@techreport{wdh-srv6ops-secservice-02,
    number =    {draft-wdh-srv6ops-secservice-02},
    type =      {Internet-Draft},
    institution =   {Internet Engineering Task Force},
    publisher = {Internet Engineering Task Force},
    note =      {Work in Progress},
    url =       {https://datatracker.ietf.org/doc/draft-wdh-srv6ops-secservice/02/},
    author =    {Haibo Wang and Linda Dunbar and CJK UNIFIED IDEOGRAPH-80E1 CJK UNIFIED IDEOGRAPH-4FCA CJK UNIFIED IDEOGRAPH-7406 and YaoYang},
    title =     {{ESP Protection for Services over SRv6}},
    pagetotal = 10,
    year =      2026,
    month =     mar,
    day =       17,
    abstract =  {This document describes a mechanism for protecting selected service traffic using IPsec ESP while transporting the traffic over an SRv6 domain. The approach enables service payloads to be encrypted prior to SRv6 encapsulation, allowing the SRv6 header to remain visible for segment-based forwarding within the provider network. This mechanism supports services or applications that require additional confidentiality and integrity protection, even when carried over an operator-managed SRv6 domain.},
}