W3C home > Mailing lists > Public > ietf-discuss@w3.org > May 2001

Re: Discussion of an app-layer API for IPsec

From: Alexey Melnikov <mel@messagingdirect.com>
Date: Mon, 14 May 2001 02:30:49 -0600
Message-ID: <3AFF97B9.D1C1FFA5@messagingdirect.com>
To: Paul Hoffman / IMC <phoffman@imc.org>, Keith Moore <moore@cs.utk.edu>
CC: discuss@apps.ietf.org 
Keith Moore wrote:

> I basically think that IPsec is nearly useless without an application-layer
> API, but the API needs to not only make applications aware of whether
> a security association has been established (along with the credentials
> so that the application can evaluate them for itself) but also allow
> the application to control the credentials that are used when establishing
> SAs.

And one possible use of this is API is for EXTERNAL SASL mechanism, implemented
on top of IPSec.

Alexey
Received on Monday, 14 May 2001 04:34:38 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Thursday, 23 March 2006 20:11:28 GMT