draft-ietf-6lo-ap-nd-05.txt   draft-ietf-6lo-ap-nd-06.txt 
6lo P. Thubert, Ed. 6lo P. Thubert, Ed.
Internet-Draft Cisco Internet-Draft Cisco
Updates: 6775 (if approved) B. Sarikaya Updates: 6775 (if approved) B. Sarikaya
Intended status: Standards Track Intended status: Standards Track
Expires: August 3, 2018 M. Sethi Expires: August 27, 2018 M. Sethi
Ericsson Ericsson
January 30, 2018 February 23, 2018
Address Protected Neighbor Discovery for Low-power and Lossy Networks Address Protected Neighbor Discovery for Low-power and Lossy Networks
draft-ietf-6lo-ap-nd-05 draft-ietf-6lo-ap-nd-06
Abstract Abstract
This document defines an extension to 6LoWPAN Neighbor Discovery (ND) This document defines an extension to 6LoWPAN Neighbor Discovery (ND)
[RFC6775][I-D.ietf-6lo-rfc6775-update] called Address Protected ND [RFC6775][I-D.ietf-6lo-rfc6775-update] called Address Protected ND
(AP-ND); AP-ND protects the owner of an address against address theft (AP-ND); AP-ND protects the owner of an address against address theft
and impersonation inside a low-power and lossy network (LLN). Nodes and impersonation inside a low-power and lossy network (LLN). Nodes
supporting this extension compute a cryptographic Owner Unique supporting this extension compute a cryptographic Owner Unique
Interface ID and associate it with one or more of their Registered Interface ID and associate it with one or more of their Registered
Addresses. The Cryptographic ID uniquely identifies the owner of the Addresses. The Cryptographic ID uniquely identifies the owner of the
skipping to change at page 1, line 45 skipping to change at page 1, line 45
Internet-Drafts are working documents of the Internet Engineering Internet-Drafts are working documents of the Internet Engineering
Task Force (IETF). Note that other groups may also distribute Task Force (IETF). Note that other groups may also distribute
working documents as Internet-Drafts. The list of current Internet- working documents as Internet-Drafts. The list of current Internet-
Drafts is at https://datatracker.ietf.org/drafts/current/. Drafts is at https://datatracker.ietf.org/drafts/current/.
Internet-Drafts are draft documents valid for a maximum of six months Internet-Drafts are draft documents valid for a maximum of six months
and may be updated, replaced, or obsoleted by other documents at any and may be updated, replaced, or obsoleted by other documents at any
time. It is inappropriate to use Internet-Drafts as reference time. It is inappropriate to use Internet-Drafts as reference
material or to cite them other than as "work in progress." material or to cite them other than as "work in progress."
This Internet-Draft will expire on August 3, 2018. This Internet-Draft will expire on August 27, 2018.
Copyright Notice Copyright Notice
Copyright (c) 2018 IETF Trust and the persons identified as the Copyright (c) 2018 IETF Trust and the persons identified as the
document authors. All rights reserved. document authors. All rights reserved.
This document is subject to BCP 78 and the IETF Trust's Legal This document is subject to BCP 78 and the IETF Trust's Legal
Provisions Relating to IETF Documents Provisions Relating to IETF Documents
(https://trustee.ietf.org/license-info) in effect on the date of (https://trustee.ietf.org/license-info) in effect on the date of
publication of this document. Please review these documents publication of this document. Please review these documents
skipping to change at page 2, line 29 skipping to change at page 2, line 29
Table of Contents Table of Contents
1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . 3 1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . 3
2. Terminology . . . . . . . . . . . . . . . . . . . . . . . . . 4 2. Terminology . . . . . . . . . . . . . . . . . . . . . . . . . 4
3. Updating RFC 6775 . . . . . . . . . . . . . . . . . . . . . . 5 3. Updating RFC 6775 . . . . . . . . . . . . . . . . . . . . . . 5
4. New Fields and Options . . . . . . . . . . . . . . . . . . . 5 4. New Fields and Options . . . . . . . . . . . . . . . . . . . 5
4.1. Encoding the Public Key . . . . . . . . . . . . . . . . . 5 4.1. Encoding the Public Key . . . . . . . . . . . . . . . . . 5
4.2. New Crypto-ID . . . . . . . . . . . . . . . . . . . . . . 6 4.2. New Crypto-ID . . . . . . . . . . . . . . . . . . . . . . 6
4.3. Updated EARO . . . . . . . . . . . . . . . . . . . . . . 6 4.3. Updated EARO . . . . . . . . . . . . . . . . . . . . . . 6
4.4. Crypto-ID Parameters Option . . . . . . . . . . . . . . . 7 4.4. Crypto-ID Parameters Option . . . . . . . . . . . . . . . 8
4.5. Nonce Option . . . . . . . . . . . . . . . . . . . . . . 9 4.5. Nonce Option . . . . . . . . . . . . . . . . . . . . . . 9
4.6. NDP Signature Option . . . . . . . . . . . . . . . . . . 9 4.6. NDP Signature Option . . . . . . . . . . . . . . . . . . 9
5. Protocol Scope . . . . . . . . . . . . . . . . . . . . . . . 9 5. Protocol Scope . . . . . . . . . . . . . . . . . . . . . . . 9
6. Protocol Flows . . . . . . . . . . . . . . . . . . . . . . . 10 6. Protocol Flows . . . . . . . . . . . . . . . . . . . . . . . 10
6.1. First Exchange with a 6LR . . . . . . . . . . . . . . . . 11 6.1. First Exchange with a 6LR . . . . . . . . . . . . . . . . 11
6.2. Multihop Operation . . . . . . . . . . . . . . . . . . . 12 6.2. Multihop Operation . . . . . . . . . . . . . . . . . . . 13
7. Security Considerations . . . . . . . . . . . . . . . . . . . 14 7. Security Considerations . . . . . . . . . . . . . . . . . . . 15
7.1. Inheriting from RTC 3971 . . . . . . . . . . . . . . . . 14 7.1. Inheriting from RTC 3971 . . . . . . . . . . . . . . . . 15
7.2. Related to 6LoWPAN ND . . . . . . . . . . . . . . . . . . 15 7.2. Related to 6LoWPAN ND . . . . . . . . . . . . . . . . . . 16
7.3. OUID Collisions . . . . . . . . . . . . . . . . . . . . . 16 7.3. OUID Collisions . . . . . . . . . . . . . . . . . . . . . 16
8. IANA considerations . . . . . . . . . . . . . . . . . . . . . 16 8. IANA considerations . . . . . . . . . . . . . . . . . . . . . 17
8.1. CGA Message Type . . . . . . . . . . . . . . . . . . . . 16 8.1. CGA Message Type . . . . . . . . . . . . . . . . . . . . 17
8.2. Crypto-Type Subregistry . . . . . . . . . . . . . . . . . 16 8.2. Crypto-Type Subregistry . . . . . . . . . . . . . . . . . 17
9. Acknowledgments . . . . . . . . . . . . . . . . . . . . . . . 17 9. Acknowledgments . . . . . . . . . . . . . . . . . . . . . . . 17
10. References . . . . . . . . . . . . . . . . . . . . . . . . . 17 10. References . . . . . . . . . . . . . . . . . . . . . . . . . 18
10.1. Normative References . . . . . . . . . . . . . . . . . . 17 10.1. Normative References . . . . . . . . . . . . . . . . . . 18
10.2. Informative references . . . . . . . . . . . . . . . . . 18 10.2. Informative references . . . . . . . . . . . . . . . . . 19
Appendix A. Requirements Addressed in this Document . . . . . . 20 Appendix A. Requirements Addressed in this Document . . . . . . 21
Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . 21 Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . 21
1. Introduction 1. Introduction
"Neighbor Discovery Optimizations for 6LoWPAN networks" [RFC6775] "Neighbor Discovery Optimizations for 6LoWPAN networks" [RFC6775]
(6LoWPAN ND) adapts the classical IPv6 ND protocol [RFC4861][RFC4862] (6LoWPAN ND) adapts the classical IPv6 ND protocol [RFC4861][RFC4862]
(IPv6 ND) for operations over a constrained low-power and lossy (IPv6 ND) for operations over a constrained low-power and lossy
network (LLN). In particular, 6LoWPAN ND introduces a unicast host network (LLN). In particular, 6LoWPAN ND introduces a unicast host
address registration mechanism that contributes to reduce the use of address registration mechanism that contributes to reduce the use of
multicast messages that are present in the classical IPv6 ND multicast messages that are present in the classical IPv6 ND
skipping to change at page 7, line 10 skipping to change at page 7, line 10
4.3. Updated EARO 4.3. Updated EARO
This specification updates the EARO option as follows: This specification updates the EARO option as follows:
0 1 2 3 0 1 2 3
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Type | Length | Status | Reserved | | Type | Length | Status | Reserved |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Reserved |C|T| TID | Registration Lifetime | | Reserved|C|R|T| TID | Registration Lifetime |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| | | |
+ Owner Unique ID (EUI-64 or Crypto-ID) + + Owner Unique ID (EUI-64 or Crypto-ID) +
| | | |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
Figure 1: Enhanced Address Registration Option Figure 1: Enhanced Address Registration Option
Type: 33 Type: 33
skipping to change at page 7, line 41 skipping to change at page 7, line 41
value is defined. value is defined.
