[Babel-users] MAC rekeying in babeld and information model
Toke Høiland-Jørgensen
toke at toke.dk
Tue Jan 21 13:39:03 GMT 2020
Juliusz Chroboczek <jch at irif.fr> writes:
>>> The second part of my inquiry -- how does the information model enable
>>> incremental deployment? Section 5 of draft-ietf-babel-mac.
>
>> Incremental deployment is enabled through the interfaces object
>> babel-mac-verify parameter. Set this parameter to false until all
>> routers have key(s). Then set to true.
>
> Ah, ok. That's fine, then, sorry for missing it.
>
>> I don't think an additional per-interface parameter is needed. I think
>> babel-mac-verify should be fine.
>
> Agreed.
>
>> If the group wants to remove the key-use parameters and only support
>> symmetrical keying, I have no objection. We could also make those
>> parameters optional-to-implement (square brackets), with the expectation
>> that an implementation wouldn't implement them if it only supports
>> symmetric keying.
>
> Shall we wait for Toke to express an opinion?
As I just replied in the other thread: The Bird implementation is going
to have this facility no matter what we specify in the spec, but I'm
fine with having it optional, or omitting it from the spec entirely, as
long as we don't forbid having a key-use parameter :)
-Toke
More information about the Babel-users
mailing list