[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [btns] Protocol Action: 'IPsec Channels: Connection Latching' to Proposed Standard

From: "Laganier, Julien" <julienl at qualcomm.com>
To: btns mailing list <btns at ietf.org>
Date: Mon, 17 Aug 2009 11:27:35 -0700
In-reply-to: <20090817181833.733E73A6774 at core3.amsl.com>
References: <20090817181833.733E73A6774 at core3.amsl.com>

Thanks to everybody who helped made this happen!

--julien

> -----Original Message-----
> 
> The IESG has approved the following document:
> 
> - 'IPsec Channels: Connection Latching '
>    <draft-ietf-btns-connection-latching-11.txt> as a Proposed Standard
> 
> 
> This document is the product of the Better-Than-Nothing Security
> Working Group.
> 
> The IESG contact persons are Tim Polk and Pasi Eronen.
> 
> A URL of this Internet-Draft is:
> http://www.ietf.org/internet-drafts/draft-ietf-btns-connection-
> latching-11.txt
> 
> Technical Summary
> 
>   This document specifies, abstractly, how to interface applications
>   and transport protocols with IPsec so as to create "channels" by
>   latching "connections" (packet flows) to certain IPsec Security
>   Association (SA) parameters for the lifetime of the connections.
>   Connection latching is layered on top of IPsec and does not modify
>   the underlying IPsec architecture.
> 
>   Connection latching can be used to protect applications against
>   accidentally exposing live packet flows to unintended peers, whether
>   as the result of a reconfiguration of IPsec or as the result of using
>   weak peer identity to peer address associations.  Weak association of
>   peer ID and peer addresses is at the core of Better Than Nothing
>   Security (BTNS), thus connection latching can add a significant
>   measure of protection to BTNS IPsec nodes.
> 
>   Finally, the availability of IPsec channels will make it possible to
>   use channel binding to IPsec channels.
> 
> Working Group Summary
> 
>    This document is a product of the Better Than Nothing Security
> (BTNS)
>    working group.
> 
> Document Quality
> 
>    A version of Connection Latching is implemented in OpenSolaris. The
>   document has been reviewed by Daniel McDonald who worked on the
>   Connection Latching implementation in OpenSolaris.
> 
> Personnel
> 
>    The Document Shepherd for this document is Julien Laganier (BTNS
>    WG co-chair).  The Responsible Area Director is Tim Polk (Security
>    Area Director).
> 
> _______________________________________________
> btns mailing list
> btns at ietf.org
> https://www.ietf.org/mailman/listinfo/btns

References:
- [btns] Protocol Action: 'IPsec Channels: Connection Latching' to Proposed Standard
  - From: The IESG

Prev by Date: [btns] Protocol Action: 'IPsec Channels: Connection Latching' to Proposed Standard
Next by Date: Re: [btns] Protocol Action: 'IPsec Channels: Connection Latching' to Proposed Standard
Previous by thread: [btns] Protocol Action: 'IPsec Channels: Connection Latching' to Proposed Standard
Next by thread: Re: [btns] Protocol Action: 'IPsec Channels: Connection Latching' to Proposed Standard
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.