[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: WG last call for IPv4 AH and ESP

To: ashar@osmosys.incog.com (Ashar Aziz)
Subject: Re: WG last call for IPv4 AH and ESP
From: "Perry E. Metzger" <perry@imsi.com>
Date: Thu, 23 Feb 1995 15:53:13 -0500
Cc: ipsec@ans.net
In-Reply-To: Your message of "Thu, 23 Feb 1995 12:07:33 PST." <9502232007.AA07251@miraj.>
Reply-To: perry@imsi.com


Ashar Aziz says:
> This doesn't have to be the case. I believe that in-band keying
> can be generally accommodated without regard to methods.

I don't believe this is possible. The recipient is going to have to
know how to interpret some sort of special signal to the effect that a
particular method is in use.

> In particular,
> I believe both the DEC and the SKIP methods can be accommodated
> using generic language, where the specifics of how the keys
> were encrypted would be part of the key-mgmt drafts.

Moving language out of a draft is not the same as providing clean
seperation of function. In particular, I would have to hack the
kernel implementation of IPSP to understand key management. Right now,
my design has no kernel based key management at all and needs none.

This is not to say that I have yet formed a solid opinion on what
should be done here. I'm merely saying that things are not that clean.

Perry

References:

Re: WG last call for IPv4 AH and ESP

From: ashar@osmosys.incog.com (Ashar Aziz)

Prev by Date: Re: WG last call for IPv4 AH and ESP
Next by Date: Re: WG last call for IPv4 AH and ESP
Prev by thread: Re: WG last call for IPv4 AH and ESP
Next by thread: Re: WG last call for IPv4 AH and ESP
Index(es):
- Main
- Thread