Hi, We have updated the draft-xu-ipsecme-risav. "An RPKI and IPsec-based AS-to-AS Approach for Source Address Validation".
This new version of draft updates: - explicitly statement using ESP NULL encryption in tunnel mode, - add an ASN.1 format of RISAVAnnouncement, - and refine some expressions especially in `what RISAV is and how RISAV works`. Thanks and comments are welcomed. Best Regards, Yangfei Guo From: internet-drafts Date: 2023-10-23 21:51 To: Benjamin M. Schwartz; Haiyang Wang (Henry); Benjamin Schwartz; Haiyang Wang; Jianping Wu; Ke Xu; Yangfei Guo Subject: New Version Notification for draft-xu-ipsecme-risav-03.txt A new version of Internet-Draft draft-xu-ipsecme-risav-03.txt has been successfully submitted by Yangfei Guo and posted to the IETF repository. Name: draft-xu-ipsecme-risav Revision: 03 Title: An RPKI and IPsec-based AS-to-AS Approach for Source Address Validation Date: 2023-10-23 Group: Individual Submission Pages: 31 URL: https://www.ietf.org/archive/id/draft-xu-ipsecme-risav-03.txt Status: https://datatracker.ietf.org/doc/draft-xu-ipsecme-risav/ HTML: https://www.ietf.org/archive/id/draft-xu-ipsecme-risav-03.html HTMLized: https://datatracker.ietf.org/doc/html/draft-xu-ipsecme-risav Diff: https://author-tools.ietf.org/iddiff?url2=draft-xu-ipsecme-risav-03 Abstract: This document presents RISAV, a protocol for establishing and using IPsec security between Autonomous Systems (ASes) using the RPKI identity system. In this protocol, the originating AS adds authenticating information to each outgoing packet at its Border Routers (ASBRs), and the receiving AS verifies and strips this information at its ASBRs. Packets that fail validation are dropped by the ASBR. RISAV achieves Source Address Validation among all participating ASes. The IETF Secretariat
_______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
