[anonsec] Dan's comments (Re: Connection Latching draft review (draft-ietf-btns-connection-latching-04.txt))
Stephen Kent
kent at bbn.com
Mon Jan 14 13:18:03 PST 2008
Nico & Dan,
the SPD has always been a persistent database. the newly added PAD
also is persistent. It's the SAD that is transient, i.e., need not
have any entries unless SAs have been created, and those entries
vanish when the SAs they represent vanish. The notion of dynamic
modification of the SPD is a relatively new concept, not part of the
original design, but not ruled out by it. Also note that the
de-correlated SPD model introduced in 4301 works very well for a
persistent database, but could be costly to maintain if the SPD is
frequently updated.
Steve has indicated that he is tired of reviewing BTNS documents that
often are hard to read and that too often are revised with only
slight improvement. The BTNS problem statement is the most recent
example, where comments from two years ago were not acted upon.
Steve
More information about the ANONSEC
mailing list