This revision addresses a few points: - The packet formats for the MD5/SHA1 optimized form needed to be described. - The nod toward existing MD5/SHA1 authentication procedures was necessary. - The code points for the new meticulous isaac code points need to migrate from their old home in optimized auth.
-- Jeff > On Jul 6, 2025, at 5:01 PM, [email protected] wrote: > > Internet-Draft draft-ietf-bfd-secure-sequence-numbers-22.txt is now available. > It is a work item of the Bidirectional Forwarding Detection (BFD) WG of the > IETF. > > Title: Meticulous Keyed ISAAC for BFD Optimized Authentication > Authors: Alan DeKok > Mahesh Jethanandani > Sonal Agarwal > Ashesh Mishra > Jeffrey Haas > Name: draft-ietf-bfd-secure-sequence-numbers-22.txt > Pages: 32 > Dates: 2025-07-06 > > Abstract: > > This document describes a new BFD Optimized Authentication Mode, > Meticulous Keyed ISAAC Authentication. This mode can be used to > authenticate BFD packets with less CPU time cost than using MD5 or > SHA1, with the tradeoff of decreased security. This mechanism cannot > be used to signal state changes, but it can be used to maintain a > session in the the "Up" state. > > The IETF datatracker status page for this Internet-Draft is: > https://datatracker.ietf.org/doc/draft-ietf-bfd-secure-sequence-numbers/ > > There is also an HTMLized version available at: > https://datatracker.ietf.org/doc/html/draft-ietf-bfd-secure-sequence-numbers-22 > > A diff from the previous version is available at: > https://author-tools.ietf.org/iddiff?url2=draft-ietf-bfd-secure-sequence-numbers-22 > > Internet-Drafts are also available by rsync at: > rsync.ietf.org::internet-drafts >
