[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

question about draft semantics

To: ipsec@tis.com
Subject: question about draft semantics
From: owner-ipsec@ex.tis.com
Date: Thu, 6 Mar 1997 22:18:27 +0200 (EET)
Organization: Helsinki University of Technology, TCM-laboratory
Sender: owner-ipsec@ex.tis.com


Best ipsec mailing list members,

The following text is from draft-ietf-ipsec-arch-sec-01.txt: 

> 1.4  Minimal Essential Support
>
   ......

>
>   The following sequences of combinations of AH and ESP, each
>   represented by a separate security association, must be supported by an
>   IPsec-compliant host: AH, ESP (tunnel), ESP(transport), AH-ESP(transport),
>   AH-ESP(tunnel), ESP(tunnel)-AH, AH-ESP(tunnel)-ESP(transport), and
>   ESP(tunnel)-ESP(transport).
>
  ......


>Atkinson                                                        [Page 5]
>
>Internet Draft        Security Architecture for IP      10 November 1996

To me, this part of the text seems a bit unclear. I would interpret it
so, that the word "each" would refer to the word "combinations". Then
this text would in my opinion mean that e.g. the combination 
AH-ESP(transport) would have one SPI value, not one SPI value for AH
and one SPI for ESP(transport). Am I misinterpreting the text? Will
always all transforms have an SPI of their own?


	Kindly,

	Bengt Sahlin

Follow-Ups:

Re: question about draft semantics

From: Stephen Kent <kent@bbn.com>

Re: question about draft semantics

From: Ran Atkinson <rja@inet.org>

Prev by Date: Re: Grouping SAs (was Re: How many algorithms per SA/Transform?)
Next by Date: Re: TO COMPRESS OR NOT TO CMPRS (please reply)
Prev by thread: To compress or not to compress.
Next by thread: Re: question about draft semantics
Index(es):
- Main
- Thread