Compliance Checking

• Given a set of proposed SA parameters, a node must be able to verify correctly

  • whether the parameters meet its own policy
  • that gateway is correct, authorized one

• This is where policy enforcement implemented

  • secure even if SA resolution gave the wrong answer

• Must implement IPSP semantics

Previous slide

Next slide

Back to first slide

View graphic version