[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [saag] Re:

To: "Davenport Michael" <davenport_michael@bah.com>
Subject: Re: [saag] Re:
From: "Prof. Ahmed Bin Abbas Ahmed Ali Adas" <alaadas@kaau.edu.sa>
Date: Thu, 30 May 2002 16:45:36 +0300
Cc: <ipsec@lists.tislabs.com>
References: <NFBBKDFGMKODILIOLBDHAEIBDBAA.davenport_michael@bah.com>
Sender: owner-ipsec@lists.tislabs.com

Mike

I believe most big vendors are looking at it right now, see

http://www.omg.org

Ahmed


----- Original Message -----
From: "Davenport Michael" <davenport_michael@bah.com>
To: "Prof. Ahmed Bin Abbas Ahmed Ali Adas" <alaadas@kaau.edu.sa>
Sent: Thursday, May 30, 2002 4:16 PM
Subject: RE: [saag] Re:


> Ahmed:
>
> I never heard of COBRA routers.  Do you have info or a link I can go to?
> Sounds interesting....
>
> v/r,
>
> Mike
>
> -----Original Message-----
> From: owner-ipsec@lists.tislabs.com
> [mailto:owner-ipsec@lists.tislabs.com]On Behalf Of Prof. Ahmed Bin Abbas
> Ahmed Ali Adas
> Sent: Wednesday, May 29, 2002 5:45 PM
> To: Hannes Tschofenig; Melinda Shore
> Cc: IPsec; Security_Area_Advisory_Group
> Subject: Re: [saag] Re:
>
>
> Hi
>
> The best approach in my view is to use CORBA and CORBsec to deal with path
> messages, I believe if CORBA routers can be realized very soon, most of
your
> IPsec shortcomings will be resolved.
>
> Ahmed
> ----- Original Message -----
> From: "Melinda Shore" <mshore@cisco.com>
> To: "Hannes Tschofenig" <Hannes.Tschofenig@mchp.siemens.de>
> Cc: "IPsec" <ipsec@lists.tislabs.com>; "Security_Area_Advisory_Group"
> <saag@mit.edu>
> Sent: Wednesday, May 29, 2002 5:06 PM
> Subject: RE: [saag] Re:
>
>
> > At 03:59 PM 5/29/02 +0200, Hannes Tschofenig wrote:
> > >do you think that the hop-by-hop security in rsvp is a good or a bad
> thing?
> > >should there be more than what is currently provided?
> >
> > There needs to be more than what is currently provided,
> > but, as always, there's a big keying/cert problem, particularly
> > in a multi-"domain" environment.  I don't think the threat
> > environment is particularly well-understood (I've seen your
> > NSIS draft but haven't gone through it in detail).  Clearly
> > IPSec is not the right answer for Path messages, however,
> > because while the addressing is end-to-end the payload
> > contents do change as the packet transits participating
> > routers.
> >
> > Melinda
> >
>

Prev by Date: Re: addresses and IKEv2
Next by Date: Re: [saag] Re:
Prev by thread: RE: Secure QoS
Next by thread: RE: [saag] Re:
Index(es):
- Date
- Thread