[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: draft-ietf-ipsp-ipsec-apireq-00 comments

To: "Joel N. Weber II" <ietf-ipsp@xxxxxxxxxxxxx>
Subject: Re: draft-ietf-ipsp-ipsec-apireq-00 comments
From: Michael Richardson <mcr@xxxxxxxxxxxxxxxxxxxxxx>
Date: Sat, 21 Jun 2003 11:10:12 -0400
Cc: ipsec-policy@xxxxxxxx
In-reply-to: Your message of "Fri, 20 Jun 2003 15:18:58 EDT." <>
List-archive: <http://www.vpnc.org/ipsec-policy/mail-archive/>
List-id: <ipsec-policy.vpnc.org>
List-unsubscribe: <mailto:ipsec-policy-request@vpnc.org?body=unsubscribe>
Sender: owner-ipsec-policy@xxxxxxxxxxxxx


>>>>> "Joel" == Joel N Weber <ietf-ipsp@xxxxxxxxxxxxx> writes:
    Joel> session_id); this implies that there may be value to having an IPsec
    Joel> API provide a mechanism by which an application can supply key
    Joel> material.  Under ``Non-Goals and Bad Ideas'', it's unclear whether
    Joel> the 
    Joel> ``Exposure of Keys'' section is trying to prohibit applications
    Joel> contributing key material in this fashion, or not.

  PF_KEY already permits an application to do that.
  That's why it is a non-goal. The problem is already solved.

]       ON HUMILITY: to err is human. To moo, bovine.           |  firewalls  [
]   Michael Richardson, Sandelman Software Works, Ottawa, ON    |net architect[
] mcr@xxxxxxxxxxxxxxxxxxxxxx http://www.sandelman.ottawa.on.ca/ |device driver[
] panic("Just another Debian GNU/Linux using, kernel hacking, security guy"); [

References:
- draft-ietf-ipsp-ipsec-apireq-00 comments
  - From: Joel N. Weber II

Prev by Date: Re: draft-ietf-ipsp-ipsec-apireq-00 comments
Next by Date: IKEv2 selectors for IPsec?
Previous by thread: Re: draft-ietf-ipsp-ipsec-apireq-00 comments
Next by thread: Re: draft-ietf-ipsp-ipsec-apireq-00 comments
Index(es):
- Date
- Thread