RSS feed
[Home] . [What's New?] . [Active Ballots] . [Minutes] . [Meetings] . [Maintenance] . [Interpretations] . [Public Docs] . [Committee Docs]
[Local Address Study Group] . [802 Architecture Group] . [Data Center Bridging Task Group] [Time-Sensitive Networking Task Group]
[Email] . [Ancient Email] . [802.1 MIBs] . [802.1 OIDs] . [IEEE 802] . [IEEE 802 PARs]
TSN: [802] . [802a] . [802b] . [802.1D] . [802.1D-2004] . [802.1G] . [802.1H-REV] . [802.1Q] . [802.1Q-2014] . [802.1s] . [802.1v] . [802.1w] . [802.1AB-2005] . [802.1AB-2009] . [802.1AC-2012] . [802.1AC-2016] . [802.1ad] . [802.1ag] . [802.1ah] . [802.1aj] . [802.1ak] . [802.1ap] . [802.1aq] . [802.1Qaw] . [802.1AX-2008] . [802.1Qay] . [802.1Qbc] . [802.1Qbe] . [802.1Qbf] . [802.1AXbk] . [802.1Qbp] . [802.1AX-2014] . [802.1AX-Rev] . [802.1Qbz] . [802.1Qca]
[802.1AS] . [802.1AS-Rev] . [802.1Qat] . [802.1Qav] . [802.1BA] . [802.1Qbu] . [802.1Qbv] . [802.1CB] . [802.1Qcc] . [802.1Qch] . [802.1CM] . [802.1Qcn] . [802.1Qcp] . [802.1Qcr]
Security: [802.1X-2001] . [802.1X-2004] . [802.1X-2010] . [802.1AE] . [802.1af] . [802.1AR] . [802.1AEbn] . [802.1AEbw] . [802.1Xbx] . [802.1ARce] . [802.1AEcg] . [802.1Xck] . [802E]
DCB: [802.1Qau] . [802.1Qaz] . [802.1Qbb] . [802.1Qbg] . [802.1Qbh] . [802.3bd] . [802.1BR] . [802.1Qcd] . [802.1Qcj] . [802c] . OmniRAN: [802.1CF]


802.1AEcg - Media Access Control (MAC) Security Amendment: Ethernet Data Encryption Devices

The scope of this standard is to specify provision of connectionless user data confidentiality, frame data integrity, and data origin authenticity by media access independent protocols and entities that operate transparently to MAC Clients. This amendment specifies the use of Media Access Control (MAC) security in two port bridges that provide transparent secure connectivity for customer bridges or provider bridges while allowing provider network service selection and provider backbone network selection to occur as already specified in 802.1Q.

This standard will facilitate secure communication over publicly accessible LAN/MAN media for which security has not already been defined, and allow the use of IEEE Std 802.1X, already widespread and supported by multiple vendors, in additional applications.

IEEE 802.1AE already specifies the use of MAC security in various interworking scenarios involving various types of bridging systems (e.g. Customer Bridges, Provider Bridges, and Provider Edge Bridges). However it is also desirable to secure connectivity by adding separate bridging systems (Ethernet Data Encryption devices, EDEs) dedicated to that purpose and having minimal additional functionality.The desired secure connectivity can be achieved without removing existing network functionality (such as VID-based service selection) by using existing architectural components (as specified in 802.1AE, 802.1X, and 802.1Q). Such use needs to be documented in IEEE 802.1AE (specifically within Clause 11 MAC Security in Systems). To facilitate interoperability additional Group Addresses need to be assigned to allow each EDE's 802.1X PAE (Port Access Entity) to communicate with its peer(s). These addresses do not have to be Reserved Addresses (as specified in 802.1Q Clause 8).

Status
StatusPAR approved Aug 21st, 2014
EditorMick Seaman

Archive
DateDocument
19 Jan 2014802.1AEcg, initial editor's draft 0.1
12 Jan 2014README.txt
19 Jan 2014802.1AEcg, Draft 0.1
13 Jul 2014802.1AEcg, Draft 0.3
23 Feb 2015802.1AEcg, Draft 0.4
30 Mar 2015802.1AEcg, Draft 0.5
12 May 2015802.1AEcg, Draft 0.5 proposed comment dispositions v0
16 May 2015802.1AEcg, Draft 0.5 proposed comment dispositions v1
10 Jun 2015802.1AEcg, Draft 0.5 proposed comment dispositions v2
10 Jun 2015802.1AEcg, Draft 0.6
07 Sep 2015802.1AEcg, Draft 0.5 proposed comment dispositions v3, open
07 Sep 2015802.1AEcg, Draft 0.5 proposed comment dispositions v3
08 Nov 2015802.1AEcg, Draft 0.7
16 Jan 2016802.1AEcg, Draft 0.9
24 Feb 2016802.1, Draft 1 d1-0
19 Mar 2016802.1AEcg, Draft 0.5 comment dispositions
19 Mar 2016802.1, Draft 1 d1-1
21 Mar 2016802.1, Draft 1 d1-1
26 Apr 2016802.1AEcg, Draft 1.1 proposed comment dispositions
08 May 2016802.1, Draft 1 d1-2
08 May 2016802.1AEcg, Draft 1.1 proposed comment dispositions
11 May 2016802.1, Draft 1 d1-3
11 May 2016802.1AEcg, Draft 1.1 proposed comment dispositions
14 Jun 2016802.1, Draft 1 d1-4
14 Jun 2016802.1AEcg, Draft 1.1 comment dispositions
29 Jun 2016802.1AEcg, Draft 1.4 comment dispositions
26 Oct 2016802.1AEcg, Draft 1.4 proposed comment dispositions
26 Oct 2016802.1AEcg, Draft 1.5
06 Nov 2016802.1AEcg, Draft 1.6 -prelim

Presentations
DateDocument
21 May 2014Presentation cg-draft-aegc-csd-0514-v2.pdf
21 May 2014Presentation cg-draft-aegc-par-0514-v2.pdf
16 Jul 2014Presentation cg-draft-aecg-csd-0714-v3.pdf
16 Jul 2014Presentation cg-draft-aecg-par-0714-v3.pdf
04 Aug 2015Presentation ae-seaman-ede-interop-0815-v01.pdf
01 Sep 2015Presentation ae-seaman-ede-interop-0815-v02.pdf
09 Sep 2015Presentation ae-seaman-ede-reserved-addresses-090915v1.pdf
22 Nov 2015Presentation cg-seaman-counters-1115-v01.pdf
23 May 2016Presentation cg-varga-backwardcompatibility-0516-v01.pdf

Pages copyright © Institute of Electrical and Electronics Engineers, Inc. Please read the rules on Confidentiality Statements and Copyright Notices on Communications. Information on Privacy and opting out of cookies is available. If you have any comments on these pages, please send them to me.

Valid XHTML 1.0 Transitional Valid CSS!

Last status: 0
Last modified by jmesseng, at 3:10AM on Sun, 06 Nov 2016