[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [MSEC] Re: new version of ESP ID

To: H.Cruickshank@eim.surrey.ac.uk, ipsec@lists.tislabs.com, msec@securemulticast.org
Subject: Re: [MSEC] Re: new version of ESP ID
From: Ran Canetti <canetti@watson.ibm.com>
Date: Mon, 29 Jul 2002 14:26:18 -0400
Sender: owner-ipsec@lists.tislabs.com

Haitham,

Regarding the distributed controller issue. MSEC has set up for itself to first
address the single controller setting, with the ideas that:
1) the single controller setting is complex and relevant enough 
2) there can be many alternative ways to distribute the functionality of the
controller. In the most part, this can be done in a "transparent" way
as far as the group members are concerned. Furthermore, there seems to be 
less urgent need for standardization there.

I suggest to limit further discussion of this issue to the msec list,
no need to bother ipsec with this.

Ran


> From: Haitham Cruickshank <H.Cruickshank@eim.surrey.ac.uk>
> 
> ...
> 
> 1. Scalability:  For very large groups (thousands of members) or very dynamic
> multicast groups (frequent join and leaves), having a single group controller
> might not scale well specially for re-keying problem (changing keys when
> members join or leave).  If this problems is true, then we need to have a
> distributed group controller/controllers and this brings new problems which has
> been discussed in some previous emails.
> 
> ...

Prev by Date: RE: draft-ietf-ipsec-ciph-aes-ctr-00.txt
Next by Date: RE: Two AES encryption modes?
Prev by thread: Re: [MSEC] Re: new version of ESP ID
Next by thread: question about re-keys
Index(es):
- Date
- Thread