Re: Last Call: Security Architecture for the Internet Protocol to Proposed Standard

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Last Call: Security Architecture for the Internet Protocol to Proposed Standard

To: "Howard C. Berkowitz" <hcb at clark.net>
Subject: Re: Last Call: Security Architecture for the Internet Protocol to Proposed Standard
From: "C. Harald Koch" <chk at utcc.utoronto.ca>
Date: Tue, 31 Mar 1998 14:46:25 -0500
Cc: perry at piermont.com, ietf at ns.ietf.org
Delivery-date: Tue, 31 Mar 1998 14:57:44 -0500
In-reply-to: hcb's message of "Tue, 31 Mar 1998 14:07:09 -0500". <v0300780bb146a2d106bd@[142.154.136.3]>
References: Your message of "Tue, 31 Mar 1998 09:51:59 EST." <v03007807b1466a67057e@[142.154.136.3]> <v0300780bb146a2d106bd@[142.154.136.3]>

In message <v0300780bb146a2d106bd at [142.154.136.3]>, "Howard C. Berkowitz" writes:
> 
> Stating things more succinctly, I think the architecture document,
> specifically, does not either discuss proxy vs. end-to-end functions in the
> context of risk analysis, nor does it reference a document that does.
> There have been strong arguments about the interactions of IPsec and
> various proxy and proxy-like functions, including NAT, satellite spoofing,
> firewalls, etc.  Perhaps some guidance from the IESG or IAB is in order,
> clarifying how the IETF will build consensus on the interaction of these
> security and infrastructure technologies. Specific commentary on the effect
> of widespread IPsec deployment on the demand for globally routable IPv4
> space, under various scenarios of IPsec tunneling, should be considered.

None of these were in the Charter for the IPsec working group. This was
deliberate; they're hard problems.

Many of them are (or will be) in the Charter for the IPsecond working group,
and I'm sure we'd love to have you participate in those discussions.

There's precedent for splitting work like this, after all. We're up to RIPv2,
SNMPv3, and BGPv4 right now, after all.

-- 
Harald

Follow-Ups:
- Re: Last Call: Security Architecture for the Internet Protocol to Proposed Standard
  - From: Howard C. Berkowitz

References:
- Re: Last Call: Security Architecture for the Internet Protocol to Proposed Standard
  - From: Howard C. Berkowitz
- Re: Last Call: Security Architecture for the Internet Protocol to Proposed Standard
  - From: Howard C. Berkowitz

Prev by Date: Re: Last Call: Security Architecture for the Internet Protocol to Proposed Standard
Next by Date: Re: Last Call: Security Architecture for the Internet Protocol to Proposed Standard
Previous by thread: Re: Last Call: Security Architecture for the Internet Protocol to Proposed Standard
Next by thread: Re: Last Call: Security Architecture for the Internet Protocol to Proposed Standard
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.

Re: Last Call: Security Architecture for the Internet Protocol to Proposed Standard

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.