[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: security policy discovery

To: Charlie_Kaufman@notesdev.ibm.com
Subject: Re: security policy discovery
From: "The Purple Streak, Hilarie Orman" <ho@alum.mit.edu>
Date: Thu, 12 Sep 2002 17:29:54 -0600
Cc: mutaf@docomolabs-usa.com, ipsec@lists.tislabs.com
In-reply-to: Yourmessage <OF8CB1BC0D.1DFC8870-ON85256C32.007040EB-85256C32.007196DC@iris.com>
Sender: owner-ipsec@lists.tislabs.com

At one time there was a vision of the future in which the majority of
network traffic would have cryptographic protection, so the default
behavior would be to negotiate IPSec SA's, falling back to plaintext,
perhaps, if there was no solution.

IPSP has been trying to address security policy discovery, but not as
an automatic side effect of a cleartext communication attempt.  That's
because in the Alice-Bob case, Bob might never see Alice's unprotected
packet - it would be caught and discarded by earlier protection
devices in Bob's network.  IPSP tries to address the problem of
discovering the security gateways trying to find a negotiable set of
SA's that will cover the Alice/Bob traffic, but only in the case that
Alice or Bob has already made a decison to setup IPSec.

If in response to a plaintext packet something emanating from the
Bobside declares "Alice-Bob requires IPSec", then Alice can take that
as a signal initiate some key exchange/IPsec negotiation protcol.
But, given that Alice has expressed a willingness to communicate
without crypto protection, one might suspect her committment to
confidentiality to be half-hearted.

Hilarie

References:
- Re: security policy discovery
  - From: Charlie_Kaufman@notesdev.ibm.com

Prev by Date: Re: security policy discovery
Next by Date: RE: security policy discovery
Prev by thread: Re: security policy discovery
Next by thread: RE: security policy discovery
Index(es):
- Date
- Thread