[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SOI QUESTION: 4.1 Control channel vs. separate protocols

To: "Theodore Ts'o" <tytso@mit.edu>
Subject: Re: SOI QUESTION: 4.1 Control channel vs. separate protocols
From: Stephen Kent <kent@bbn.com>
Date: Tue, 25 Jun 2002 10:32:35 -0400
Cc: ipsec@lists.tislabs.com
In-Reply-To: <E17Mqas-0004fv-00@think.thunk.org>
References: <E17Mqas-0004fv-00@think.thunk.org>
Sender: owner-ipsec@lists.tislabs.com

At 9:42 AM -0400 6/25/02, Theodore Ts'o wrote:
>Notes from the chair:
>
>This question basically introduces the various questions raised by
>section 4 of the soi-features document, which goes to one of the biggest
>differences to the JFK and IKEv2 approach.
>
>
>4. One or two phases
>
>4.1 Control channel vs. separate protocols
>
>4.1.A) [Meta question, that will be answered by the other questions in
>section 4.]  Does SOI need a control channel for SA management?  Or is
>it acceptable to piggy back SA management as a part of other parts of
>the SOI protocol?

having a separate control channel allows one to better amortize the 
cost of keep alive and other site-to-site messages between two sites 
that have multiple SAs. So, to the extent that one believes in the 
likelihood of multiple SAs between sites, having a long-lived control 
channel is preferable, irrespective of the efficiency of the protocol 
in establishing new SAs.

Steve

References:
- SOI QUESTION: 4.1 Control channel vs. separate protocols
  - From: "Theodore Ts'o" <tytso@mit.edu>

Prev by Date: Re: SOI QUESTION: 4.2 Creating multiple SAs for a single pair ofentities
Next by Date: RE: SOI QUESTION: 3.4 Preferred ID for responder
Prev by thread: SOI QUESTION: 4.1 Control channel vs. separate protocols
Next by thread: RE: SOI QUESTION: 4.1 Control channel vs. separate protocols
Index(es):
- Date
- Thread