RE: Security Use Requirements

To: "David Robinson" <David.Robinson@EBay.Sun.COM>
Subject: RE: Security Use Requirements
From: "Bernard Aboba" <aboba@internaut.com>
Date: Fri, 9 Feb 2001 18:31:32 -0800
Cc: <Black_David@emc.com>, <jtseng@NishanSystems.com>, <ips@ece.cmu.edu>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain;charset="us-ascii"
Importance: Normal
In-Reply-To: <3A843EA3.62EBFCCC@ebay.sun.com>
Sender: owner-ips@ece.cmu.edu

>> >iSCSI envisions and allows multiple targets behind a single IP
>> >address and TCP port.  The targets are named (via WWUIs) in a
>> >fashion that neither IPsec nor TLS can be expected to understand
> 
>> Let me make sure I understand this. You will have multiple
>> SCSI authentications to the same target IP address and port.
>> Does the initiator port vary between them or is that the
>> same too?

>I haven't heard anyone strongly request this. Hopefully
>another body will handle this within the SCSI layer.  If
>there is demand I would suggest looking at how the NFSv4 WG
>handled this using GSSAPI.  But I personally think that is
>overkill for iSCSI.

Are you saying that we *don't* need to worry about multiple
SCSI authentications to the same target IP address and port?
That would certainly simplify things.

Follow-Ups:
- Re: Security Use Requirements
  - From: David Robinson <David.Robinson@EBay.Sun.COM>

References:
- Re: Security Use Requirements
  - From: David Robinson <David.Robinson@EBay.Sun.COM>

Prev by Date: RE: Security Use Requirements
Next by Date: RE: Security Use Requirements
Prev by thread: RE: Security Use Requirements
Next by thread: Re: Security Use Requirements
Index(es):
- Date
- Thread

Home

Last updated: Tue Sep 04 01:05:32 2001
6315 messages in chronological order