On Tue, 6 Feb 2018, Tero Kivinen wrote:
Some systems support security labels (aka security context) as one of the
selectors of the SPD. This label needs to be part of the IKE negotiation
for the IPsec SA. non-standard implementations exist for IKEv1 (formerly
abusing IPSEC Security Association Attribute 10, now using private space
IPSEC Security Association Attribute 32001). The work is to standarize
this for IKEv2.
This charter item has also had no discussion since IETF, so I assume
there is not much support for this either?
I plan to submit a draft in time for the London meeting. Red Hat has a
clear interest in this.
Paul
_______________________________________________
IPsec mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/ipsec
