%!PS-Adobe-1.0
%%Creator: akamai.isi.edu:jkrey (Joyce Reynolds,,; INTERNET)
%%Title: stdin
%%CreationDate: Mon Sep 18 15:41:08 1989
%%DocumentFonts: Times-Roman Times-Italic Times-Bold Symbol Times-Roman
%%Pages: (atend)
%%EndComments
% lib/pscat.pro -- prolog for pscat (troff) files
% Copyright (C) 1985 Adobe Systems, Inc.
% Added defs for Manual Feed 
save /pscatsave exch def
/$pscat 50 dict def
$pscat begin
/fm [1 0 0 1 0 0] def
/xo 0 def /yo 0 def
/M /moveto load def
/R /show load def
/S {exch currentpoint exch pop moveto show}def
/T {exch currentpoint pop exch moveto show}def
/U {3 1 roll moveto show}def
/siz 0 def
/font 0 def
/Z {/siz exch def SF}def
/F {/font exch def SF}def
/SF{font 0 ne
    {catfonts font 1 sub get fm 0 siz put fm 3 siz neg put 
     fm makefont setfont}if}def
/BP{save/catsv exch def 0 792 translate 72 432 div dup neg scale 
  xo yo translate 0 0 moveto}def
/BPL{save/catsv exch def 72 8.25 mul 792 translate -90 rotate
  72 432 div dup neg scale xo yo translate 0 0 moveto}def
/EP{catsv restore showpage}def
/SetStTime{statusdict /manualfeedtimeout 120 put} def
/SetStatus{statusdict /manualfeed true put
   statusdict /product get (LaserWriter) eq 
   {version (23.0) eq  % Don't redefine EP if printer is not "Classic LW"
     {/EP {catsv restore
	 {statusdict /printerstatus get exec 16#22000000 and 0 eq{exit}if}loop
	 showpage}def}if }if}def
% definitions for PPROC callback functions
% each PPROC is called with the following number on the stack:
% pointsize charcode railmag pswidth pschar x y wid
/$pprocs 50 dict def
/fractm [.65 0 0 .6 0 0] def
% fractions
/PS1{gsave $pprocs begin
    /wid exch def pop pop pop pop pop /ch exch def /size exch def
    /pair $pprocs ch get def /cf currentfont def
    cf fractm makefont setfont
    0 .3 size mul 6 mul 2 copy neg rmoveto pair 0 get show rmoveto
    currentfont cf setfont (\244) show setfont
    pair 1 get show grestore wid .06 div 0 rmoveto end}def
$pprocs begin
8#34 [(1)(4)] def
8#36 [(1)(2)] def
8#46 [(3)(4)] def
end
% boxes
/PS2{gsave /wid exch def pop pop /char exch def pop pop pop /size exch def
    /len size 3.5 mul def % length of a side
    len 0 rlineto 0 len neg rlineto len neg 0 rlineto closepath
    char 3 eq {fill}{size 5 mul .07 mul setlinewidth stroke}ifelse
    grestore wid .06 div 0 rmoveto}def
/PS3/PS2 load def		% boxes are the same...
% circle
/PS4{gsave /wid exch def pop pop pop pop pop pop /size exch def
    wid .8333 mul size 2.5 mul neg rmoveto currentpoint	% center
    newpath size 1.8 mul 0 360 arc size .2 mul setlinewidth stroke
    grestore wid .06 div 0 rmoveto}def
/bb{$pprocs begin /wid exch def pop pop pop pop pop pop /size exch 6 mul def
    /s2 size 2 div def /s4 size 4 div def gsave 
    currentpoint newpath transform round exch round exch itransform translate
    size 16 div setlinewidth 2 setlinejoin 0 setgray}def
$pprocs begin
/mrr{moveto rlineto rlineto}def
/be{stroke grestore wid .06 div 0 rmoveto end}def
end
% leftfloor
/PS6 {bb s4 0 0 size s4 size -.8 mul mrr be}def
% rightfloor
/PS7 {bb s4 neg 0 0 size s4 size -.8 mul mrr be}def
% leftceil
/PS8 {bb s4 0 0 size neg s4 size .2 mul mrr be}def
% rightceil
/PS9 {bb s4 neg 0 0 size neg s4 size .2 mul mrr be}def
% boldvert
/PS5 {bb 0 0 0 size neg s4 size .2 mul mrr be}def
% box rule
