[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: I-D ACTION:draft-lordello-ipsec-vpn-doi-00.txt
Sorry for the earlier incomplete message. I must have hit some ctrl-whatever
Yes, the customer trusts the ISP the same way the customers today trust
their FR, ATM link to their service provider.
Well noted, the scenario described does not replace end-to-end security.
However it does allow ISP's to provide not only leased-line replacement but
also routing to their customers.
> -----Original Message-----
> From: Markku Savela [SMTP:Markku.Savela@research.nokia.com]
> Sent: Tuesday, August 22, 2000 8:24 AM
> To: email@example.com
> Cc: firstname.lastname@example.org
> Subject: RE: I-D ACTION:draft-lordello-ipsec-vpn-doi-00.txt
> > Title : VPN-ID-Enhanced IPSec-VPN DOI for ISAKMP
> > Author(s) : C. Lordello, U. Neustadter
> > Filename : draft-lordello-ipsec-vpn-doi-00.txt
> Just being in picky mood...
> The security considerations for this should probably include the obvious
> note, that in this solution the customer implicitly trusts their ISP (ISP
> can read and monitor everything in clear). So, I wonder what type of
> "customer" actually would need this thing?