Hi, I think this draft by Kathie Nichols, Van Jacobson and Randy King might be of some interest to ANIMA. That may not be obvious at first sight, but it's about a network domain with well defined and secure membership, and is heavily based on IPv6 link-local multicast.
It has one significant difference from BRSKI + ACP: a per-node trust model instead of a "we trust every node in the domain equally" as in the ACP (and GRASP). It also has some pub/sub ability, which is another property intrinsically lacking in ANIMA (but proposed by draft-ietf-anima-grasp-distribution). https://www.ietf.org/archive/id/draft-nichols-tsv-defined-trust-transport-00.html I'm not saying we should adopt this technology, but it does answer some of the questions that ANIMA hasn't even asked yet. (With my GRASP hat on, I note that GRASP's security requirement is only for a secure transport substrate with link-local multicast ability. If DeftT supplies that, GRASP could use it.) Regards Brian Carpenter _______________________________________________ Anima mailing list [email protected] https://www.ietf.org/mailman/listinfo/anima
