It occurs to me, looking back on my notes from Chicago, that BBN is working on something very closely related to this discussion. If so, much (if not all) of this exchange could be a waste of time. Specifically, I'm referring to Luis Sanchez' presentation on 'Policy Based Security Management for IPSec'. Any comments?