[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: >IPSEC Charter - New Dra

To: atkinson@itd.nrl.navy.mil, Paul_Lambert@poncho.phx.sectel.mot.com
Subject: Re: >IPSEC Charter - New Dra
From: atkinson@itd.nrl.navy.mil (Ran Atkinson)
Date: Thu, 3 Feb 94 10:33:53 EST
Cc: ipsec@ans.net

% >put more emphasis upon it.  I really think that because so many protocols
% >(e.g. IP, Mobile IP, IPng, OSPF, BGP, etc) need a standard key mgmt
% protocol 
% 
% Humm ... why do these protocols need their own key management?  They
% would all be protected by IPSP.

It isn't clear to me that they do need their own key management protocol
and that is one reason why I'd like to have the key mgmt protocol done first.

There are a number of good reasons why I might want to have authentication
(etc) built into those protocols.  Mobile IP in particular appears to need
to have authentication built into the Mobile IP protocol because IPSP could
not provide the right trust properties.  I believe these others (IPng,
OSPF, BGP) could also benefit from having authentication built into the
protocols.  There are groups/people already working on adding the hooks 
for such authentication (as well as some protocols which have the hooks
but need a key mgmt protocol to transform those hooks into easily deployable
authenticated protocols).

Ran

Follow-Ups:

Re: >IPSEC Charter - New Dra

From: Steve Kent <kent@BBN.COM>

Prev by Date: Re: IPsec near term work
Next by Date: Re: Emphasizing Key Mgmt
Prev by thread: Re: Emphasizing Key Mgmt
Next by thread: Re: >IPSEC Charter - New Dra
Index(es):
- Main
- Thread