Gabriel:
This is being discussed to resolve the concerns that I raised in IESG
Evaluation.
When this work was chartered, I expected as simple wrapper. The charter
says:
> - A standards-track mechanism that allows an intermediary device, such
> as a firewall or intrusion detection system, to easily and reliably
> determine whether an ESP packet is encrypted with the NULL cipher; and
> if it is, determine the location of the actual payload data inside the
> packet. The starting points for this work item are
> draft-grewal-ipsec-traffic-visibility and
draft-hoffman-esp-null-protocol.
I think the chartering discussion would have been very different had the
charter said that the proposed WG would develop an alternative to ESP.
Russ
On 1/5/2010 2:08 PM, gabriel montenegro wrote:
But I'd also like to question the process being followed. We've discussed these
points numerous times in f2f meetings, on the mailing list, at virtual
interims, etc. So I'm surprised to see the already established consensus being
questioned all over again.
_______________________________________________
IPsec mailing list
IPsec@ietf.org
https://www.ietf.org/mailman/listinfo/ipsec
