IETF Logo Mail Archive

[IPsec] Labeled IPsec for charter

Tero Kivinen <kivinen@iki.fi> Tue, 06 February 2018 18:37 UTC

Return-Path: <kivinen@iki.fi>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D490E127077 for <ipsec@ietfa.amsl.com>; Tue, 6 Feb 2018 10:37:28 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.12
X-Spam-Level:
X-Spam-Status: No, score=-1.12 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_NEUTRAL=0.779, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CiSO4PiIoB46 for <ipsec@ietfa.amsl.com>; Tue, 6 Feb 2018 10:37:27 -0800 (PST)
Received: from mail.kivinen.iki.fi (fireball.acr.fi [212.16.101.130]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8B8F512741D for <ipsec@ietf.org>; Tue, 6 Feb 2018 10:37:27 -0800 (PST)
Received: from fireball.acr.fi (localhost [127.0.0.1]) by mail.kivinen.iki.fi (8.15.2/8.15.2) with ESMTPS id w16IbPIF002294 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Tue, 6 Feb 2018 20:37:25 +0200 (EET)
Received: (from kivinen@localhost) by fireball.acr.fi (8.15.2/8.14.8/Submit) id w16IbPxg016853; Tue, 6 Feb 2018 20:37:25 +0200 (EET)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Message-ID: <23161.62949.524062.825450@fireball.acr.fi>
Date: Tue, 06 Feb 2018 20:37:25 +0200
From: Tero Kivinen <kivinen@iki.fi>
To: Paul Wouters <paul@nohats.ca>
Cc: "ipsec@ietf.org WG" <ipsec@ietf.org>
In-Reply-To: <alpine.LRH.2.21.1711120946410.30969@bofh.nohats.ca>
References: <alpine.LRH.2.21.1711120946410.30969@bofh.nohats.ca>
X-Mailer: VM 8.2.0b under 25.1.1 (x86_64--netbsd)
X-Edit-Time: 1 min
X-Total-Time: 0 min
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/gJ2C4viQ_J3bZE4EairQFpxI2Hg>
Subject: [IPsec] Labeled IPsec for charter
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 06 Feb 2018 18:37:29 -0000

Paul Wouters writes:
> 
> Some systems support security labels (aka security context) as one of the
> selectors of the SPD. This label needs to be part of the IKE negotiation
> for the IPsec SA. non-standard implementations exist for IKEv1 (formerly
> abusing IPSEC Security Association Attribute 10, now using private space
> IPSEC Security Association Attribute 32001). The work is to standarize
> this for IKEv2.

This charter item has also had no discussion since IETF, so I assume
there is not much support for this either?
-- 
kivinen@iki.fi

v2.23.0 | Report a Bug | By Email