Re: >Draft Charter

[Paul_Lambert@poncho.phx.sectel.mot.com (Paul Lambert)]

                      RE>>Draft Charter

>Simple question:  Do you and others believe that you have the
>gist of the 2 solutions (net-layer protocol and key protocol) already
>fleshed out or do you expect substantial haggling about basic
>approaches?
>
>If the former applies, then I believe your schedule.  If the latter
>applies, then you have a heck of a challenge ahead.  (Hmmm.  I suspose
>you have _that_ no matter what.)
>
>Dave

The charter is a little bit ambiguous to allow open discussion of all
alternatives.  However, I believe the gist of the two solutions is:
   -  an adaptation of the ISO DIS 11577 Network Layer Security Protocol
(NLSP) to
       support net-layer security, and
   -  an adaptation of the draft IEEE 802.10C key management

In the case of NLSP, adaptation means that we have discussed 
approaches that NLSP could be:
     a)  used as is , (not yet feasible since the current elements of
procedure
           donUt work for the Internet),
     b)  modified to support a next protocol field,
     c)  qualified to utilize the NSEL of included NSAPS (much like SP3-A),
     d)  harmonized with a convergence protocol to encapsulate Internet
protocols, or
     e)  combinations and hybrids of the above.

The work required in the ipsec working group to use IEEE 802.10C (or similar
work) would include:
     a)  profiling the protocol for the Internet, 
     b)  supporting shared key distribution for broadcast/multicast
datagrams,
     c)  supporting NLSP peer-entity authentication and protocol option
negotiation,

Paul

---

Follow-Ups:

• Re: IPSEC starting point
• From: atkinson@tengwar.itd.nrl.navy.mil (Ran Atkinson)

---

• Prev by Date: Re: >Draft Charter IPSEC WG
• Next by Date: Re: IPSEC starting point
• Prev by thread: Re: >Draft Charter IPSEC WG
• Next by thread: Re: IPSEC starting point
• Index(es):
  • Main
  • Thread