[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Deprecation of AH header from the IPSEC tool kit

To: OSPF@DISCUSS.MICROSOFT.COM, ipsec@lists.tislabs.com, isis-wg@juniper.net
Subject: Re: Deprecation of AH header from the IPSEC tool kit
From: Radia Perlman <Radia.Perlman@East.Sun.COM>
Date: Thu, 15 Jun 2000 22:32:53 -0700 (PDT)
Reply-To: Radia Perlman <Radia.Perlman@East.Sun.COM>
Sender: owner-ipsec@lists.tislabs.com

Ran said:

>>	         A counter-example is the Source Routing header, which can
>>	be authenticated hop-by-hop with AH ...

How do you authenticate something hop-by-hop when the key is only
known end-to-end? Are you maybe assuming hop-by-hop IPSec tunnels between the
routers listed in the source route header?

Radia

Follow-Ups:

Re: [Isis-wg] Re: Deprecation of AH header from the IPSEC tool kit

From: RJ Atkinson <rja@inet.org>

Prev by Date: Re: Deprecation of AH header from the IPSEC tool kit
Next by Date: Re: Deprecation of AH header from the IPSEC tool kit
Prev by thread: RE: Deprecation of AH header from the IPSEC tool kit
Next by thread: Re: [Isis-wg] Re: Deprecation of AH header from the IPSEC tool kit
Index(es):
- Main
- Thread