Your IP Address is: 38.103.63.55
Re: [moonv6] Secure multi-user application
From: John Jason Brzozowski (CISSP, RHCT) (jjmb@jjmb.com)
Date: 05/03/05
- Next message: Joya Subudhi: "[moonv6] IPv6 in the News - Weekly Summary"
- Previous message: John M Baird: "Re: [moonv6] Secure multi-user application"
- In reply to: ivancic: "[moonv6] Secure multi-user application"
moonv6 post from "John Jason Brzozowski (CISSP, RHCT)" <jjmb@jjmb.com>
Will,
DHCPv6 (server and client) and DNS, more specifically Dynamic Updates to DNS, offer one alternative to address your DNS point below where nodes would interact usign FQDN's.
John
On Tue, 2005-05-03 at 13:52 -0400, ivancic wrote:
> moonv6 post from ivancic <wivancic@grc.nasa.gov>
> Can anyone point me to a relatively mature, multi-user application that
> utilizes IPv6, IPsec, peer-to-peer and perhaps even multicast.
> Peer-to-peer would be good enough and may be preferred. An MS windows
> based solution or multi-OS based solution is preferred. White-boarding
> or something of that nature would be fine. Even secure group chat.
>
> I am meeting with a rather high-level group to focused on what can be
> done right here, right now, as steps toward the much larger goal of
> enabling a NetCentric capability across the nation’s security and
> defense efforts. I thought I may suggest that each organization
> represented deploy an agreed upon application with ground rules such as:
>
> IPv6 in corporate "operational" backbone - or at least a section of the
> corporate backbone
> Tunneling allowed for second participate of corporation.
> Must use fully qualified domain names and DNS to located users.
> Workstation/Computer must be behind the corporate firewall.
>
>
>
>
> This may appear easy at first, but it forces the issues of:
>
> What is allowed through firewalls
> Secure Peer-to-peer communications
> Key/Identity distribution, key management and trust relationships
> Policy Issues of all sorts
> Deployment of native IPv6 and transition mechanisms
> DNS deployment
> The "real" capabilities of various operating systems and what needs to
> be done to get them to where they need to be.
> *** I suspect one would learn a lot about how one wants to go about
> deploying intrusion detection also. ;-O ***
>
> Any help identifying an application or suggestions regarding ground
> rules or "what can be done right here, right now, as steps toward the
> much larger goal of enabling a NetCentric capability" are welcome.
>
>
> Rest Regards,
>
>
> Will Ivancic
>
> ******************************
> William D. Ivancic
> Phone 216-433-3494
> Fax 216-433-8705
> Lab 216-433-2620
> Mobile 440-503-4892
> Yahoo ID: ivancic
> http://roland.grc.nasa.gov/~ivancic
>
>
-- =================================== John Jason Brzozowski, CISSP, RHCT jjmb@jjmb.com 484.994.6787 p 775.942.4958 f ===================================
This archive was generated by hypermail 2.1.7 : 12/01/06 EST