What might we standardize?

• A language for expressing packet filters

  • might have implementation adaptation layer

• A language for expressing SA policies

  • ditto

• A language and management scheme for IPSEC credentials

  • especially to support distributed policies

• A protocol for negotiating these things, to use as input to local compliance checkers

Previous slide

Next slide

Back to first slide

View graphic version