[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: The CR payload still

To: Charlie_Kaufman@notesdev.ibm.com
Subject: Re: The CR payload still
From: Francis Dupont <Francis.Dupont@enst-bretagne.fr>
Date: Fri, 07 Mar 2003 15:11:21 +0100
cc: Brian Korver <briank@briank.com>, ipsec@lists.tislabs.com, owner-ipsec@lists.tislabs.com
In-reply-to: Your message of Tue, 04 Mar 2003 22:28:02 EST. <OFA5F7B56E.46AADFAC-ON85256CE0.0011C45C-85256CE0.00130BE0@notesdev.ibm.com>
Sender: owner-ipsec@lists.tislabs.com

 In your previous mail you wrote:

   If someone has a use for requesting no certificates, I think this is a fine
   way to encode it. But I'm reluctant to add a feature unless someone thinks
   they need it.
   
=> I know cases where this (a way to request no certificate) is very useful
(i.e., it avoids fragmentation problems too) in the mobility context.
Today it is done by specific configuration but a standardized mechanism
is far better.

Thanks

Francis.Dupont@enst-bretagne.fr

References:
- Re: The CR payload still
  - From: Charlie_Kaufman@notesdev.ibm.com

Prev by Date: I-D ACTION:draft-ietf-ipsec-pki-profile-02.txt
Next by Date: I-D ACTION:draft-ietf-ipsec-nat-reqts-04.txt
Prev by thread: Re: The CR payload still
Next by thread: Re: Configuration portion of OPEN ISSUES...
Index(es):
- Date
- Thread