siesta -- SessIon layEr SecuriTy Approach discussion list.


About siesta
English (USA)

The present end-to-end application security context is tightly coupled with the underlying communication context. This is problematic for at least three reasons. First, it is not flexible: when the underlying communication context changes, the application security context must change, too. Second, in certain applications, the overhead associated with such coupling is prohivitively expensive over constrained networks (such as sensor- or cellular networks). Third, and probably most important, an attack on the communication context immediately effects the application security.

This work aims at a solution to the above problems, with the objective of providing security context for an application, which is fully decoupled from the underlying communication methodology and is thus resilient to attacks on the communication context. With that, the security context may need to have basic understanding of the communication context to be efficient with datagram overhead and communication synchronization issues (such as sequence window management), and so it is desirable that solution supports the "hooks" into the underlying protocol.

To see the collection of prior postings to the list, visit the siesta Archives.

Using siesta
To post a message to all the list members, send email to

You can subscribe to the list, or change your existing subscription, in the sections below.

Subscribing to siesta

Subscribe to siesta by filling out the following form. You will be sent email requesting confirmation, to prevent others from gratuitously subscribing you. This is a private list, which means that the list of members is not available to non-members.

    Your email address:  
    Your name (optional):  
    You may enter a privacy password below. This provides only mild security, but should prevent others from messing with your subscription. Do not use a valuable password as it will occasionally be emailed back to you in cleartext.

    If you choose not to enter a password, one will be automatically generated for you, and it will be sent to you once you've confirmed your subscription. You can always request a mail-back of your password when you edit your personal options. Once a month, your password will be emailed to you as a reminder.
    Pick a password:  
    Reenter password to confirm:  
    Which language do you prefer to display your messages? English (USA)  
    Would you like to receive list mail batched in a daily digest? No Yes
siesta Subscribers
(The subscribers list is only available to the list members.)

Enter your address and password to visit the subscribers list:

Address: Password:   

To unsubscribe from siesta, get a password reminder, or change your subscription options enter your subscription email address:

If you leave the field blank, you will be prompted for your email address

siesta list run by siesta-owner at
siesta administrative interface (requires authorization)
Overview of all mailing lists

Delivered by Mailman
version 2.1.39
Python Powered GNU's Not Unix