[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Dangling phase 2 SAs (was RE: issues from the bakeoff)

To: "Heyman, Michael" <Michael_Heyman@nai.com>
Subject: RE: Dangling phase 2 SAs (was RE: issues from the bakeoff)
From: Stephen Kent <kent@bbn.com>
Date: Fri, 18 Jun 1999 16:33:40 -0400
Cc: ipsec@lists.tislabs.com
In-Reply-To: <DBF2F9C6F6BAD211BB1B00A0C99D970204972E@MD-EXCHANGE2>
Sender: owner-ipsec@lists.tislabs.com

Michael,

The generic reason for revoking a cert, is that some value in the attribute
set in the cert is not longer valid.  In the case of compromise, the public
key is no longer consoidered to be accurately bound to the subject name.
In general, an access control decision might be based on one of the other
attributes that might have been the reason for the revocation, hence it is
appropriate to consider killing an SA when a cert has been revoked that was
used to authenticate a party to the SA.  It may be overkill, but there are
times when it wouldbe appropriate.  Thus a safe reponse, in general, would
be to kill off the SA.

Steve

References:

RE: Dangling phase 2 SAs (was RE: issues from the bakeoff)

From: "Heyman, Michael" <Michael_Heyman@nai.com>

Prev by Date: RE: Dangling SA Summary
Next by Date: RE: I-D ACTION:draft-ietf-ipsec-notifymsg-00.txt
Prev by thread: RE: Dangling phase 2 SAs (was RE: issues from the bakeoff)
Next by thread: RE: Dangling phase 2 SAs (was RE: issues from the bakeoff)
Index(es):
- Main
- Thread