I-D Action: draft-rafiee-6man-ssas-05.txt

[internet-drafts]

A New Internet-Draft is available from the on-line Internet-Drafts directories.


        Title           : A Simple Secure Addressing Scheme for IPv6 
AutoConfiguration (SSAS)
        Author(s)       : Hosnieh Rafiee
                          Christoph Meinel
        Filename        : draft-rafiee-6man-ssas-05.txt
        Pages           : 19
        Date            : 2013-07-15

Abstract:
   The default method for IPv6 address generation uses an
   Organizationally Unique Identifier (OUI) assigned by the IEEE
   Standards Association and an Extension Identifier assigned to the
   hardware manufacturer [1] (section 2.5.1 RFC-4291) [RFC4291]. This
   fact thus means that a node will always have the same Interface ID
   (IID) whenever it connects to a new network. Because the node's IP
   address does not change, the node will be vulnerable to privacy
   related attacks. Currently this problem is addressed by the use of
   two mechanisms that do not make use of the MAC address, or other
   unique values that can be used for ID generation, for randomizing the
   IID; Cryptographically Generated Addresses (CGA) [RFC3972] and
   Privacy Extension [RFC4941]. The problem with the former approach is
   the computational cost involved for the IID generation and in the
   verification process. The problem with the latter approach is that it
   lacks necessary security mechanisms and provides the node with only
   partial protection against privacy related attacks. This document
   proposes the use of a new algorithm for use in the generation of the
   IID while, at the same time, securing the node against some types of
   attack, like IP spoofing. These attacks are prevented by the addition
   of a signature to messages sent over the network and by finding a
   binding with the nodes' IP address and its public key. The use of
   theResource Public Key Infrastructure (RPKI), introduced in this
   document, is based on the centralized version explained in RFC 6494
   and RFC 6495.




The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-rafiee-6man-ssas

There's also a htmlized version available at:
http://tools.ietf.org/html/draft-rafiee-6man-ssas-05

A diff from the previous version is available at:
http://www.ietf.org/rfcdiff?url2=draft-rafiee-6man-ssas-05


Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/

_______________________________________________
I-D-Announce mailing list
I-D-Announce@ietf.org
https://www.ietf.org/mailman/listinfo/i-d-announce
Internet-Draft directories: http://www.ietf.org/shadow.html
or ftp://ftp.ietf.org/ietf/1shadow-sites.txt