[rbridge] Threat and security analysis?
andy at nosignal.org
Fri May 28 09:11:48 PDT 2010
On 28 May 2010, at 16:44, Jukka Manner <jukka.manner at tkk.fi> wrote:
> Hi Joe,
> I was mostly thinking in the direction of
> a) Deployment guidelines: what people should understand when looking for deploying TRILL. Yes, concrete details would be good.
> b) Future work: how could we make TRILL more secure and trustworthy than legacy Ethernet since we don't need to carry all that legacy (yes, I know, the simplicity requirement of TRILL is against this).
No, thank you. Not every packet on a network segment will pass through an inter switch link that encapsulates the frame inside a trill packet. Therefore, operators will need to do everything at the security layer that they do today, and can't rely on new security features in trill. Let's stick to building a robust method to mesh layer 2 networks with loops, and get this shipped!
More information about the rbridge