Thomas Narten wrote: > I'm a bit stuck on this point, because both of the current flow label > document > continue to say flow labels should be generated SHOULD be pseudo-random, > and I'm not convinced this is necessary, required, or buys us anything. > What compelling argument am I missing?
I agree. The network routers should not trust that the flow label has any particular randomness properties, because misplaced trust would open a path for attacks. Having the randomness requirement in the spec would only encourage routers to make the wrong security assumptions. -- Christian Huitema -------------------------------------------------------------------- IETF IPv6 working group mailing list ipv6@ietf.org Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 --------------------------------------------------------------------
