Hi Manjul, Would it be possible to succinctly describe these “certain security attacks” in the draft rather than expecting everyone to read the referenced paper?
Thanks, Acee On 5/11/16, 10:19 AM, "OSPF on behalf of Manjul Khandelwal" <[email protected] on behalf of [email protected]> wrote: >Hi, > >We have recently submitted a draft which deals with OSPF LS sequence >number >generation mechanism. > >Abstract of the draft: > The mechanism for LS sequence number generation as specified in RFC > 2328 and RFC 5340 is completely predictable. This makes it prone to > certain security attacks which exploit the predictable nature of LS > sequence numbers. This draft updates the RFC 2328 to make LS > sequence number generation an implementation choice rather than a > fixed increment by 1 for successive LSAs. > >https://datatracker.ietf.org/doc/draft-manjuldtv-ospf-sequence-number/ > >We solicit feedback/comments on the draft and request for adoption by the >OSPF working group. > >Regards, >Manjul Khandelwal >DTV Ramakrishna Rao >________________________________________ >From: [email protected] <[email protected]> >Sent: Monday, May 9, 2016 7:22 PM >To: Manjul Khandelwal; Ramakrishna DTV >Subject: New Version Notification for >draft-manjuldtv-ospf-sequence-number-00.txt > >A new version of I-D, draft-manjuldtv-ospf-sequence-number-00.txt >has been successfully submitted by Manjul Khandelwal and posted to the >IETF repository. > >Name: draft-manjuldtv-ospf-sequence-number >Revision: 00 >Title: OSPF LSA sequence number generation >Document date: 2016-05-09 >Group: Individual Submission >Pages: 10 >URL: >https://www.ietf.org/internet-drafts/draft-manjuldtv-ospf-sequence-number- >00.txt >Status: >https://datatracker.ietf.org/doc/draft-manjuldtv-ospf-sequence-number/ >Htmlized: >https://tools.ietf.org/html/draft-manjuldtv-ospf-sequence-number-00 > > >Abstract: > The mechanism for LS sequence number generation as specified in RFC > 2328 and RFC 5340 is completely predictable. This makes it prone to > certain security attacks which exploit the predictable nature of LS > sequence numbers. This draft updates the RFC 2328 to make LS > sequence number generation an implementation choice rather than a > fixed increment by 1 for successive LSAs. > > > > >Please note that it may take a couple of minutes from the time of >submission >until the htmlized version and diff are available at tools.ietf.org. > >The IETF Secretariat > >_______________________________________________ >OSPF mailing list >[email protected] >https://www.ietf.org/mailman/listinfo/ospf _______________________________________________ OSPF mailing list [email protected] https://www.ietf.org/mailman/listinfo/ospf
