[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: I-D ACTION:draft-lordello-ipsec-vpn-doi-00.txt

To: "'Markku Savela'" <Markku.Savela@research.nokia.com>
Subject: RE: I-D ACTION:draft-lordello-ipsec-vpn-doi-00.txt
From: Claudio Lordello <claudio.lordello@innovation.siemens.ca>
Date: Tue, 22 Aug 2000 09:35:52 -0400
Cc: "'.IPSec-IETF'" <ipsec@lists.tislabs.com>, Claudio Lordello <claudio.lordello@innovation.siemens.ca>
Sender: owner-ipsec@lists.tislabs.com


Sorry for the earlier incomplete message. I must have hit some ctrl-whatever
:-(

Markku,

Yes, the customer trusts the ISP the same way the customers today trust
their FR, ATM link to their service provider.

Well noted, the scenario described does not replace end-to-end security.
However it does allow ISP's to provide not only leased-line replacement but
also routing to their customers.

Claudio.



> -----Original Message-----
> From:	Markku Savela [SMTP:Markku.Savela@research.nokia.com]
> Sent:	Tuesday, August 22, 2000 8:24 AM
> To:	ipsec@lists.tislabs.com
> Cc:	claudio.lordello@innovation.siemens.ca
> Subject:	RE: I-D ACTION:draft-lordello-ipsec-vpn-doi-00.txt
> 
> > 	Title		: VPN-ID-Enhanced IPSec-VPN DOI for ISAKMP
> > 	Author(s)	: C. Lordello, U. Neustadter
> > 	Filename	: draft-lordello-ipsec-vpn-doi-00.txt
> 
> Just being in picky mood...
> 
> The security considerations for this should probably include the obvious
> note, that in this solution the customer implicitly trusts their ISP (ISP
> can read and monitor everything in clear). So, I wonder what type of
> "customer" actually would need this thing?

Follow-Ups:

Re: I-D ACTION:draft-lordello-ipsec-vpn-doi-00.txt

From: Daniel Fox <dfox@ennovatenetworks.com>

Prev by Date: RE: I-D ACTION:draft-lordello-ipsec-vpn-doi-00.txt
Next by Date: Re: High Availability and IPSec
Prev by thread: RE: I-D ACTION:draft-lordello-ipsec-vpn-doi-00.txt
Next by thread: Re: I-D ACTION:draft-lordello-ipsec-vpn-doi-00.txt
Index(es):
- Main
- Thread