>I agree to what you say and the general sense of the room in the KMART BOF. >That is the reason I proposed a BTNS based solution. Which uses GTSM >in the IKe to do the first level security.
I am not quite sure I understand the use of GTSM here. The need for authentication for OSPF is that you don't trust that everyone on the local broadcast link is OK. GTSM tells you that the sender came from one-hop away, i.e., on the local broadcast link. Since you already know that you don't trust everyone one-hop away, how does the use of GTSM help? --Sandy _______________________________________________ sidr mailing list [email protected] https://www.ietf.org/mailman/listinfo/sidr
