RE: What does SIT_IDENTITY_ONLY mean?

["Andrew Krywaniuk" <andrew.krywaniuk@alcatel.com>]

During the Son of IKE discussion at the last bakeoff, several people
commented that the situation is not particularly useful and it could be
removed or simply ignored.

Andrew
-------------------------------------------
Upon closer inspection, I saw that the line
dividing black from white was in fact a shade
of grey. As I drew nearer still, the grey area
grew larger. And then I was enlightened.


> -----Original Message-----
> From: owner-ipsec@lists.tislabs.com
> [mailto:owner-ipsec@lists.tislabs.com]On Behalf Of Mark Baugher
> Sent: Monday, July 23, 2001 3:53 PM
> To: Radia Perlman - Boston Center for Networking
> Cc: ipsec@lists.tislabs.com
> Subject: Re: What does SIT_IDENTITY_ONLY mean?
>
>
> We left the Situation zero in GDOI since there are no IANA
> numbers for it
> that I could find.  I interpreted Situation as a refinement
> of the DOI for
> labelled
> security or potentially other purposes by a peer that can understand
> Situation-specific
> encodings of the SA payload that follows it.  I would
> appreciate seeing more
> specification regarding its use.
>
> Mark
> At 10:46 PM 7/18/2001 -0400, Radia Perlman - Boston Center
> for Networking
> wrote:
> >The "situation" for IKE's DOI as defined in RFC 2407 has 3 bits
> >defined. The bottom one, SIT_IDENTITY_ONLY seems to be defined
> >as indicating that there's an identity payload.
> >
> >Given that you can tell if there's an identity payload, why do you
> >need a bit to tell you that there is one?
> >
> >Anyway, I'm confused. What is that bit for?
> >
> >Thanks,
> >
> >Radia
>
>

---

References:

• Re: What does SIT_IDENTITY_ONLY mean?
• From: Mark Baugher <mbaugher@cisco.com>

---

• Prev by Date: Re: IPSec Standard - No Flow Control?
• Next by Date: Re: IPSec Standard - No Flow Control?
• Prev by thread: Re: What does SIT_IDENTITY_ONLY mean?
• Next by thread: I-D ACTION:draft-ietf-ipsec-isakmp-gss-auth-07.txt
• Index(es):
  • Main
  • Thread