/PS32 {bb /sw size 24 div def sw 2 div size 4.5 div moveto
       0 size neg rlineto sw setlinewidth be}def
% rule (roman, bold and italic)
/PS16 {gsave $pprocs begin
    /wid exch def pop pop pop pop pop pop /size exch 6 mul def
    /sw size 14 div def currentpoint exch sw 2 div sub exch
    newpath transform round exch round exch itransform translate
    0 0 moveto size 2 div 0 rlineto sw setlinewidth be}def
% lefttopcurl    
/PS20 {bb s4 size .2 mul moveto 0 size -.55 mul rlineto currentpoint 
    pop size -.8 mul 2 copy exch s4 add exch s4 arcto pop pop pop pop be}def
% leftbotcurl
/PS21 {bb s4 size -.8 mul moveto 0 size .55 mul rlineto currentpoint 
    pop size .2 mul 2 copy exch s4 add exch s4 arcto pop pop pop pop be}def
% righttopcurl
/PS22 {bb s4 size .2 mul moveto 0 size -.55 mul rlineto currentpoint
     pop size -.8 mul 2 copy exch s4 sub exch s4 arcto pop pop pop pop be}def
% rightbotcurl
/PS23 {bb s4 size -.8 mul moveto 0 size .55 mul rlineto currentpoint
     pop size .2 mul 2 copy exch s4 sub exch s4 arcto pop pop pop pop be}def
% rightmidcurl
/PS25 {bb /s3 size -.3 mul def s4 size -.8 mul moveto s4 s3 s2 s3
    s4 arcto pop pop size add s4 s3 4 2 roll
    s4 arcto pop pop pop pop s4 size .2 mul lineto be}def
% leftmidcurl
/PS24 {bb /s3 size -.3 mul def s4 size -.8 mul moveto s4 s3 0 s3
    s4 arcto pop pop size add s4 s3 4 2 roll s4 arcto pop pop pop pop 
    s4 size .2 mul lineto be}def
/catfonts [
	/Times-Roman findfont
	/Times-Italic findfont
	/Times-Bold findfont
	/Symbol findfont
	/Times-Roman findfont
	] def
%%EndProlog
%%Page: ? 1
BP
1 F
72 Z
577 681(Network)U
853(Working)S
1133(Group)S
2891(B.)S
2981(Leiner)S
577 765(Request)U
833(for)S
941(Comments:)S
1297(1124)S
2957(RIACS)S
2693 849(September)U
3025(1989)S
3 F
96 Z
998 1212(Policy)U
1282(Issues)S
1558(in)S
1670(Interconnecting)S
2353(Networks)S
72 Z
1173 1368(o)U
577(Status)S
793(of)S
877(this)S
1013(Mem)S
2 F
727 1476(To)U
827(support)S
1071(the)S
1183(activities)S
1467(of)S
1547(the)S
1659(Federal)S
1911(Research)S
2203(Internet)S
2455(Coordinating)S
2865 1560(e)U
577 1644(r)U
577 1560(Committee)U
913(\(FRICC\))S
1193(in)S
1273(creating)S
1537(an)S
1633(interconnected)S
2085(set)S
2189(of)S
2269(networks)S
2553(to)S
2633(serve)S
2809(th)S
605 1644(esearch)U
853(community,)S
1211(two)S
1339(workshops)S
1671(were)S
1835(held)S
1983(to)S
2063(address)S
2311(the)S
2423(technical)S
2711(support)S
2955(of)S
3099 1728(s)U
577 1812(o)U
577 1728(policy)U
777(issues)S
973(that)S
1109(arise)S
1277(when)S
1453(interconnecting)S
1929(such)S
2085(networks.)S
2411(Held)S
2575(under)S
2767(the)S
2879(auspice)S
613 1812(f)U
657(the)S
769(Internet)S
1021(Activities)S
1313(Board)S
1517(at)S
1597(the)S
1709(request)S
1945(of)S
2025(the)S
2137(FRICC,)S
2387(and)S
2519(sponsored)S
2839(by)S
2931(NASA)S
577 1980(a)U
577 1896(through)U
829(RIACS,)S
1067(the)S
1179(workshops)S
1511(addressed)S
1827(the)S
1939(required)S
2211(and)S
2343(feasible)S
2591(technologies)S
2979(and)S
613 1980(rchitectures)U
981(that)S
1117(could)S
1301(be)S
1393(used)S
1549(to)S
1629(satisfy)S
1837(the)S
1949(desired)S
2185(policies)S
2433(for)S
2541(interconnection.)S
3109 2088(n)U
577 2172(o)U
727 2088(The)U
859(purpose)S
1115(of)S
1195(this)S
1323(RFC)S
1483(is)S
1555(to)S
1635(report)S
1839(the)S
