[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: l2tp as ipsra solution

To: Moshe Litvin <moshe@xxxxxxxxxxxxxx>
Subject: Re: l2tp as ipsra solution
From: "W. Mark Townsley" <townsley@xxxxxxxxx>
Date: Thu, 15 Jun 2000 10:39:20 -0400
Cc: gwz@xxxxxxxxx, "'Sara Bitan'" <sarab@xxxxxxxxxxxx>, "'IPSRA list'" <ietf-ipsra@xxxxxxxx>
List-archive: <http://www.vpnc.org/ietf-ipsra/mail-archive/>
List-id: <ietf-ipsra.vpnc.org>
List-unsubscribe: <mailto:ietf-ipsra-request@vpnc.org?body=unsubscribe>
Organization: cisco Systems
References: <>
Sender: owner-ietf-ipsra@xxxxxxxxxxxxx

Moshe Litvin wrote:

[text elided]

> I think that the machine
> should be authenticated separately from the user is extremely rare.

I strongly disagree. 

The most obvious case where this is important is use of public terminals
(kiosks and such) for access. There may even be levels of trust within
this group. For instance, you may place greater trust in a machine
located in the business center of a five star hotel for which you have a
contractural agreement with vs. one in a shopping mall or street corner.
The identity of the machine itself here is quite relevant.

- Mark

References:
- RE: l2tp as ipsra solution
  - From: Moshe Litvin

Prev by Date: RE: l2tp as ipsra solution
Next by Date: RE: l2tp as ipsra solution
Previous by thread: RE: l2tp as ipsra solution
Next by thread: RE: l2tp as ipsra solution
Index(es):
- Date
- Thread