Security & Confidentiality PCC-PCE communication subject to "usual" security issues snooping not a significant issue might want to encrypt spoofing is very serious must offer strong authentication protocol is P2P so this is relatively easy DoS important because of 'centralized' nature of PCE PCE-PCE communication same as for PCC-PCE, but add confidentiality confidentiality (protection of domain topology information) use loose routes PCE encrypts ERO segments decrypt on entry to domain replace ERO segment with cookie entry point to domain consults local PCE using cookie to retrieve next ERO segment |