Re: [dtn-security] Header Encryption

"Sushil Chaudhari" <schaudhari@mzeal.com> Fri, 17 July 2009 15:53 UTC

Received: from mzeal.com (mzeal.com [199.237.228.71]) by maillists.intel-research.net (8.13.8/8.13.8) with ESMTP id n6HFrCPq012259 for <dtn-security@maillists.intel-research.net>; Fri, 17 Jul 2009 08:53:13 -0700
Received: (qmail 7460 invoked by uid 25671); 17 Jul 2009 15:51:25 -0000
Message-ID: <20090717155125.7458.qmail@mzeal.com>
Content-Disposition: inline
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="US-ASCII"; format="flowed"
MIME-Version: 1.0
X-Mailer: MIME::Lite 3.0104 (F2.72; T1.15; A1.47; B3.01; Q3.01)
Date: Fri, 17 Jul 2009 15:51:25 +0000
From: "Sushil Chaudhari" <schaudhari@mzeal.com>
To: dtn-security@maillists.intel-research.net
Subject: Re: [dtn-security] Header Encryption
X-BeenThere: dtn-security@maillists.intel-research.net
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: DTN Security Discussion <dtn-security.maillists.intel-research.net>
List-Unsubscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=unsubscribe>
List-Archive: <http://maillists.intel-research.net/pipermail/dtn-security>
List-Post: <mailto:dtn-security@maillists.intel-research.net>
List-Help: <mailto:dtn-security-request@maillists.intel-research.net?subject=help>
List-Subscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=subscribe>
X-List-Received-Date: Fri, 17 Jul 2009 15:53:13 -0000

Hi,

We are using BSP and while observing bundles on Wireshark, the header seems to be unencrypted. Also as per draft-irtf-dtnrg-bundle-security-08, "every bundle must contain a primary block that contains the source and destination EID's that can not be encrypted"

My question is, 
1.Do we have some method for header encryption?
2.Does DTN2 can be used with IPSEC? if not do we need additional convergence layer for the support to IPSEC?

Thanks..