1951(results)S
2167(of)S
2247(these)S
2419(workshops.)S
2793(Distributio)S
613 2172(f)U
657(this)S
785(memo)S
981(is)S
1053(unlimited.)S
EP
%%Page: ? 2
BP
3 F
72 Z
577 681(Preface)U
1 F
727 789(This)U
879(report)S
1075(documents)S
1411(the)S
1523(results)S
1735(of)S
1819(two)S
1951(workshops)S
2287(held)S
2435(at)S
2511(the)S
2623(request)S
2855(of)S
2939(the)S
577 957(I)U
577 873(Federal)U
817(Research)S
1105(Internet)S
1353(Coordinating)S
1757(Committee)S
2101(and)S
2229(under)S
2417(the)S
2529(auspices)S
2797(of)S
2881(the)S
601 957(nternet)U
825(Activities)S
1129(Board.)S
1371(As)S
1475(such,)S
1649(this)S
1777(report)S
1973(represents)S
2289(the)S
2401(work)S
2573(of)S
2657(a)S
2713(large)S
2881(number)S
577 1125(b)U
577 1041(of)U
661(people)S
877(\(listed)S
1081(in)S
1161(Section)S
1401(7\).)S
1527(Without)S
1787(their)S
1943(efforts,)S
2173(these)S
2345(results)S
2557(would)S
2761(not)S
2877(have)S
613 1125(een)U
737(possible.)S
1039(The)S
1175(author)S
1383(\(really)S
1595(more)S
1767(of)S
1851(an)S
1943(editor\))S
2159(would)S
2363(like)S
2495(to)S
2575(acknowledge)S
2979(their)S
577 1293(w)U
577 1209(efforts)U
789(and)S
917(contributions,)S
1339(and)S
1467(thank)S
1651(them)S
1819(for)S
1927(their)S
2083(cooperation)S
2447(in)S
2527(making)S
2767(the)S
629 1293(orkshops)U
913(a)S
969(success.)S
EP
%%Page: ? 3
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
3 F
84 Z
577 681(1.)U
696(Introduction)S
1 F
72 Z
727 789(Computer)U
1039(networking)S
1391(has)S
1511(become)S
1759(pervasive)S
2059(and)S
2187(basic)S
2359(to)S
2439(the)S
2551(conduct)S
2803(of)S
2887(scienti\256c)S
3119 873(,)U
577 957(e)U
577 873(and)U
705(academic)S
1001(activities.)S
1327(To)S
1431(provide)S
1675(the)S
1787(needed)S
2015(networking)S
2367(support)S
2607(to)S
2687(these)S
2859(activities)S
609 957(ach)U
733(of)S
817(the)S
929(agencies)S
1201(funding)S
1449(research)S
1713(has)S
1833(proceeded)S
2153(to)S
2233(establish)S
2509(one)S
2637(or)S
2721(more)S
2893(agency)S
577 1041(funded)U
801(computer)S
1097(networks.)S
727 1149(Recognizing)U
1115(the)S
1227(importance)S
1575(of)S
1659(such)S
1815(networking)S
2167(support,)S
2425(the)S
2537(Of\256ce)S
2741(of)S
2825(Science)S
577 1317(r)U
577 1233(and)U
705(Technology)S
1073(Policy)S
1281(\(OSTP\))S
1529(working)S
1793(with)S
1945(the)S
2057(appropriate)S
2409(personnel)S
2713(from)S
2877(the)S
601 1317(esearch-funding)U
1089(agencies)S
1361(on)S
1457(the)S
1569(Federal)S
1809(Coordinating)S
2213(Council)S
2465(on)S
2561(Science)S
2809(Engineering)S
577 1485(r)U
577 1401(and)U
705(Technology)S
1073(\(FCCSET\))S
1409(Committee)S
1753(on)S
1849(High-Speed)S
2217(Networks)S
2521(developed)S
2841(a)S
2897(set)S
3001(of)S
601 1485(ecommendations)U
1113(for)S
1221(the)S
1333(evolution)S
1629(and)S
1757(enhancements)S
2189(of)S
2273(scienti\256c)S
2557(and)S
2685(academic)S
2961 1569(e)U
577 1653(a)U
577 1569(networks.)U
907(These)S
1103(recommendations)S
1639(are)S
1751(described)S
2051(in)S
2131(three)S
2299(phases.)S
2557(The)S
2693(\256rst)S
2829(phas)S
609 1653(ddresses)U
877(the)S
989(interconnection)S
1461(of)S
1545(the)S
1657(various)S
1893(agency)S
2121(networks)S
2409(into)S
2545(a)S
2601(ubiquitous)S
3001 1737(s)U
577 1821(w)U
577 1737(networking)U
929(capability)S
1237(serving)S
1473(several)S
