RSS feed
[Home] . [What's New?] . [Active Ballots] . [Minutes] . [Maintenance] . [Interpretations] . [Public Docs] . [Committee Docs]
[Local Address Study Group] . [802 Architecture Group] . [Data Center Bridging Task Group] [Time-Sensitive Networking Task Group]
[Email] . [Ancient Email] . [Meetings] . [802.1 MIBs] . [802.1 OIDs] . [IEEE 802] . [IEEE 802 PARs]
[802] . [802a] . [802b] . [802.1D] . [802.1D-2004] . [802.1G] . [802.1H-REV] . [802.1Q] . [802.1Q-2014] . [802.1s] . [802.1v] . [802.1w] . [802.1AB-2005] . [802.1AB-2009] . [802.1AC] . [802.1AC-Rev] . [802.1ad] . [802.1ag] . [802.1ah] . [802.1aj] . [802.1ak] . [802.1ap] . [802.1aq] . [802.1Qaw] . [802.1AX] . [802.1Qay] . [802.1Qbc] . [802.1Qbe] . [802.1Qbf] . [802.1AXbk] . [802.1Qbp] . [802.1AX-Rev] . [802.1Qbz] . [802.1Qca] . [802.1Qcc]
Security: [802.1X-2001] . [802.1X-2004] . [802.1X-2010] . [802.1AE] . [802.1af] . [802.1AR] . [802.1AEbn] . [802.1AEbw] . [802.1Xbx] . [802.1ARce] . [802.1AEcg] . OmniRAN: [802.1CF]
TSN: [802.1AS] . [802.1ASbt] . [802.1Qat] . [802.1Qav] . [802.1BA] . [802.1Qbu] . [802.1Qbv] . [802.1CB] . [802.1Qcc] . DCB: [802.1Qau] . [802.1Qaz] . [802.1Qbb] . [802.1Qbg] . [802.1Qbh] . [802.3bd] . [802.1BR] . [802.1Qcd]


802.1Xbx - Port-Based Network Access Control Amendment 1: MAC Security Key Agreement protocol (MKA) extensions

This standard adds MACsec (Media Access Control security) Key Agreement protocol (MKA) data elements and procedures that provide additional security and manageability capabilities, including the ability to maintain secure communication while the operation of MKA is suspended, when used in conjunction with MACsec Cipher Suites that support Extended Packet Numbering.

This project will extend MKA to realize additional security and manageability capabilities made possible by the P802.1AEbw amendment that adds extended packet numbering Cipher Suites to IEEE Std 802.1AE- 2006. These additional capabilities will include MKA data elements and procedures that allow secure connectivity association (CA) members to temporarily suspend MKA operation without causing protocol timeouts that would disrupt secure data transfer, thus allowing in-service control plane software upgrades.

MKA already allows secure data transfer to continue without disruption as fresh keys are distributed and reauthentication and authorization takes place, potentially allowing any secured link or LAN to provide continuous connectivity for many years. One environmental factor likely to limit the longevity of this uninterrupted communication is the need to perform a control plane software upgrade. This fact has been recognized in the design of other networking protocols that include explicit support for continuing operation and state recovery when monitoring protocol actions need to be suspended and resumed. This project will allow such in-service upgrade capability when communication is being protected by 802.1AE MACsec in conjunction with 802.1X. The IEEE Std 802.1AEbw extended packet numbering amendment will ensure that the interval between the need for fresh keys (even in very high speed operation) is greater than the time required for control plane upgrades, and this project is needed to realize the potential benefit.

Status
StatusPAR approved May 15th, 2012
EditorMick Seaman

Archive
DateDocument
26 Jun 2012802.1Xbx, initial editor's draft 0.1
09 Apr 2013802.1Xbx, Draft 0.2
11 Apr 2013802.1Xbx, Draft 0.3
13 Jun 2013802.1Xbx, Draft 0.5
15 Jul 2013802.1Xbx, Draft 0.5 proposed comment dispositions
19 Jul 2013802.1Xbx, Draft 0.5 proposed comment dispositions
19 Jul 2013802.1Xbx, Draft 0.6
23 Jul 2013802.1Xbx, Draft 0.7
26 Jul 2013802.1Xbx, Draft 0.5 comment dispositions
26 Jul 2013802.1Xbx, Draft 1.0
28 Aug 2013802.1Xbx, Draft 1.0 proposed comment dispositions
24 Sep 2013802.1Xbx, Draft 1.0 comment dispositions
24 Sep 2013802.1Xbx, Draft 1.1
01 Oct 2013802.1Xbx, Draft 1.0 comment dispositions
01 Oct 2013802.1Xbx, Draft 1.2
21 Oct 2013802.1Xbx, Draft 1.2 comment dispositions
18 Feb 2014802.1Xbx, Draft 1.2 proposed comment dispositions
26 Feb 2014802.1Xbx, Draft 1.2 proposed comment dispositions
03 Mar 2014802.1Xbx, Draft 1.2 proposed comment dispositions
03 Mar 2014802.1Xbx, Draft 1.3
11 Apr 2014802.1Xbx, Draft 1.2 comment dispositions
11 Apr 2014802.1Xbx, Draft 1.5
03 May 2014802.1Xbx, Draft 1.5 proposed comment dispositions
03 May 2014802.1Xbx, Draft 1.6

Presentations
DateDocument

Pages copyright © Institute of Electrical and Electronics Engineers, Inc. Please read the rules on Confidentiality Statements and Copyright Notices on Communications. Information on Privacy and opting out of cookies is available. If you have any comments on these pages, please send them to me.

Valid XHTML 1.0 Transitional Valid CSS!

Last status: 0
Last modified by jmesseng, at 3:10AM on Sat, 03 May 2014