RFC 3585 (rfc3585) - Page 1 of 88
IPsec Configuration Policy Information Model
Alternative Format: Original Text Document
Network Working Group J. Jason
Request for Comments: 3585 Intel Corporation
Category: Standards Track L. Rafalow
IBM
E. Vyncke
Cisco Systems
August 2003
IPsec Configuration Policy Information Model
Status of this Memo
This document specifies an Internet standards track protocol for the
Internet community, and requests discussion and suggestions for
improvements. Please refer to the current edition of the "Internet
Official Protocol Standards" (STD 1) for the standardization state
and status of this protocol. Distribution of this memo is unlimited.
Copyright Notice
Copyright (C) The Internet Society (2003). All Rights Reserved.
Abstract
This document presents an object-oriented information model of IP
Security (IPsec) policy designed to facilitate agreement about the
content and semantics of IPsec policy, and enable derivations of
task-specific representations of IPsec policy such as storage schema,
distribution representations, and policy specification languages used
to configure IPsec-enabled endpoints. The information model
described in this document models the configuration parameters
defined by IPSec. The information model also covers the parameters
found by the Internet Key Exchange protocol (IKE). Other key
exchange protocols could easily be added to the information model by
a simple extension. Further extensions can further be added easily
due to the object-oriented nature of the model.
This information model is based upon the core policy classes as
defined in the Policy Core Information Model (PCIM) and in the Policy
Core Information Model Extensions (PCIMe).
Jason, et al. Standards Track