[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Effective policy enforcement
In message <199704100013.TAA00333@morden.sandelman.ottawa.on.ca>, Michael
Richa
rdson writes:
> This requires an extensive API.
Well, i would think that the important attributes are whether the link
is:
a) encrypted
b) authenticated
c) tunneled (ie the options are protected)
d) compressed (?)
These are addressed (at least to some extend) in Dan McDonald's draft.
> I'd like to see, as a first step, a work new ipsec wg work item: we
>should be writing drafts to describe SPKI auth/tag fields. I suggest
>that this be scheduled for post-Proposed Status for the existing drafts.
I agree. I wouldn't even mind working towards it.
-Angelos