Semantic Model for IPsec Policy Interaction
draft-zao-ipsec-policy-semantics-03
Document | Type |
Expired Internet-Draft
(individual)
Expired & archived
|
|
---|---|---|---|
Author | Dr. John K. Zao | ||
Last updated | 2000-04-05 (Latest revision 2000-04-07) | ||
RFC stream | (None) | ||
Intended RFC status | (None) | ||
Formats | |||
Stream | Stream state | (No stream defined) | |
Consensus boilerplate | Unknown | ||
RFC Editor Note | (None) | ||
IESG | IESG state | Expired | |
Telechat date | (None) | ||
Responsible AD | (None) | ||
Send notices to | (None) |
This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:
Abstract
This Internet Draft discusses three possible forms of interaction among IPsec Policies referred to as Policy Resolution, Policy Correlation and Policy Reconciliation. It also proposes two operators, Policy Composition (*) and Policy Difference (-), to deduce the results of policy interactions. The definitions of these operators establish an algebraic semantics of IPsec Policies based on partially ordered set theory. This formal semantics can be used to ensure consistency of IPsec Policy processing.
Authors
(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)