Skip to main content

IPSec for BGP Enabled Services over SRv6
draft-wang-bess-secservice-02

Document Type Expired Internet-Draft (individual)
Expired & archived
Authors Haibo Wang , Linda Dunbar , Cheng Sheng , Hang Shi
Last updated 2024-07-29 (Latest revision 2024-01-26)
RFC stream (None)
Intended RFC status (None)
Formats
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:

Abstract

This document describes an approach to encrypting selective user data flows using IPsec and then orchestrating the encrypted flows based on the SRv6 Policy path. The method is needed for some users or applications that demand an elevated level of security, necessitating the encryption of their data flows even within networks like SRv6, which are built and managed by Network Service Providers (NSP) and generally considered secure. Employing encryption for selective flows over NSP managed networks, including technologies like SRv6, adds an extra layer of protection, safeguarding valuable data from potential breaches and enhancing overall network security.

Authors

Haibo Wang
Linda Dunbar
Cheng Sheng
Hang Shi

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)