Hi, all. We have updated the savi-wlan draft. The main changes are as follows: 1) A description of the impact of multiple addresses for an IPv6 interface and the way IPv6 interface identifiers are generated has been added (Section 3.3). 2) A description of how binding migration should be done in case of failure, in Section 3.4 (3) Updated the description of "IPv6 flag" in Section 5.1.1.4 to explicitly specify that the SLAAC assigned address is represented by the value 4. (4) Added consideration of MAC address randomization (Section 8).
We warmly welcome your valuable feedback and comments. Thanks in advance. -- Lin He -----Original Messages----- From: internet-dra...@ietf.org Sent Time: 2023-07-05 20:09:49 (Wednesday) To: "Jianping Wu" <jianp...@cernet.edu.cn>, "Lin He" <he-...@tsinghua.edu.cn>, "Mingwei Xu" <x...@cernet.edu.cn>, "Tao Lin" <lin...@h3c.com>, "You Wang" <wangyo...@mails.tsinghua.edu.cn> Cc: Subject: New Version Notification for draft-bi-intarea-savi-wlan-01.txt A new version of I-D, draft-bi-intarea-savi-wlan-01.txt has been successfully submitted by Lin He and posted to the IETF repository. Name: draft-bi-intarea-savi-wlan Revision: 01 Title: A SAVI Solution for WLAN Document date: 2023-07-05 Group: Individual Submission Pages: 17 URL: https://www.ietf.org/archive/id/draft-bi-intarea-savi-wlan-01.txt Status: https://datatracker.ietf.org/doc/draft-bi-intarea-savi-wlan/ Htmlized: https://datatracker.ietf.org/doc/html/draft-bi-intarea-savi-wlan Diff: https://author-tools.ietf.org/iddiff?url2=draft-bi-intarea-savi-wlan-01 Abstract: This document describes a source address validation solution for WLANs where 802.11i or other security mechanisms are enabled to secure MAC addresses. This mechanism snoops NDP and DHCP packets to bind IP addresses to MAC addresses, and relies on the security of MAC addresses guaranteed by 802.11i or other mechanisms to filter IP spoofing packets. It can work in the special situations described in the charter of SAVI (Source Address Validation Improvements) workgroup, such as multiple MAC addresses on one interface. This document describes three different deployment scenarios, with solutions for migration of binding entries when hosts move from one access point to another. The IETF Secretariat </wangyo...@mails.tsinghua.edu.cn></lin...@h3c.com></x...@cernet.edu.cn></he-...@tsinghua.edu.cn></jianp...@cernet.edu.cn> _______________________________________________ Int-area mailing list Int-area@ietf.org https://www.ietf.org/mailman/listinfo/int-area
