[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IPv6 Security Last Call Initial Questions (per user keying)

To: Dan Nessett <Danny.Nessett@eng.sun.com>, tytso@MIT.EDU
Subject: Re: IPv6 Security Last Call Initial Questions (per user keying)
From: Ran Atkinson <rja@bodhi.cs.nrl.navy.mil>
Date: Fri, 31 Mar 1995 15:58:04 -0500
Cc: ipsec@ans.net, jis@MIT.EDU
In-Reply-To: Danny.Nessett@Eng.Sun.COM (Dan Nessett) "Re: IPv6 Security Last Call Initial Questions (per user keying)" (Mar 31, 12:33)
References: <199503312034.AA51882@interlock.ans.net>
Reply-To: atkinson@itd.nrl.navy.mil
Sender: rja@bodhi.cs.nrl.navy.mil

On Mar 31, 12:33, Dan Nessett wrote:

% When per-user keying is used, there will be changes
% required to the socket/TLI/XTI/etc/ interfaces so that an
% application can pass an SPI and security context information
% to the kernel.

I disagree.

  Changes to the Socket/TLI/XTI interfaces will be needed in any event
so that applications that are "security-aware" can request the
particular security services that they desire.

  A document that discusses some of the API issues is already online
with a filename similar to "draft-mcdonald-sec-api-*.txt".  I should
mention that the Security API draft is a drafty draft mainly out to
focus discussions.  Also, the IETF doesn't standardise APIs so that
would become an Informational RFC if it went to RFC in the future.

Ran
atkinson@itd.nrl.navy.mil

References:

Re: IPv6 Security Last Call Initial Questions (per user keying)

From: Danny.Nessett@eng.sun.com (Dan Nessett)

Prev by Date: Re: IPv6 Security Last Call Initial Questions (per user keying)
Next by Date: Re: IPv6 Security Last Call Initial Questions (per user keying)
Next by thread: Re: (IPng) Proposed Standard or no?
Index(es):
- Main
- Thread