Hi Folks: There is a new draft available that some of you may be interested in looking at.
The draft is available via the following link: http://www.ietf.org/id/draft-zong-ipsecme-ikev2-cpext4femto-00.txt Please send your comments to the list. Thanks! BR Zaifeng ----- 转发人 宗在峰008246/user/zte_ltd 时间 2012-01-20 14:33 ----- [email protected] 2012-01-18 16:06 收件人 [email protected] 抄送 [email protected] 主题 New Version Notification for draft-zong-ipsecme-ikev2-cpext4femto-00.txt A new version of I-D, draft-zong-ipsecme-ikev2-cpext4femto-00.txt has been successfully submitted by Zaifeng Zong and posted to the IETF repository. Filename: draft-zong-ipsecme-ikev2-cpext4femto Revision: 00 Title: IKEv2 Configuration Payload Extension for Notarizing Femtocell in Mobile Core Network Creation date: 2012-01-18 WG ID: Individual Submission Number of pages: 12 Abstract: IPSec IKEv2, RFC 5996 [RFC5996], has been adopted by many standardized network solutions to provide the secure transport between network elements over third party's infrastructure. Today Femtocell deployment requires the mobile operator's Femtocell AP (FAP) to leverage the IPSec IKEv2 to support mutual authentication and data protection between the insecure Femtocell, which typically deployed in customer's premise, and its corresponding mobile core network. A known security threat exists in Femto architecture for failing to validate the FAP's identity and information provided by FAP at the mobile operator's core network. This document reviews this security threat and proposes a simple extension of the IKEv2 to resolve the issue. The IETF Secretariat
_______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
