[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-Id: <9FD5B68F-2C8D-42B9-945E-28EA41A6E769@mindspring.com>
Date: Fri, 26 Jun 2009 11:41:58 -0500
From: Hal Wigoda <hwigoda@...dspring.com>
To: Fernando Gont <fernando.gont@...il.com>
Cc: full-disclosure@...ts.grok.org.uk, bugtraq@...urityfocus.com
Subject: Re: Security Assessment of TCP at the IETF
sorry, but the links do not work.
On Jun 25, 2009, at 11:28 PM, Fernando Gont wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA256
>
> Hello, folks,
>
> In February this year the UK CPNI published the document "Security
> Assessment of the Transmission Control Protocol (TCP)" (available at:
> http://www.cpni.gov.uk/Docs/tn-03-09-security-assessment-TCP.pdf)
>
> Earlier this year we published an IETF Internet-Draft version of this
> document (available at:
> http://www.gont.com.ar/drafts/tcp-security/draft-gont-tcp-security-00.txt)
> in the hope of having the IETF further work on the TCP security
> paper UK
> CPNI had published.
>
> My personal take (possibly biased, since I am the document author)
> is that this document has been the result of a lot of work (including
> the work of the many peple that reviewed the CPNI version of the
> document), and that the IETF should take this chance to work and
> publish
> something on the subject.
>
> The chairs of the TCPM Working Group of the IETF are currently polling
> the WG for input about this document. It would be great if you could
> voice your opinion about whether the TCPM should take this document
> on,
> and also whether you would be willing to review this document. (Bellow
> you'll find a copy of the TCPM chairs' poll)
>
> Please send your comments to tcpm@...f.org (and please CC me).
>
> Thanks!
>
> Kind regards,
> Fernando
>
>
>
>
> - -------- Original Message --------
> Subject: [tcpm] poll for adopting draft-gont-tcp-security
> Date: Wed, 24 Jun 2009 14:25:04 -0500
> From: Eddy, Wesley M. (GRC-MS00)[Verizon] <wesley.m.eddy@...a.gov>
> To: tcpm Extensions WG <tcpm@...f.org>
>
> TCPMers, there was a thread a while ago about working on
> draft-gont-tcp-security in this working group that didn't
> conclusively give us a feeling one way or other:
> http://www.ietf.org/mail-archive/web/tcpm/current/msg04489.html
>
> Basically, my understanding is that there are at least a
> handful of people in the WG that think it should be done
> here as a WG item (more likely for Informational rather
> than BCP), and there are also some expressed opinions on
> why it shouldn't.
>
> Given the raw size of the document, if the WG intends to
> take this document on, then we need some people to clearly
> commit to putting cycles into review and contributions to
> the document. Since it is quite large, and to my knowledge,
> there hasn't been a specific technical review of the content
> on this list, but just discussions about if the idea in
> general is a good or bad thing, we still need to know if
> people are willing to invest their time and energy in this.
>
> Please let us know if there is traction for this in the
> near term, and/or we can also discuss it in Stockholm.
>
> - ---------------------------
> Wes Eddy
> Network & Systems Architect
> Verizon FNS / NASA GRC
> Office: (216) 433-6682
> - ---------------------------
>
> _______________________________________________
> tcpm mailing list
> tcpm@...f.org
> https://www.ietf.org/mailman/listinfo/tcpm
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.9 (MingW32)
>
> iQEcBAEBCAAGBQJKRE58AAoJEJbuqe/Qdv/xCPoH/AhdvNcTejJqoOE1J/gDc2Yc
> Iw+GIUgW73sWBuh0ib5oQxv85tvEjQzLOpQtNPdX6ljm96A7ufl3uzB6DBzj3JoF
> O3mqRWf/yFgWxNA7Kmv/FFPf271CUHpnxbnoYBGSeHKb78lS3WnLJukW8F2l+FPl
> 2QZJp0wn6/g2TJFgWoIHtrbHovHboZQtopzfyJWirzVeL+3dGinden3IH6HKDth/
> t+0kyxlN07sBQDqebNvif6nxf4xU7kPdUap4i00EKhH5WTr49XDD46E1sP9d695i
> MhW1lhZ1jeVkjz/MycuotSKXN/JIiFM6NV5i3vm5vnOkgAjMou7iEULdG/0Xqn8=
> =/HE4
> -----END PGP SIGNATURE-----
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists