IETF Logo Mail Archive

Re: [mif] draft-mglt-mif-security-requirements-01

Daniel Migault <mglt.ietf@gmail.com> Thu, 05 April 2012 14:29 UTC

Return-Path: <mglt.ietf@gmail.com>
X-Original-To: mif@ietfa.amsl.com
Delivered-To: mif@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 216FC21F8568 for <mif@ietfa.amsl.com>; Thu, 5 Apr 2012 07:29:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.598
X-Spam-Level:
X-Spam-Status: No, score=-3.598 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TB395-RVpHe0 for <mif@ietfa.amsl.com>; Thu, 5 Apr 2012 07:29:11 -0700 (PDT)
Received: from mail-iy0-f172.google.com (mail-iy0-f172.google.com [209.85.210.172]) by ietfa.amsl.com (Postfix) with ESMTP id 1B1CD21F8535 for <mif@ietf.org>; Thu, 5 Apr 2012 07:29:11 -0700 (PDT)
Received: by iazz13 with SMTP id z13so2251930iaz.31 for <mif@ietf.org>; Thu, 05 Apr 2012 07:29:10 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=oqlbVsw5+nrsiq83m/Q68hhQWV1kM+ehAD02Vjd+XUQ=; b=1D4jLKyI4H0Fibec9nLcvcgOtcKrTbS6jz4n/wsr9iPxLl8Of3HSTdPB0/rCUW5ew+ JDRPkWb9h1ZjnBHeu+p2JrN9/FC5kjtHU2nIRfH1a4+6G6H//dzZDhikoCFp68LDTahO h8V0s8d67OJeftABH7kHf0llLjvp0DJ3ljE13JUUI9FBdkW92putJzU3z2quT4ErV3Un f+pZuuEugdgC08ikzD6W2YoL4MuyNm7/qzEyCBABHiJCk+24XNEs5eNfkFcVNoYZdZtN y/gukFQStUBaJzYN0Qc45QUjKdu0HxVZIyfYKYm6LwBiKBR7nIHT/R8HBwbeKEdJM2Lf cezw==
MIME-Version: 1.0
Received: by 10.42.157.65 with SMTP id c1mr1762330icx.6.1333636150660; Thu, 05 Apr 2012 07:29:10 -0700 (PDT)
Received: by 10.231.170.138 with HTTP; Thu, 5 Apr 2012 07:29:10 -0700 (PDT)
In-Reply-To: <154773479ED2314980CB638A48FC4434893D3BCA@USNAVSXCHMBSA2.ndc.alcatel-lucent.com>
References: <154773479ED2314980CB638A48FC4434893D3BCA@USNAVSXCHMBSA2.ndc.alcatel-lucent.com>
Date: Thu, 05 Apr 2012 16:29:10 +0200
Message-ID: <CADZyTk=n8pBSuB1duJshmJXf=h-mPvapK3T_=PAtCwqMvOqLwg@mail.gmail.com>
From: Daniel Migault <mglt.ietf@gmail.com>
To: "Hampel, K Georg (K Georg)" <georg.hampel@alcatel-lucent.com>
Content-Type: multipart/alternative; boundary="90e6ba6e8d3a050cf904bcef5daa"
Cc: "mif@ietf.org" <mif@ietf.org>
Subject: Re: [mif] draft-mglt-mif-security-requirements-01
X-BeenThere: mif@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Multiple Interface Discussion List <mif.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mif>, <mailto:mif-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/mif>
List-Post: <mailto:mif@ietf.org>
List-Help: <mailto:mif-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mif>, <mailto:mif-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 05 Apr 2012 14:29:12 -0000

That's correct. It provides IPsec the Multiple Interfaces features of SCTP
or MPTCP.  The goal is that MIF Nodes can deal with IPsec protected
communications.


BR
Daniel

On Thu, Apr 5, 2012 at 4:04 PM, Hampel, K Georg (K Georg) <
georg.hampel@alcatel-lucent.com> wrote:

>  Daniel, all,****
>
> ** **
>
> I read draft-mglt-mif-security-requirements-01. ****
>
> ** **
>
> Just to make sure I got the essence: The draft proposes to extend
> IPsec/MobIKE so that a multihomed host can simultaneously sustain multiple
> paths to the same security gateway or app server using the *same* SA.
> MobIKE would have to be upgraded to dynamically add/delete such paths.****
>
> ** **
>
> Purpose: Such an extension would avoid the need to establish separate SAs
> for each path.****
>
> ** **
>
> Is that correct?****
>
> ** **
>
> ** **
>
> Regards,****
>
> Georg****
>
> ** **
>
> ** **
>
> _______________________________________________
> mif mailing list
> mif@ietf.org
> https://www.ietf.org/mailman/listinfo/mif
>
>


-- 
Daniel Migault
Orange Labs -- Security
+33 6 70 72 69 58

v2.23.0 | Report a Bug | By Email