Hesham Soliman (ERA) writes:
> Mike,
>
> Good points. So are you saying we should
> mandate ESP and AH but it's ok not to mandate
> IKE? and perhaps use something else for
> key distribution?
I think the v6 host requirements struck the right
balance: require the IP packet layer transforms,
and be silent on key distribution. Key
distribution is clearly a huge problem, but IPsec
doesn't mandate a single solution so I don't see
why the cellular requirements draft should either.
You can run IPsec with manually configured keys,
after all, so at a base level you can get
interoperability. This is foward progress IMO,
even though we clearly need more going forward.
Mike
--------------------------------------------------------------------
IETF IPng Working Group Mailing List
IPng Home Page: http://playground.sun.com/ipng
FTP archive: ftp://playground.sun.com/pub/ipng
Direct all administrative requests to [EMAIL PROTECTED]
--------------------------------------------------------------------
