Re: [dtn-security] Header Encryption

"Sushil Chaudhari" <schaudhari@mzeal.com> Fri, 17 July 2009 18:59 UTC

Received: from mzeal.com (mzeal.com [199.237.228.71]) by maillists.intel-research.net (8.13.8/8.13.8) with ESMTP id n6HIx9Xl020609 for <dtn-security@maillists.intel-research.net>; Fri, 17 Jul 2009 11:59:09 -0700
Received: (qmail 12359 invoked by uid 25671); 17 Jul 2009 18:57:20 -0000
Message-ID: <20090717185720.12358.qmail@mzeal.com>
Content-Disposition: inline
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="US-ASCII"; format="flowed"
MIME-Version: 1.0
X-Mailer: MIME::Lite 3.0104 (F2.72; T1.15; A1.47; B3.01; Q3.01)
Date: Fri, 17 Jul 2009 18:57:20 +0000
From: Sushil Chaudhari <schaudhari@mzeal.com>
To: dtn-security@maillists.intel-research.net
Subject: Re: [dtn-security] Header Encryption
X-BeenThere: dtn-security@maillists.intel-research.net
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: DTN Security Discussion <dtn-security.maillists.intel-research.net>
List-Unsubscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=unsubscribe>
List-Archive: <http://maillists.intel-research.net/pipermail/dtn-security>
List-Post: <mailto:dtn-security@maillists.intel-research.net>
List-Help: <mailto:dtn-security-request@maillists.intel-research.net?subject=help>
List-Subscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=subscribe>
X-List-Received-Date: Fri, 17 Jul 2009 18:59:10 -0000

Hi,

We are using BSP and while observing bundles on Wireshark, the header seems to be unencrypted. Also as per draft-irtf-dtnrg-bundle-security-08, "every bundle must contain a primary block that contains the source and destination EID's that can not be encrypted"

My question is, 
1.Do we have some method for header encryption?
2.Does DTN2 can be used with IPSEC? if not do we need additional convergence layer for the support to IPSEC?

Thanks..