[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: draft-ietf-v6ops-ipv6-cpe-router-04

To: Mark Townsley <townsley@cisco.com>
Subject: Re: draft-ietf-v6ops-ipv6-cpe-router-04
From: Ole Troan <otroan@employees.org>
Date: Sat, 27 Mar 2010 15:57:43 +0100
Cc: IPv6 v6ops <v6ops@ops.ietf.org>
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type :content-transfer-encoding; b=Ny8OBKWeoZ+287d3SphFlvmx28o4Y9tRCO80F7cF0jXnn+KBff7dDi15sCb6dJ2nSw g3wRcA2lU+l1DmGpHRKt5UvasIkKsLeG5XiKsk4RjKWH4q3vtJaKGSU1WtvM2VA/i7Tr EAw05ippZQIMdlH4eXcLSngKKuKdwUa92wgzs=
In-reply-to: <4BAD305D.3070808@cisco.com>
References: <!&!AAAAAAAAAAAuAAAAAAAAAKTyXRN5/+lGvU59a+P7CFMBAN6gY+ZG84BMpVQcAbDh1IQAAAATbSgAABAAAACInobc2K8lT7XDVmAN62sdAQAAAAA=@iname.com> <4BACC0C9.2080201@gmail.com> <750BF7861EBBE048B3E648B4BB6E8F4F124AFDA0@crexc50p> <03DB7B96-7A82-4D6E-9E9E-DB63798E1075@employees.org> <0FBE8CDC-EE01-48B3-A143-A26FAB3DBBF4@apple.com> <4BAD305D.3070808@cisco.com>

Mark, et al,

[removed ipv6]

>>>> Yeah, I think that after the bloody simple-security debates of the past
>>>> week, that many are amazed that anyone on this list was able to miss the
>>>> carnage. Anyway, the current CPE router draft has the following security
>>>> requirements in section 4.4:
>>>>
>>>>  S-1:  The IPv6 CE router SHOULD support
>>>>        [I-D.ietf-v6ops-cpe-simple-security].
>>>>
>
> What does "support" mean?
>
> I would like it to be very clear that "support" does not imply that it be
> set to "transparent" or "non-transparent" mode by default, just that the
> functionality exist and be available to be turned on or off.

that was also indeed my understanding when we wrote that requirement.

would this be even clearer:

S-1:  The IPv6 CE router SHOULD support
[I-D.ietf-v6ops-cpe-simple-security]. Enabling or disabling this
functionality MUST be user configurable.

to me this means that the default would be decided by a vendor or operator.

not quite sure what the process is for updating a draft which has passed WG LC?

cheers,
Ole

Follow-Ups:
- Re: draft-ietf-v6ops-ipv6-cpe-router-04
  - From: Fred Baker <fred@cisco.com>

References:
- Re: draft-ietf-v6ops-ipv6-cpe-router-04
  - From: james woodyatt <jhw@apple.com>
- Re: draft-ietf-v6ops-ipv6-cpe-router-04
  - From: Mark Townsley <townsley@cisco.com>

Prev by Date: Re: draft-ietf-v6ops-ipv6-cpe-router-04
Next by Date: Re: draft-ietf-v6ops-ipv6-cpe-router-04
Previous by thread: Re: draft-ietf-v6ops-ipv6-cpe-router-04
Next by thread: Re: draft-ietf-v6ops-ipv6-cpe-router-04
Index(es):
- Date
- Thread