This document has past WGLC, and is in Shepherd process. I call attention to the Security Considerations of using IPIP headers, as I reference ANIMA's ACP document. Generally, I expect there to be a VRF-style "firewall" between the ACP and the production network, with the ACP operating essentially as a non-connected network (using ULAs).
There is still a concern that big iron could be exploited to send DDoS attacks against other parts of the ISP; but at least IPIP headers won't make this worse. And given ULAs, and BCP38, the ACP can't be used to attack other parts of the Internet. Or perhaps, if the device is sufficiently compromised to originate such an attack, they could just use the production interfaces. https://www.ietf.org/rfcdiff?url1=draft-ietf-roll-useofrplinfo-10&url2=draft-ietf-roll-useofrplinfo-14 -- Michael Richardson <[email protected]>, Sandelman Software Works -= IPv6 IoT consulting =-
signature.asc
Description: PGP signature
_______________________________________________ Anima mailing list [email protected] https://www.ietf.org/mailman/listinfo/anima
