Re: [Pana] status of wg documents

To: <Basavaraj.Patil at nokia.com>
Subject: Re: [Pana] status of wg documents
From: "Glen Zorn" <gwz at net-zen.net>
Date: Tue, 9 Jun 2009 10:59:23 +0700
Cc: pana at ietf.org
Delivered-to: pana at core3.amsl.com
In-reply-to: <C652EAC4.29D83%basavaraj.patil at nokia.com>
List-archive: <http://www.ietf.org/mail-archive/web/pana>
List-help: <mailto:pana-request@ietf.org?subject=help>
List-id: Protocol for carrying Authentication for Network Access <pana.ietf.org>
List-post: <mailto:pana@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/pana>, <mailto:pana-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/pana>, <mailto:pana-request@ietf.org?subject=unsubscribe>
Organization: Network Zen
References: <00ab01c9e65c$66756880$33603980$ at net> <C652EAC4.29D83%basavaraj.patil at nokia.com>
Thread-index: AcnkPXsChgXHf8IpS2W7KPy6mUW1YwBuMoITABlE+qAAiOUQcgANtUOQ

Basavaraj.Patil at nokia.com [mailto:Basavaraj.Patil at nokia.com] writes:

...

> As I have said in an earlier email, I do not see IPsec essentially
> being
> used as a means to secure the access link (between the PaC and EP).
> Either
> the link technology itself has its own security mechanism or the client
> simply uses IPsec VPNs if security is desired. 

Fair enough, though you leave out what is by far the most popular option (in
the absence of a standard): none.  However, I'm much more interested in the
security of the PAA-EP link.  RFC 5191 says that 

   The protocol exchange between the PAA and EP for provisioning authorized
PaC information on the EP must be protected for authentication, integrity,
and replay protection.

but I can't find anything in any document that says how to do this.  What am
I missing?

...

Follow-Ups:
- Re: [Pana] status of wg documents
  - From: Basavaraj.Patil

References:
- Re: [Pana] status of wg documents
  - From: Glen Zorn
- Re: [Pana] status of wg documents
  - From: Basavaraj.Patil

Prev by Date: Re: [Pana] status of wg documents
Next by Date: Re: [Pana] status of wg documents
Previous by thread: Re: [Pana] status of wg documents
Next by thread: Re: [Pana] status of wg documents
Index(es):
- Date
- Thread

Re: [Pana] status of wg documents

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.