[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Protocol Action: 'Group Security Policy Token v1' to Proposed Standard

To: IETF-Announce <ietf-announce at ietf.org>
Subject: Protocol Action: 'Group Security Policy Token v1' to Proposed Standard
From: The IESG <iesg-secretary at ietf.org>
Date: Thu, 26 Jan 2006 12:25:08 -0500
Cc: msec chair <canetti at watson.ibm.com>, msec mailing list <msec at securemulticast.org>, Internet Architecture Board <iab at iab.org>, msec chair <ldondeti at qualcomm.com>, RFC Editor <rfc-editor at rfc-editor.org>
List-help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-id: ietf-announce.ietf.org
List-post: <mailto:ietf-announce@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
Sender: ietf-announce-bounces at ietf.org

The IESG has approved the following document:

- 'Group Security Policy Token v1 '
   <draft-ietf-msec-policy-token-sec-06.txt> as a Proposed Standard

This document is the product of the Multicast Security Working Group. 

The IESG contact persons are Russ Housley and Sam Hartman.

A URL of this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-ietf-msec-policy-token-sec-06.txt

Technical Summary

  MSEC recognizes three major aspects to multicast and group security:
  key management, source authentication and group policy.  The Group
  Security Policy Token (GSPT) is a structure used to specify the
  security policy and configurable parameters for a secure multicast
  group.  In the unicast case, point-to-point security association
  parameters are negotiated, but in groups the group owner specifies the
  policy unilaterally via, for instance, a GSPT.  Some of the attributes
  within a GSPT include group membership policy, rekeying policy, and
  data security policy.

  A key management protocol such as GSAKMP (or GDOI), TESLA, and the
  GSPT comprise a complete group security solution.

Working Group Summary

  The GSPT is a generic structure that can be used with any key
  management system.  GSAKMP uses it, whereas GDOI uses SA proposal and
  transform payloads similar to those in IKE for a similar purpose;
  however, the GSPT can also be used with GDOI.

  GSPT is a product of the MSEC WG.  There was no significant opposition
  to GSPT as a work item or to its structure.  There was healthy debate
  on the nuts and bolts of the specification.

Protocol Quality

  There are at least two implementations: one by SPARTA and another by
  IdentAware.  Both implementations use GSAKMP as the key management
  protocol.  The policy token itself has been reviewed closely by the
  implementors and the MSEC WG.

  This document was reviewed by Russ Housley for the IESG.


_______________________________________________
IETF-Announce mailing list
IETF-Announce at ietf.org
https://www1.ietf.org/mailman/listinfo/ietf-announce

Prev by Date: Last Call: 'IMAP Extension for Conditional STORE operation' to Proposed Standard
Next by Date: Internet-Drafts Submission Cutoff Dates for the 65th IETF Meeting in Dallas, TX, USA
Previous by thread: Last Call: 'IMAP Extension for Conditional STORE operation' to Proposed Standard
Next by thread: Internet-Drafts Submission Cutoff Dates for the 65th IETF Meeting in Dallas, TX, USA
Index(es):
- Date
- Thread