Reserved: This field is unused. It MUST be initialized to zero Reserved: This field is unused. It MUST be initialized to zero
by the sender and MUST be ignored by the receiver. by the sender and MUST be ignored by the receiver.
C: This "C" flag is set to indicate that the Owner C: This "C" flag is set to indicate that the Owner
Unique ID field contains a Crypto-ID and that the 6LN Unique ID field contains a Crypto-ID and that the 6LN
MAY be challenged for ownership as specified in this MAY be challenged for ownership as specified in this
document. document.
R: Defined in [I-D.ietf-6lo-rfc6775-update].
T and TID: Defined in [I-D.ietf-6lo-rfc6775-update]. T and TID: Defined in [I-D.ietf-6lo-rfc6775-update].
Owner Unique ID: When the "C" flag is set, this field contains a Owner Unique ID: When the "C" flag is set, this field contains a
Crypto-ID. Crypto-ID.
4.4. Crypto-ID Parameters Option 4.4. Crypto-ID Parameters Option
This specification defines the Crypto-ID Parameters Option (CIPO), as This specification defines the Crypto-ID Parameters Option (CIPO), as
a variation of the CGA Option that carries the parameters used to a variation of the CGA Option that carries the parameters used to
form a Crypto-ID. In order to provide cryptographic agility, AP-ND form a Crypto-ID. In order to provide cryptographic agility, AP-ND
skipping to change at page 17, line 30 skipping to change at page 18, line 18
[FIPS-186-4] [FIPS-186-4]
FIPS 186-4, "Digital Signature Standard (DSS), Federal FIPS 186-4, "Digital Signature Standard (DSS), Federal
Information Processing Standards Publication 186-4", US Information Processing Standards Publication 186-4", US
Department of Commerce/National Institute of Standards and Department of Commerce/National Institute of Standards and
Technology Gaithersburg, MD, July 2013. Technology Gaithersburg, MD, July 2013.
[I-D.ietf-6lo-rfc6775-update] [I-D.ietf-6lo-rfc6775-update]
Thubert, P., Nordmark, E., Chakrabarti, S., and C. Thubert, P., Nordmark, E., Chakrabarti, S., and C.
Perkins, "An Update to 6LoWPAN ND", draft-ietf-6lo- Perkins, "An Update to 6LoWPAN ND", draft-ietf-6lo-
rfc6775-update-11 (work in progress), December 2017. rfc6775-update-13 (work in progress), February 2018.
[RFC2119] Bradner, S., "Key words for use in RFCs to Indicate [RFC2119] Bradner, S., "Key words for use in RFCs to Indicate
Requirement Levels", BCP 14, RFC 2119, Requirement Levels", BCP 14, RFC 2119,
DOI 10.17487/RFC2119, March 1997, DOI 10.17487/RFC2119, March 1997,
<https://www.rfc-editor.org/info/rfc2119>. <https://www.rfc-editor.org/info/rfc2119>.
[RFC3279] Bassham, L., Polk, W., and R. Housley, "Algorithms and [RFC3279] Bassham, L., Polk, W., and R. Housley, "Algorithms and
Identifiers for the Internet X.509 Public Key Identifiers for the Internet X.509 Public Key
Infrastructure Certificate and Certificate Revocation List Infrastructure Certificate and Certificate Revocation List
(CRL) Profile", RFC 3279, DOI 10.17487/RFC3279, April (CRL) Profile", RFC 3279, DOI 10.17487/RFC3279, April
 End of changes. 11 change blocks. 
18 lines changed or deleted 20 lines changed or added

This html diff was produced by rfcdiff 1.46. The latest version is available from http://tools.ietf.org/tools/rfcdiff/