Re: Specification of tunnel/transport attribute in IKEv2

["Prof. Ahmed Bin Abbas Ahmed Ali Adas" <alaadas@kaau.edu.sa>]

In protocol architecture, the policy making should be totally isolated from
the Key Agreement Protocols or Key Transport Protocols.

Ahmed


----- Original Message -----
From: "Henry Spencer" <henry@spsystems.net>
To: "Markku Savela" <msa@burp.tkv.asdf.org>
Cc: <andrew.krywaniuk@alcatel.com>; <ipsec@lists.tislabs.com>
Sent: Wednesday, May 15, 2002 3:34 AM
Subject: Re: Specification of tunnel/transport attribute in IKEv2


> On Sat, 11 May 2002, Markku Savela wrote:
> > If IKE negotiated only keys, these ordering issues would never have
> > surfaced.
>
> On the contrary:  they would have surfaced, in whatever other protocol
> was devised to handle the policy checking.
>
> Simply removing these issues from IKE does not make them go away.
>
>                                                           Henry Spencer
>                                                        henry@spsystems.net
>
>