Steve,
I think this is a very good writeup, but it's missing the security considerations section :-)/2 Thinking for 5 minutes about intermediaries vs. not and security it isn't obvious to me that one is better than the other. A few points: - A solution with an intermediary requires on the order of N + M trust relationships for N clients and M services. A solution without requires N * M. Are there fundamental differences in how to do key management in the two cases? - An intermediary would imply putting all the security eggs in one basket. I think it is important to think about this some more. While the devices in a single home can rely on physical security combined with firewalls I think the fact that folks are talking about DNS discovery as reaching from the home networks into the ISP means that we need to take security a bit more seriously in this space. Erik -------------------------------------------------------------------- IETF IPng Working Group Mailing List IPng Home Page: http://playground.sun.com/ipng FTP archive: ftp://playground.sun.com/pub/ipng Direct all administrative requests to [EMAIL PROTECTED] --------------------------------------------------------------------
