[802 Architecture Group] . [Data Center Bridging Task Group] [Time-Sensitive Networking Task Group]
[Email] . [Ancient Email] . [Meetings] . [802.1 MIBs] . [802.1 OIDs] . [IEEE 802] . [IEEE 802 PARs]
 . [802a] . [802b] . [802.1D] . [802.1D-2004] . [802.1G] . [802.1H-REV] . [802.1Q] . [802.1Q-REV] . [802.1s] . [802.1v] . [802.1w] . [802.1AB-2005] . [802.1AB-2009] . [802.1AC] . [802.1AC-Rev] . [802.1ad] . [802.1ag] . [802.1ah] . [802.1aj] . [802.1ak] . [802.1ap] . [802.1aq] . [802.1Qaw] . [802.1AX] . [802.1Qay] . [802.1Qbc] . [802.1Qbe] . [802.1Qbf] . [802.1AXbk] . [802.1Qbp] . [802.1AX-Rev] . [802.1Qbz] . [802.1Qca] . [802.1CB] . [802.1Qcc]
Security: [802.1X-2001] . [802.1X-2004] . [802.1X-2010] . [802.1AE] . [802.1af] . [802.1AR] . [802.1AEbn] . [802.1AEbw] . [802.1Xbx]
TSN: [802.1AS] . [802.1ASbt] . [802.1Qat] . [802.1Qav] . [802.1BA] . [802.1Qbu] . [802.1Qbv] . [802.1Qcc] . DCB: [802.1Qau] . [802.1Qaz] . [802.1Qbb] . [802.1Qbg] . [802.1Qbh] . [802.3bd] . [802.1BR] . [802.1Qcd]
This standard adds MACsec (Media Access Control security) Key Agreement protocol (MKA) data elements and procedures that provide additional security and manageability capabilities, including the ability to maintain secure communication while the operation of MKA is suspended, when used in conjunction with MACsec Cipher Suites that support Extended Packet Numbering.
This project will extend MKA to realize additional security and manageability capabilities made possible by the P802.1AEbw amendment that adds extended packet numbering Cipher Suites to IEEE Std 802.1AE- 2006. These additional capabilities will include MKA data elements and procedures that allow secure connectivity association (CA) members to temporarily suspend MKA operation without causing protocol timeouts that would disrupt secure data transfer, thus allowing in-service control plane software upgrades.
MKA already allows secure data transfer to continue without disruption as fresh keys are distributed and reauthentication and authorization takes place, potentially allowing any secured link or LAN to provide continuous connectivity for many years. One environmental factor likely to limit the longevity of this uninterrupted communication is the need to perform a control plane software upgrade. This fact has been recognized in the design of other networking protocols that include explicit support for continuing operation and state recovery when monitoring protocol actions need to be suspended and resumed. This project will allow such in-service upgrade capability when communication is being protected by 802.1AE MACsec in conjunction with 802.1X. The IEEE Std 802.1AEbw extended packet numbering amendment will ensure that the interval between the need for fresh keys (even in very high speed operation) is greater than the time required for control plane upgrades, and this project is needed to realize the potential benefit.
|Status||PAR approved May 15th, 2012|
|26 Jun 2012||802.1Xbx, initial editor's draft 0.1|
|09 Apr 2013||802.1Xbx, Draft 0.2|
|11 Apr 2013||802.1Xbx, Draft 0.3|
|13 Jun 2013||802.1Xbx, Draft 0.5|
|15 Jul 2013||802.1Xbx, Draft 0.5 proposed comment dispositions|
|19 Jul 2013||802.1Xbx, Draft 0.5 proposed comment dispositions|
|19 Jul 2013||802.1Xbx, Draft 0.6|
|23 Jul 2013||802.1Xbx, Draft 0.7|
|26 Jul 2013||802.1Xbx, Draft 0.5 comment dispositions|
|26 Jul 2013||802.1Xbx, Draft 1.0|
|28 Aug 2013||802.1Xbx, Draft 1.0 proposed comment dispositions|
|24 Sep 2013||802.1Xbx, Draft 1.0 comment dispositions|
|24 Sep 2013||802.1Xbx, Draft 1.1|
|01 Oct 2013||802.1Xbx, Draft 1.0 comment dispositions|
|01 Oct 2013||802.1Xbx, Draft 1.2|
|21 Oct 2013||802.1Xbx, Draft 1.2 comment dispositions|
Pages copyright © Institute of Electrical and Electronics Engineers, Inc. Please read the rules on Confidentiality Statements and Copyright Notices on Communications. Information on Privacy and opting out of cookies is available. If you have any comments on these pages, please send them to me.