Research and Publications

My primary work responsibility is to architect, design and write code for the 7210 series of service access switches.  In my spare time (usually late nights or early mornings) i do all the research and standardization work in IETF. I am active in several IETF WGs and have published several drafts and RFCs. This page lists some of the documents that i have written:

Open Shortest Path First IGP (OSPF) WG:

RFC 5709 - OSPFv2 HMAC-SHA Cryptographic Authentication

RFC 6506 - Supporting Authentication Trailer for OSPFv3

Stronger, Automatic Integrity Checks for OSPF Packets

Non IPSec Authentication mechanism for OSPFv3

Route Flapping Effects on OSPF“, Ohara, Y., Bhatia, M., et. al, IEEE Computer Society, SAINT Workshop 2003

IS-IS for IP Internets (IS-IS) WG:

RFC 5310 - IS-IS Generic Cryptographic Authentication

Operational Security Capabilities for IP Network Infrastructure (OPSEC) WG:

RFC 6039 - Issues with Existing Cryptographic Protection Methods for Routing Protocols

RFC 6094 - Summary of Cryptographic Authentication Algorithm Implementation Requirements for Routing Protocols

IP Security Maintenance and Extensions (IPSecME) WG:

RFC 5840 - Wrapped Encapsulating Security Payload (ESP) for Traffic Visibility

Moving Authentication Header (AH) to Historic

Keying and Authentication for Routing Protocols (KARP) WG:

The Threat Analysis and Requirements for Cryptographic Authentication of  Routing Protocols’ Transports

RFC 6518 - Keying and Authentication for Routing Protocols (KARP)  Design Guidelines

A Generic Mechanism to solve Inter-Session Replay Attacks for Routing and Signaling Protocols

Security Extension for OSPFv2 when using Manual Key Management

Using Short-Lived Traffic Keys for Routing Protocols

Timing over IP Connection and Transfer of Clock (TICTOC) WG:

Transporting PTP messages (1588) over MPLS Networks

Multiprotocol Label Switching (MPLS) WG:

Extensions to RSVP-TE for Hub and Spoke Multipoint LSPs

Extensions to RSVP-TE for Bi-directional LSP Paths

Protocol Independent Multicast (PIM) WG:

Replacing PIM Register packets with MPLS encapsulation

Analysis of PIM-SM Security according to KARP Design Guide

In-Band Authentication Extension for PIM-SM

Bidirectional Forwarding Detection (BFD) WG:

BFD Generic Cryptographic Authentication

Authenticating BFD using HMAC-SHA-2 procedures

BFD on Link Aggregation (LAG) Interfaces

Analysis of BFD Security according to KARP Design Guide

IPv6 Maintenance (6man) WG:

An uniform format for IPv6 extension headers

IPv6 Router Advertisment Option for NTP Server Configuration

Standardizing IPv6 Extension Header Definition

Inter-Domain Routing (IDR) WG:

Advertising Equal Cost Multipath routes in BGP

Advertising Multiple NextHop Routes in BGP

 

Route Flapping Effects on OSPF

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Cancel

Connecting to %s

Follow

Get every new post delivered to your Inbox.