IETF Logo Mail Archive

Re: Review of draft-ietf-mmusic-sap-v2-01.txt

Mark Handley <mjh@aciri.org> Tue, 01 February 2000 18:13 UTC

Return-Path: <owner-confctrl>
Received: (from majordom@localhost) by zephyr.isi.edu (8.8.7/8.8.6) id KAA14653 for confctrl-outgoing; Tue, 1 Feb 2000 10:13:52 -0800 (PST)
Received: from tnt.isi.edu (tnt.isi.edu [128.9.128.128]) by zephyr.isi.edu (8.8.7/8.8.6) with ESMTP id KAA14648 for <confctrl@zephyr.isi.edu>; Tue, 1 Feb 2000 10:13:44 -0800 (PST)
Received: from aardvark.aciri.org (aardvark.aciri.org [192.150.187.20]) by tnt.isi.edu (8.8.7/8.8.6) with ESMTP id KAA10482 for <confctrl@ISI.EDU>; Tue, 1 Feb 2000 10:14:05 -0800 (PST)
Received: from aardvark.aciri.org (localhost [127.0.0.1]) by aardvark.aciri.org (8.9.3/8.9.2) with ESMTP id KAA72904; Tue, 1 Feb 2000 10:14:03 -0800 (PST) (envelope-from mjh@aardvark.aciri.org)
From: Mark Handley <mjh@aciri.org>
X-Organisation: ACIRI
To: Dave Thaler <dthaler@dthaler.microsoft.com>
cc: confctrl@ISI.EDU
Subject: Re: Review of draft-ietf-mmusic-sap-v2-01.txt
In-reply-to: Your message of "Tue, 01 Feb 2000 11:38:30 PST." <200002011938.LAA27292@dthaler.microsoft.com>
Date: Tue, 01 Feb 2000 10:14:03 -0800
Message-ID: <72902.949428843@aardvark.aciri.org>
Sender: owner-confctrl@zephyr.isi.edu
Precedence: bulk

>Regarding Authentication Header... why is this used instead of
>IPsec AH (as the MZAP, etc specs use)?  I would have expected
>to see a discussion of this somewhere (Security Considerations
>at least), since doing per-protocol security is less secure in
>the sense that you now have to worry about two implementations
>(IPsec's and SAP's).

I guess the main issue is deployment.  How long before IPsec becomes
sufficiently ubiquitous so a SAP sender can assume all SAP receivers
will be able to authenticate it?

If SAP ever moves to Proposed Standard, I'd propose we revisit this
issue then, but right now IPsec isn't really a viable deployed
solution (much though I wish it was).

Cheers,
	Mark

v2.23.0 | Report a Bug | By Email