[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: I-D ACTION:draft-lordello-ipsec-vpn-doi-00.txt
There are at least three products currently on the market that provide this
solution, and more are on the way...
Claudio Lordello wrote:
> Sorry for the earlier incomplete message. I must have hit some ctrl-whatever
> :-(
>
> Markku,
>
> Yes, the customer trusts the ISP the same way the customers today trust
> their FR, ATM link to their service provider.
>
> Well noted, the scenario described does not replace end-to-end security.
> However it does allow ISP's to provide not only leased-line replacement but
> also routing to their customers.
>
> Claudio.
>
> > -----Original Message-----
> > From: Markku Savela [SMTP:Markku.Savela@research.nokia.com]
> > Sent: Tuesday, August 22, 2000 8:24 AM
> > To: ipsec@lists.tislabs.com
> > Cc: claudio.lordello@innovation.siemens.ca
> > Subject: RE: I-D ACTION:draft-lordello-ipsec-vpn-doi-00.txt
> >
> > > Title : VPN-ID-Enhanced IPSec-VPN DOI for ISAKMP
> > > Author(s) : C. Lordello, U. Neustadter
> > > Filename : draft-lordello-ipsec-vpn-doi-00.txt
> >
> > Just being in picky mood...
> >
> > The security considerations for this should probably include the obvious
> > note, that in this solution the customer implicitly trusts their ISP (ISP
> > can read and monitor everything in clear). So, I wonder what type of
> > "customer" actually would need this thing?
begin:vcard
n:Fox;Daniel
tel;work:978-206-0405
x-mozilla-html:FALSE
url:http://www.ennovatenetworks.com
org:Ennovate Networks
adr:;;60 Codman Hill Road;Boxborough;MA;01719;USA
version:2.1
email;internet:dfox@ennovatenetworks.com
title:Principal Software Engineer
fn:Daniel Fox
end:vcard
References: