> Dino, > > thank you for this and your other answers! Anytime.
> I can see that it's possible to treat EIDs as sufficiently static to treat > them as (stand-ins for) unique identifiers. Yes, that is correct. > I can still (quite easily) construct scenarios with drones where the > EID-to-RLOC mapping on a LISP map server is not going to suffice for AAA. I'd > gladly discuss this further, but it is increasingly out of scope of the > current topic on the distinction between identifiers and locators. If you want to go private, I can discuss with you. But note that registration to the mapping system can be signed and verified with PKI so when a requesting EID is authenticated (and authorized) to lookup a destination EID, the map-server can decide if a reply should be returned (map-servers can proxy-reply for Map-Requests). > I'm conducting some ongoing research on this more general AAA topic, however. > I can see that there is space for a LISP extension at some point to cover > such scenarios. That is a highly interesting conclusion in its own right. If > you It is my belief that you don't need other AAA solutions if your mapping system supports access-control and identity verification. > don't mind, I shall reach out to you regarding this in some time, because you > appear to be the right person for this! Sure, anytime. Thanks. Dino _______________________________________________ Int-area mailing list Int-area@ietf.org https://www.ietf.org/mailman/listinfo/int-area
