[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: "user" and "network layer" security mechanisms.

To: Charles Watt <watt@sware.com>
Subject: Re: "user" and "network layer" security mechanisms.
From: "Angelos D. Keromytis" <aggelos@soscorp.com>
Date: Tue, 20 Aug 1996 18:18:05 -0400
Cc: Matt Thomas <matt@lkg.dec.com>, ipsec@TIS.COM
In-Reply-To: Your message of "Tue, 20 Aug 1996 17:05:42 EDT." <9608202105.AA01723@mordred.sware.com>
Sender: ipsec-approval@neptune.tis.com

-----BEGIN PGP SIGNED MESSAGE-----


In message <9608202105.AA01723@mordred.sware.com>, Charles Watt writes:
>
>Pick at the specifics all you want, the basic point remains valid.  The
>Internet stack was designed to permit multiplexing above IP.  There are
>several things out there that do this.  User-level authentication within
>IPSEC cannot work for these products unless they are substantially
>modified.
>
But what you're talking about is multiplexing above TCP.
In any case, i think user-level authentication will require specially
modified/writen applications, but that's no reason not to support it.
- -Angelos
-----BEGIN PGP SIGNATURE-----
Version: 2.6
Comment: Processed by Mailcrypt 3.4, an Emacs/PGP interface

iQCVAwUBMho5mb0pBjh2h1kFAQEdrwP9GTeRv02XaY5Jj5Gujnn7Y8QAXM2zhtku
6vrBiVJO09nWkf8pKAYjidXflSA+zxKnJjGJ6u+kr9Dgo9l3bmt31wtVzryam93E
RGjgkjapceBj0Mc5smYVPR70rP66TWtlgb8hyIcNW8gLKGlLYzv5tNL6zH5NDz3K
LM8A52b4vyk=
=eA5h
-----END PGP SIGNATURE-----

References:

Re: "user" and "network layer" security mechanisms.

From: Charles Watt <watt@sware.com>

Prev by Date: Re: "user" and "network layer" security mechanisms.
Next by Date: Re: "user" and "network layer" security mechanisms.
Prev by thread: Re: "user" and "network layer" security mechanisms.
Next by thread: Re: "user" and "network layer" security mechanisms.
Index(es):
- Main
- Thread