[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
I see this point. Clearly public or pre-shared PKI has to exist yes.
But enclaves of network users will have this association is the
assumption. So if we are not in some enclave we would need to join one
to send each other files via IPsec with encrypt. The enclaves are being
built now.
Sorry I missed your point.
/jim
> -----Original Message-----
> From: Iljitsch van Beijnum [mailto:iljitsch@muada.com]
> Sent: Tuesday, July 11, 2006 10:19 AM
> To: Bound, Jim
> Cc: Pekka Savola; shim6@psg.com
> Subject: Re: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
>
> On 11-jul-2006, at 10:13, Bound, Jim wrote:
>
> > IPsec is deployed end-to-end for v4 and v6 in production not sure I
> > agree no one knows how to do this and I think I misunderstood your
> > statement below? Thanks.
>
> So if I want to send you a file and I want to encrypt it with
> IPsec, how do I do that, without making special arrangements first?
>
> IPsec is only used for VPN tunnels in practice today.
>