Skip to main content

Semantic Model for IPsec Policy Interaction
draft-zao-policy-semantics-03

Document Type Expired Internet-Draft (individual)
Expired & archived
Author Dr. John K. Zao
Last updated 2000-03-16
RFC stream (None)
Intended RFC status (None)
Formats
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:

Abstract

This Internet Draft discusses three possible forms of interaction among IPsec Policies referred to as Policy Resolution, Policy Correlation and Policy Reconciliation. It also proposes two operators, Policy Composition (*) and Policy Difference (-), to deduce the results of policy interactions. The definitions of these operators establish an algebraic semantics of IPsec Policies based on partially ordered set theory. This formal semantics can be used to ensure consistency of IPsec Policy processing.

Authors

Dr. John K. Zao

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)