[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Draft Charter IPSEC WG
Readership:
Attached is a copy of the draft charter of the IPSEC WG which was submitted
to Steve Crocker, SAAG Chair 11-19-92.
Thanks again to all attendees of the BOFs held on Tuesday and Thursday.
Al Hoover
DRAFT - DRAFT - DRAFT - DRAFT - DRAFT - DRAFT - DRAFT - DRAFT - DRAFT
Internet Protocol Security (IPSEC) Protocol Working Group
Working Group Charter
Chair(s): Alton Hoover & Paul Lambert
Security Area Director: Steve Crocker (SAAG)
Mailing lists:
General Discussion: ipsec@ans.net
To Subscribe: ipsec-request@ans.net
Archive: ftp.ans.net (retrieve ~pub/archive/ipsec)
Rapid advances in communication technology have accentuated the need
for security in the Internet. The IP Security protocol working group
(IPSEC WG) will develop mechanisms to protect client protocols of IP.
A security protocol in the network layer will be developed to provide
cryptographic security services that will flexibly support combinations
of authentication, integrity, access control, and confidentiality. The
preliminary goals will specifically pursue host-to-host security followed
by subnet-to-subnet and host-to-subnet topologies. Subnet-to-subnet
topologies will support recursive cryptographic encapsulation.
Protocol and cryptographic techniques will also be developed to support
the key management requirements of the network layer security. The key
management will be specified as an application layer protocol that is
independent of the lower layer security protocol. The protocol will
initially support public key based techniques. Flexibility in the
protocol will allow eventual support of Key Distribution Center (KDC -
such as Kerberos) and manual distribution approaches.
Goals and Milestones
A standards track RFC for a cryptographic security protocol in the network
layer will be developed. A standards track RFC for a cryptographic key
management protocol in the application layer will be developed. Pilot
implementations of network security integrated with key management
will be developed and tested in the Internet.
Milestone Dates
3/93 Draft specification of the network layer security protocol.
Initial framework for Internet key management techniques
7/93 Working prototype of network layer security and key management
for host-to-host security.
Draft specification for Internet key management.
11/93 Enhanced specification for a security protocol in the network layer
that includes subnet-to-subnet protection.
3/94 Enhanced specification for Internet key management
that supports subnet-to-subnet security services.
Working prototypes of subnet-to-subnet protection integrated
with key management.
7/94 Full standards for a network layer security protocol and a
Internet key management protocol based on public key techniques.
Follow-Ups: