Re: [Hipsec] [PATCH 2.6.12.2] XFRM: BEET IPsec mode for Linux

To:	netdev@xxxxxxxxxxx
Subject:	Re: [Hipsec] [PATCH 2.6.12.2] XFRM: BEET IPsec mode for Linux
From:	Diego Beltrami <diego.beltrami@xxxxxxx>
Date:	Mon, 25 Jul 2005 16:28:55 +0300
In-reply-to:	<1122295307.14873.37.camel@odysse>
Organization:	HIIT
References:	<1122295307.14873.37.camel@odysse>
Reply-to:	diego.beltrami@xxxxxxx
Sender:	netdev-bounce@xxxxxxxxxxx

Folks,
I'm sorry but the sent patch included in the email seems to be broken.
Please, use the URL 
http://hipl.hiit.fi/beet/beet-patch-v1.0-2.6.12.2

Sincerely


> Hi folks,
> 
> we have been working for three months to implement a new IPsec mode,
> the "BEET" mode, for Linux. Below is a link to the BEET specification
> and
> the abstract:
> 
> http://www.ietf.org/internet-drafts/draft-nikander-esp-beet-mode-03.txt
> 
> Abstract
> 
>    This document specifies a new mode, called Bound End-to-End Tunnel
>    (BEET) mode, for IPsec ESP.  The new mode augments the existing ESP
>    tunnel and transport modes.  For end-to-end tunnels, the new mode
>    provides limited tunnel mode semantics without the regular tunnel
>    mode overhead.  The mode is intended to support new uses of ESP,
>    including mobility and multi-address multi-homing.
> 
> The BEET mode is required by the Host Identity Protocol (HIP), which
> provides authenticated Diffie-Hellman for end-hosts, as well as
> mobility and multihoming support. The BEET mode is also useful for
> other similar protocols being developed at the IETF.
> 
> Ericsson has already developed a BEET patch for *BSD. Our patch
> provides the similar functionality, but using the XFRM architecture.
> The patch is included at the end of this email and also at the following
> URL:
> http://hipl.hiit.fi/beet/beet-patch-v1.0-2.6.12.2
> 
> We have made some testing in order to assure the quality of the
> patch. All the tests passed, and below is a list of them:
> 
> * Does not break transport and tunnel mode (with CONFIG_XFRM_BEET
> on/off)
> * All inner-outer combinations with varying test applications:
>   ICMP, ICMPv6, FTP, SSH, nc, nc6
> * Works with fragmented packets
> * Interoperability with HIPL
> * Real machines, virtual machines (vmware)
> * Tested with long data streams
> 
> The BEET development team:
> 
> * Abhinav Pathak <abpathak@xxxxxxxxxx> (InfraHIP/HIIT)
> * Diego Beltrami <diego.beltrami@xxxxxxx> (InfraHIP/HIIT)
> * Kristian Slavov <kristian.slavov@xxxxxxxxxxxxxx> (Ericsson)
> * Miika Komu <miika@xxxxxx> (InfraHIP/HIIT)
> * Jeff Ahrenholz <jeffrey.m.ahrenholz@xxxxxxxxxx> (Boeing)
> 
> On the behalf of the BEET development team,
> 
> Signed-off-by: Diego Beltrami <diego.beltrami@xxxxxxx>
> 
> 
>

<Prev in Thread]	Current Thread	[Next in Thread>
[PATCH 2.6.12.2] XFRM: BEET IPsec mode for Linux, Diego Beltrami Re: [Hipsec] [PATCH 2.6.12.2] XFRM: BEET IPsec mode for Linux, Diego Beltrami <= Re: [PATCH 2.6.12.2] XFRM: BEET IPsec mode for Linux, Miika Komu Re: [PATCH 2.6.12.2] XFRM: BEET IPsec mode for Linux, Herbert Xu Re: [hipl-users] Re: [PATCH 2.6.12.2] XFRM: BEET IPsec mode for Linux, Diego Beltrami Re: [Infrahip] Re: [hipl-users] Re: [PATCH 2.6.12.2] XFRM: BEET IPsec mode for Linux, Pekka Nikander Re: [Infrahip] Re: [hipl-users] Re: [PATCH 2.6.12.2] XFRM: BEET IPsec mode for Linux, Herbert Xu Re: [PATCH 2.6.12.2] XFRM: BEET IPsec mode for Linux, Diego Beltrami Re: [hipl-users] Re: [PATCH 2.6.12.2] XFRM: BEET IPsec mode for Linux, Herbert Xu

Previous by Date:	[PATCH 2.6.12.2] XFRM: BEET IPsec mode for Linux, Diego Beltrami
Next by Date:	multicast on loopback: mcast networking at the cottage, Michael Richardson
Previous by Thread:	[PATCH 2.6.12.2] XFRM: BEET IPsec mode for Linux, Diego Beltrami
Next by Thread:	Re: [PATCH 2.6.12.2] XFRM: BEET IPsec mode for Linux, Miika Komu
Indexes:	[Date] [Thread] [Top] [All Lists]