Skip to main content

Securing the first hop in PANA using IPsec

Document Type Expired Internet-Draft (individual)
Author Mohan Parthasarathy
Last updated 2003-05-13
Stream (None)
Intended RFC status (None)
Expired & archived
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)
This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at:


The PANA (Protocol for carrying Authentication for Network Access) working group is developing protocol for authenticating clients to the access network using IP based protocols. The PANA protocol authenticates the client and also establishes a PANA security association between the PANA client and PANA authentication agent at the end of a successful authentication. But it does not specify any mechanism for preventing service theft. This document discusses the details for establishing an IPsec security association for securing the link between PANA client and the enforcement point, which can be used to prevent service theft.


Mohan Parthasarathy

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)