Abstract
Matt Blaze: I’m not sure if this is deliberate or not, but when you talk about policy stu. you seem to be mixing application policy issues with IPSec policy issues. For example, whether or not X contains the routing for address A is not solved even if you do security of the DPD messages. You need to secure the semantics of DPD, you need a better policy for UPP itself. It’s not clear that that’s a deficiency of IPSec policy per se. That’s a deficiency of trying to use communication security to solve an application semantics security problem, which is more than communication security.
Reply: I think I agree, but we have certain security problems where we don’t really want to go into exactly which layer does what. The whole problem has to be solved whether it’s divided into IPSec paths, communications or something else.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsAuthor information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2005 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Arkko, J. (2005). Limitations of IPsec Policy Mechanisms. In: Christianson, B., Crispo, B., Malcolm, J.A., Roe, M. (eds) Security Protocols. Security Protocols 2003. Lecture Notes in Computer Science, vol 3364. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11542322_30
Download citation
DOI: https://doi.org/10.1007/11542322_30
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-28389-8
Online ISBN: 978-3-540-31836-1
eBook Packages: Computer ScienceComputer Science (R0)