[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: reserving some SAIDs
Steve,
Maybe I'm confused. I understood the proposal to be to reserve a tiny
part of the SAID space, 16 values out of 2**32, for the same purpose
as the global SAIDs servered in my PIPS proposal.
Donald
From: Steve Kent <kent@BBN.COM>
To: Ran Atkinson <atkinson@sundance.itd.nrl.navy.mil>
Cc: ipsec@ans.net
In-Reply-To: Your message of Wed, 03 Aug 94 15:11:46 +0000.
<9408031511.aa16550@sundance.itd.nrl.navy.mil>
>Ran,
>
> I'd feel much more comfortable if there was a lot of
>explanation to match the request (the same way Jon Postel used to ask
>the requestior of a class A network number why they wanted to many
>addresses). The form of the explanation would not just be what
>combination of algorithms they are thinking about, but how the
>reservation of this big chunk of the SAID space fits in with the
>problem of establishing the overall set of attributes that are bound
>to an SA, why it's necessary to fix bit for these specific attributes
>when there are lots of others that need to be specified, how
>management of SAIDs by the IPSP end points is simplified by this a
>priori assigment, etc. If we start fixing bits in SAIDs to mean
>specific things re key management, we can chop up this space in a
>hurry. When I said I could live with fewer SAID bits, I did not
>envision this sort of pre-allocation.
>
>Steve
Follow-Ups:
References: