randy/draft-l3dl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

-15 published after secdir review

Browse source
This commit is contained in:
Randy Bush 2025-04-30 15:27:41 -07:00
parent b052174cb8
commit 02ce25040f
1 changed files with 1 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

9
draft-ietf-lsvr-l3dl.xml
View file

@ -19,13 +19,6 @@
<author fullname="Randy Bush" initials="R." surname="Bush"> <author fullname="Randy Bush" initials="R." surname="Bush">
<organization>Arrcus &amp; IIJ Research Lab</organization> <organization>Arrcus &amp; IIJ Research Lab</organization>
<address> <address>
<postal>
<street>5147 Crystal Springs</street>
<city>Bainbridge Island</city>
<region>WA</region>
<code>98110</code>
<country>US</country>
</postal>
<email>randy@psg.com</email> <email>randy@psg.com</email>
</address> </address>
</author> </author>
@ -2354,7 +2347,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
<t>The NEWKEY PDU is open to abuse to create a signature algorithm <t>The NEWKEY PDU is open to abuse to create a signature algorithm
or Auth Type downgrade attack.</t> or Auth Type downgrade attack.</t>
<t>If L3DL is used in a WAN deployment, as opposed to tightly <t>If L3DL is used in a WAN deployment, as opposed to more tightly
controlled data center, the use SHOULD be restricted to iBGP peers controlled data center, the use SHOULD be restricted to iBGP peers
and/or eBGP confederations within the operator's scope of trust. and/or eBGP confederations within the operator's scope of trust.
And, because of tapping and interception threats, the PKI-based And, because of tapping and interception threats, the PKI-based