IEEE Std Proposed Revision Purpose, Scope & 5 Criteria

Purpose The purpose of this PAR is to update the Secure Data Exchange (SDE) Protocol specified in IEEE Std , to accommodate newly identified security requirements for all current 802 MACs and delete unneeded header fields.

Scope The scope of this PAR is to make changes to the format and processing of SDE PDUs to: – Accommodate replay protection – Integrity protect the Destination MAC address – Integrity protect additional header fields, particularly the VLAN tag, as needed The current PDU format and processing will have to be modified to incorporate a sequence number; the DA will have to be included in the computation of the ICV, and; the VLAN tag (and any other required header fields) will be included in the computation of the ICV, if protection is required by VLAN tagging rules (which are to be specified). In addition, an informative annex will be developed that discusses various scenarios for securing Layer 2 bridged networks and a normative annex will be developed that defines an SDE profile specifying a single interoperable SDE configuration that must be supported by all vendors claiming conformance to the revised SDE specification.

SDE Header Format Modifications DASA CLEAR HEADER PROTECTED HEADER ICV Current Format Revised Format INTEGRITY PROTECTED ENCRYPTED CLEAR HEADER PROTECTED HEADER DATAICV INTEGRITY PROTECTED ENCRYPTED DASA VLAN TAG PAD DATAPAD STA ID FLAGS FRAG ID SEC LABEL Pload EType FLAGS FRAG ID SEC LABEL SDE Des SAID MDF SAID SEQ NO. MDF

5 Criteria

Broad Market Potential 1. Broad sets of applicability 2. Multiple vendors & numerous users 3. Balanced costs (LAN vs attached stations) 1.Security is applicable to most personal and business environments that utilize 802 Layer 2 products. Increased security awareness in the general user population has dramatically increased the demand for security in networks composed of 802 Layer 2 products. 2.Several hundred people representing more than a hundred companies attend various 802 working groups that require security support in their products. These currently include (P2P & P2MP), (WLAN), (WPAN), (WMAN), (RPR), & (MBWA). 3.Layer 2 security can be implemented in either LAN devices or attached stations. Implementation of security in bridges is the most cost effective method, since many attached stations can be supported by a single bridge.

Compatibility The proposed revisions to IEEE Std are compatible with all current 802 MAC and bridging standards There are no implementations of , therefore backwards compatibility is not an issue Revisions to will conform with 802 Overview & Architecture and 802 layer management, as appropriate

Distinct Identity 1. Substantially different from other IEEE standards 2. One unique solution per problem 3. Easy for the document reader to select the relevant specification 1.There are no other 802-wide security standards i security work is specific to products, and is not intended to be a generic solution for all 802 MACs. PARs produced by the LinkSec ECSG will either support this effort, or be entirely distinct from it, but will not duplicate any of ’s work. 2.The goal of the revisions to is to provide a unique security solution that is applicable to all 802 MAC and bridging Standards. 3.The proposed effort is a revision to , which will have a distinct document revision number (probably IEEE Std )

Technical Feasibility 1. Demonstrated system feasibility 2. Proven technology, reasonable testing 3. Confidence in reliability 1.Technological revisions to are simple and straight-forward. Similar constructs are being used in a variety of products and other standards efforts today. 2.Products supporting Internet standards that incorporate similar technology have been sold world-wide and have been thoroughly tested in the field. 3.As with many security Standards, reference implementations will have to be constructed to which compliance must be proven in order to achieve the necessary confidence.

Economic Feasibility 1. Known cost factors, reliable data 2. Reasonable cost for performance 3. Consideration of installation costs 1.The goal of this project is to create a Layer 2 security mechanism that balances the cost of implementing data security with the cost and performance of the access technology. 2. Security mechanisms have been incorporated in Layers 2, 3, 4, and 7 at a reasonable cost increment, in terms of both dollars and throughput. 3. Any Layer 2 security mechanism may require additional infrastructure, depending on the type of key management mechanism selected. This translates into additional installation cost for equipment, software, and/or administration.