[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Is TS agreement necessary?

To: "Stephen Kent" <kent@bbn.com>, "Mike Ditto" <ford@incog.com>
Subject: RE: Is TS agreement necessary?
From: "Rajesh Mohan" <Rajesh.Mohan@nexsi.com>
Date: Wed, 3 Apr 2002 17:13:30 -0800
Cc: <ipsec@lists.tislabs.com>
Sender: owner-ipsec@lists.tislabs.com
Thread-Index: AcHbc+8sOdwTUzjTSkKp2TKlGlA6PgAAQhWg
Thread-Topic: Is TS agreement necessary?

> 
> we designed IPsec to not have to trust peers to do the right thing. 
> we adopted a defensive posture consistent with the security principle 
> of least privilege.  I'm not sure how to interpret your comments 
> relative to this well known security principle.
> 

I think we are imposing the trust model on the end users here. It should be configurable. If the administrators chooses to trust the peer, then there should be a way to configure it.

If we do not allow, people will workaround it. For example, if it is required, people will do IP in IP with the gateways as selectors.


-Rajesh M

Follow-Ups:
- RE: Is TS agreement necessary?
  - From: Stephen Kent <kent@bbn.com>

Prev by Date: RE: Is TS agreement necessary?
Next by Date: Re: FW: Dead peer detection
Prev by thread: RE: Is TS agreement necessary?
Next by thread: RE: Is TS agreement necessary?
Index(es):
- Date
- Thread