Thread Links			Date Links
Thread Prev	Thread Next	Thread Index	Date Prev	Date Next	Date Index

Re: [LinkSec] linksec roadmap

To: Robert Moskowitz <rgm@trusecure.com>
Subject: Re: [LinkSec] linksec roadmap
From: "Richard Brand" <rbrand@nortelnetworks.com>
Date: Wed, 11 Dec 2002 00:00:04 -0800
CC: "Marcus Leech" <mleech@nortelnetworks.com>, Dennis Volpano <volpano@cranitesystems.net>, stds-802-linksec@ieee.org
Organization: Nortel Networks
References: <Pine.LNX.4.04.10212101017590.449-100000@wavelan1.cs.nps.navy.mil> <5.1.0.14.2.20021210140606.02df0af0@localhost>
Sender: owner-stds-802-linksec@majordomo.ieee.org

Maybe, maybe not on the other scenarios.  That is why we have commissioned a new
study group as the answer is not preordained.
Richard Brand

Robert Moskowitz wrote:

> At 02:02 PM 12/10/2002 -0500, Marcus Leech wrote:
>
> > > In my trust model, group members trust each other because the group is
> > > a "security group", in the sense that it requires authentication to join.
> > > Once the group leader has taken the steps needed to be convinced
> > > that a station and perhaps its user is trustworthy, it may admit the
> > > station, depending on whether the station is authorized to join.
> > >
> > > Granted, a station may misbehave after being given membership, in
> > > which case group members are at *some* risk.  Precisely, they need only
> > > be at risk with respect to link layer integrity because stations can still
> > > take other steps at upper layers to protect privacy if they wish.  Limiting
> > > the consequences of the misbehavior to the group is the best one can do.
> >
> >This sounds rather like what the MSEC WG in the IETF is trying to accomplish.
> >   I don't think that this type of scenario is useful at L2.  This
> > behaviour is
> >   very useful for higher-layer apps, like conferencing, etc.  That is
> > where MSEC
> >   will be useful, once it solves some of the hairy, hairy, hairy group
> > key management
> >   problems.  I don't think that this hair belongs in L2.
>
> There might be *ONE* senario that fits this.  Norm Finn talked about it at
> the last Plenary:
>
> Consider a real ethernet with 2 bridges.  The stations really do not know
> or care which bridge handles their frames.  They have to be authenticated
> to both.
>
> There are probably other senarios like this.
>
> Robert Moskowitz
> Senior Technical Director
> ICSA Labs
>         (248) 968-9809
> Fax:    (248) 968-2824
> rgm@trusecure.com
>
> There's no limit to what can be accomplished
> if it doesn't matter who gets the credit

begin:vcard 
n:Brand;Richard C.
tel;work:(408) 495 2462  ESN 265 2462
x-mozilla-html:FALSE
adr:;;;;;;
version:2.1
email;internet:rbrand@Nortelnetworks.com
fn:Richard C. Brand
end:vcard

References:
- Re: [LinkSec] linksec roadmap
  - From: Dennis Volpano <volpano@cranitesystems.net>
- Re: [LinkSec] linksec roadmap
  - From: Robert Moskowitz <rgm@trusecure.com>

Prev by Date: RE: [LinkSec] Requirements
Next by Date: RE: [LinkSec] Requirements
Prev by thread: Re: [LinkSec] linksec roadmap
Next by thread: Re: [LinkSec] linksec roadmap
Index(es):
- Date
- Thread