to Netconf Charter
Next by Date: Re: Proposed Update to Netconf Charter
Previous by thread: Re: Proposed Update to Netconf Charter
Next by thread: Re: Proposed Update to Netconf Charter
Index(es):
- Date
- Thread