[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Disposition of the IKEv2 ID_KEY_ID type

To: "Theodore Ts'o" <tytso@xxxxxxx>, ipsec@xxxxxxxxxxxxxxxxx
Subject: Re: Disposition of the IKEv2 ID_KEY_ID type
From: Paul Hoffman / VPNC <paul.hoffman@xxxxxxxx>
Date: Wed, 7 Apr 2004 07:52:22 -0700
In-reply-to: <>
References: <>
Sender: owner-ipsec@xxxxxxxxxxxxxxxxx

At 2:12 PM -0400 4/6/04, Theodore Ts'o wrote:

It seems one
simple way of addressing this situation is to simply to revert to the
IKEv1 wording, which would simply involve deleting the phrase "to pass
an account name or" from the specification.

Yes. Code re-use from IKEv1 is good.

If we were to do this, which would make the use of ID_KEY_ID
unambiguous, it raises the next question: should we create a new
identity type that contains an account name, with some kind of tight
specification about the use of UTF-8 or whatever.

No. There has been no demand for it. If there is such demand, someone can later register a new ID type. We can then also test the new versioning mechanism. :-)

--Paul Hoffman, Director
--VPN Consortium

References:
- Disposition of the IKEv2 ID_KEY_ID type
  - From: Theodore Ts'o

Prev by Date: Re: CONSENSUS TEST: Fragmentation handling
Next by Date: Re: CONSENSUS TEST: Fragmentation handling
Previous by thread: Re: Disposition of the IKEv2 ID_KEY_ID type
Next by thread: Re: Disposition of the IKEv2 ID_KEY_ID type
Index(es):
- Date
- Thread