Thread Links			Date Links
Thread Prev	Thread Next	Thread Index	Date Prev	Date Next	Date Index

[LinkSec] http://www.ieee802.org/linksec/Meetings/Jan03/Seaman_1_0103.pdf

To: stds-802-linksec@ieee.org
Subject: [LinkSec] http://www.ieee802.org/linksec/Meetings/Jan03/Seaman_1_0103.pdf
From: Russ Housley <housley@vigilsec.com>
Date: Thu, 02 Jan 2003 15:35:22 -0500
In-Reply-To: <017f01c2ae1e$e8a9f6e0$a753fea9@ter>
Sender: owner-stds-802-linksec@majordomo.ieee.org


I have a few comments on Mick's paper.

Why link layer? on page 2.  There is another reason.  Not all networks run 
IP.  Layer 2 offers a way to secure these other protocol suites without 
resorting to tunneling.

Additional threats on page 4.  In this section, you do not explain your 
reason for discarding a large collection of threats.  Most of them are 
pretty obvious, but I do not think that the reason for omitting replay is 
obvious.  In this scenario, the human user is a guest with a laptop 
connecting to the host's LAN.  Is the reason that you omit replay that a 
LAN provides a connectionless service?  If not, please explain.

Russ

Follow-Ups:
- RE: [LinkSec] http://www.ieee802.org/linksec/Meetings/Jan03/Seaman_1_0103.pdf
  - From: "Mick Seaman" <mick_seaman@ieee.org>

References:
- [LinkSec] Avoiding large attachments
  - From: "Dolors Sala" <dolors@ieee.org>

Prev by Date: RE: [LinkSec] http://www.ieee802.org/linksec/Meetings/Jan03/Seaman_1_0103.pdf
Next by Date: RE: FW: [LinkSec] Requirements
Prev by thread: [LinkSec] A potential security architecture for 802 networks
Next by thread: RE: [LinkSec] http://www.ieee802.org/linksec/Meetings/Jan03/Seaman_1_0103.pdf
Index(es):
- Date
- Thread