You Are Using IPv4 To Access This Site
Your IP Address is: 38.103.63.55

Re: [moonv6] Secure multi-user application

New Message	Reply	Date view	Thread view	Subject view	Attachment view

From: Kit Plummer (christopher_plummer@raytheon.com)
Date: 05/03/05

Next message: Joya Subudhi: "[moonv6] IPv6 In The News - Weekly Summary"
Previous message: ivancic: "[moonv6] Secure multi-user application"
In reply to: ivancic: "[moonv6] Secure multi-user application"
Next in thread: Green, David B RDECOM CERDEC STCD SRI: "RE: [moonv6] Secure multi-user application"

moonv6 post from Kit Plummer <christopher_plummer@raytheon.com>

On May 3, 2005, at 10:52 AM, ivancic wrote:

> moonv6 post from ivancic <wivancic@grc.nasa.gov>
> Can anyone point me to a relatively mature, multi-user application
> that utilizes IPv6, IPsec, peer-to-peer and perhaps even multicast.
> Peer-to-peer would be good enough and may be preferred. An MS
> windows based solution or multi-OS based solution is preferred.
> White-boarding or something of that nature would be fine. Even
> secure group chat.
>
> I am meeting with a rather high-level group to focused on what can
> be done right here, right now, as steps toward the much larger goal
> of enabling a NetCentric capability across the nation’s security
> and defense efforts. I thought I may suggest that each organization
> represented deploy an agreed upon application with ground rules
> such as:
>
> IPv6 in corporate "operational" backbone - or at least a section of
> the corporate backbone
> Tunneling allowed for second participate of corporation.
> Must use fully qualified domain names and DNS to located users.
> Workstation/Computer must be behind the corporate firewall.
>
>
>
>
> This may appear easy at first, but it forces the issues of:
>
> What is allowed through firewalls
> Secure Peer-to-peer communications
> Key/Identity distribution, key management and trust relationships
> Policy Issues of all sorts
> Deployment of native IPv6 and transition mechanisms
> DNS deployment
> The "real" capabilities of various operating systems and what needs
> to be done to get them to where they need to be.
> *** I suspect one would learn a lot about how one wants to go about
> deploying intrusion detection also. ;-O ***
>
> Any help identifying an application or suggestions regarding ground
> rules or "what can be done right here, right now, as steps toward
> the much larger goal of enabling a NetCentric capability" are welcome.
>

Will,

You've brought up a great idea. I am attempting to do something of this sort on a much smaller/local scale to prove out various issues or concepts. But, a widely available "tool" would be great.

To add a couple of bullets:

Bandwidth/latency limitations
Service discovery (DNSSD)
Policy Issues of all sorts

     Route optimization
     Flow label utilization

We definitely have interest in IDS and IA.

Cool stuff. I can't think of anything OTS that would suffice...but, maybe there is.

Kit

Kit Plummer
Operations Research and System Performance Dept. Raytheon Missile Systems
PHONE:520-794-1552
CELL:520-360-4729
FAX:520-794-0309
EMAIL:christopher_plummer@raytheon.com

New Message	Reply	Date view	Thread view	Subject view	Attachment view

This archive was generated by hypermail 2.1.7 : 12/01/06 EST