[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IANA document

To: Michael Richardson <mcr@sandelman.ottawa.on.ca>
Subject: Re: IANA document
From: "Theodore Ts'o" <tytso@mit.edu>
Date: Thu, 29 Jan 2004 09:01:16 -0500
Cc: Barbara Fraser <byfraser@cisco.com>, Charlie Kaufman <charliek@microsoft.com>, ipsec@lists.tislabs.com
In-reply-to: <3453.1075344391@marajade.sandelman.ottawa.on.ca>
References: <3453.1075344391@marajade.sandelman.ottawa.on.ca>
Sender: owner-ipsec@lists.tislabs.com
User-agent: Mutt/1.5.5.1+cvs20040105i

On Wed, Jan 28, 2004 at 09:46:31PM -0500, Michael Richardson wrote:
> I don't know where things are going with this. If it will be published,
> then it needs a revision perhaps, and I'd like to do this before document
> deadline. 
> 
> If it isn't going to be published (original plan), then I think that it is
> done, and should go to some kind of WG last call, and get fed to IANA for
> their thoughts.
> 
> I'm totally cool if Charlie just takes the text and puts it into IKEv2.

Hi Michael, I was planning on sending this note a few days ago, but
work just got me completely swamped.  My apologies for it being
somewhat terse, but I figured it would be better to send something
short rather than to delay replying to you...

I've been looking at RFC 2434, and it looks like there are some
requirements for what needs to be in the IANA consideration section
that doesn't quite meet with what's in draft-ietf-ipsec-ikev2-iana-01.txt.
In particular, what RFC 2434 suggests that the text read something like:

	Following the policies outlined in [RFC 2434],
        numbers in the range 0-1234 are allocatred using the Expert
	REVIEW policy, and the numbers in the range 1024 - 65535 are
	reserved for Private Use.

RFC 2434 also states that this text needs to be in an RFC; so I don't
think just publishing this in an I-D and giving it to the IANA cuts
it.  There still is the question of whether it needs to be in the
IKEv2 specification or in a separate stand-alone document.  I'm
personally agnostic on the subject, except insofar as which one gets
us done faster.

In addition, I am wondering if we need to adjust the allocation
policies as currently defined in ikev2-iana-01 document.  It seems
strange to me that the relatively small ranges, such as the IKEv2
Payload types (only 255 possible values) have relatively loose
policies, such as "Specification Required", whereas some ranges that
are much larger, such as the IKEv2 Integrity Algorithm Transform ID's
(with 65536 possible values) have "Expert Review" as the policy.  

I understand that you probably just used the IANA policies from the
original IKEv1 and ISAKMP specs.  But it's not clear to me that they
are completely coherent.

Comments?  

						- Ted

Follow-Ups:
- Re: IANA document
  - From: Paul Hoffman / VPNC <paul.hoffman@vpnc.org>
- Re: IANA document
  - From: Michael Richardson <mcr@sandelman.ottawa.on.ca>

Prev by Date: Re: Issue #88: Lift the prohibition on red-side fragmentation bySG, BITS, BITW
Next by Date: Re: IANA document
Previous by thread: Re: Issue #83: Generation of ICMP responses for inbound packet requiring IPSEC protection
Next by thread: Re: IANA document
Index(es):
- Date
- Thread