[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: NETCONF over TLS?

To: Eliot Lear <lear@cisco.com>
Subject: Re: NETCONF over TLS?
From: Andy Bierman <ietf@andybierman.com>
Date: Thu, 30 Mar 2006 09:01:28 -0800
Cc: "Netconf (E-mail)" <netconf@ops.ietf.org>
In-reply-to: <442C0E16.3010608@cisco.com>
References: <442C0D9E.3070401@andybierman.com> <442C0E16.3010608@cisco.com>
User-agent: Thunderbird 1.5 (Windows/20051201)

Eliot Lear wrote:

There's no reason you couldn't do this with TLS/BEEP, right?


Right.
So we already have this covered, except you
have to implement BEEP.  I think that was
the point of the original question.  Like I said,
just curious -- not trying to create new work at all.


Eliot


Andy


Andy Bierman wrote:

Hi,

Somebody sent me an email and asked if the WG was
interested in NETCONF over TLS.  I said probably
not.  This morning I saw this I-D in Last Call
to supply a user name to TLS, an obvious missing
component is you want to support a user-based
access-control model (and I do).

http://www.ietf.org/internet-drafts/draft-santesson-tls-ume-04.txt

So now I am curious (but not enough to standardize
anything) if the secure syslog integration with netconf
over TLS makes security and operational sense.


Andy


--
to unsubscribe send a message to netconf-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/netconf/>



--
to unsubscribe send a message to netconf-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/netconf/>

References:
- NETCONF over TLS?
  - From: Andy Bierman <ietf@andybierman.com>
- Re: NETCONF over TLS?
  - From: Eliot Lear <lear@cisco.com>

Prev by Date: Re: Second Example in section 7.2 of netconf-proto
Next by Date: Re: Second Example in section 7.2 of netconf-proto
Previous by thread: Re: NETCONF over TLS?
Index(es):
- Date
- Thread