1701(hundred)S
1961(universities)S
2317(and)S
2445(research)S
2709(institution)S
629 1821(ith)U
729(a)S
785(backbone)S
1085(network)S
1345(operating)S
1641(1.5)S
1755(Mb/s.)S
1969(The)S
2105(second)S
2329(phase)S
2517(involves)S
2785(upgrading)S
577 1989(r)U
577 1905(the)U
689(network)S
949(backbone)S
1249(to)S
1329(45)S
1425(Mb/s)S
1597(and)S
1725(connecting)S
2065(additional)S
2377(universities)S
2733(and)S
2861(other)S
601 1989(esearch)U
841(institutions.)S
1227(The)S
1363(third)S
1523(phase)S
1711(involves)S
1979(the)S
2091(development)S
2487(and)S
2615(installation)S
2959(of)S
3043(a)S
577 2073(high)U
729(bandwidth)S
1057(\(Gb/s\))S
1265(networking)S
1617(capability.)S
727 2181(The)U
863(motivation)S
1199(for)S
1307(the)S
1419(\256rst)S
1555(two)S
1687(phases)S
1903(are)S
2015(to)S
2095(achieve)S
2339(good)S
2507(performance)S
2895(in)S
2975(a)S
3031(cost)S
577 2349(i)U
577 2265(effective)U
853(manner.)S
1135(The)S
1271(scienti\256c)S
1555(and)S
1683(academic)S
1979(community)S
2331(is)S
2403(best)S
2543(served)S
2755(by)S
2851(an)S
597 2349(nterconnected)U
1025(ubiquitous)S
1353(networking)S
1705(capability)S
2013(rather)S
2205(than)S
2353(a)S
2409(set)S
2513(of)S
2597(partitioned)S
2891 2433(d)U
577 2517(p)U
577 2433(networks)U
865(supporting)S
1197(only)S
1349(subsets)S
1581(of)S
1665(the)S
1777(community.)S
2171(Costs)S
2355(can)S
2479(be)S
2571(reduced)S
2823(an)S
613 2517(erformance)U
965(improved)S
1265(through)S
1513(sharing)S
1749(of)S
1833(resources)S
2129(and)S
2257(using)S
2437(cross-support)S
2849(\(e.g.,)S
3141 2601(r)U
577 2685(t)U
577 2601(using)U
757(one)S
885(agency's)S
1165(network)S
1425(to)S
1505(serve)S
1681(an)S
1773(institution)S
2089(for)S
2197(another)S
2437(agency's)S
2717(purposes)S
2997(rathe)S
597 2685(han)U
725(having)S
945(to)S
1025(connect)S
1273(each)S
1429(institution)S
1745(to)S
1825(every)S
2009(network.\))S
2921 2793(g)U
577 2877(C)U
727 2793(To)U
831(accomplish)S
1183(these)S
1355(objectives,)S
1689(the)S
1801(Federal)S
2041(Research)S
2329(Internet)S
2577(Coordinatin)S
625 2877(ommittee)U
921(\(FRICC\))S
1201(was)S
1337(formed.)S
1611(Consisting)S
1943(of)S
2027(representatives)S
2483(from)S
2647(the)S
2759(key)S
2887(research)S
577 3045(s)U
577 2961(agencies)U
849(\(NSF,)S
1047(DARPA,)S
1333(NASA,)S
1571(and)S
1699(DOE\),)S
1913(this)S
2041(ad)S
2133(hoc)S
2261(group)S
2453(has)S
2573(been)S
2733(developing)S
605 3045(trategies)U
873(for)S
981(interconnection)S
1453(of)S
1537(networks)S
1825(and)S
1953(evolution)S
2249(of)S
2333(the)S
2445(Internet)S
2693(in)S
2773(accordance)S
577 3213(p)U
577 3129(with)U
729(the)S
841(OSTP)S
1041(recommendations)S
1577(for)S
1685(Phases)S
1905(1-3.)S
2067(In)S
2151(the)S
2263(process)S
2503(of)S
2587(developing)S
2931(such)S
613 3213(lans,)U
771(it)S
835(became)S
1079(apparent)S
1351(that)S
1483(a)S
1539(set)S
1643(of)S
1727(issues)S
1923(needed)S
2151(to)S
2231(be)S
2323(addressed)S
2631(concerning)S
2975(the)S
3149 3297(t)U
577 3381(s)U
577 3297(various)U
813(agency)S
1041(policies)S
1289(for)S
1397(their)S
1553(research)S
1817(networks)S
2105(in)S
2185(light)S
2341(of)S
2425(the)S
2537(desire)S
2733(to)S
2813(interconnec)S
605 3381(uch)U
733(networks.)S
727 3489(T)U
(his)R
879(report)S
1075(documents)S
1411(the)S
1523(results)S
1735(of)S
1819(a)S
1875(series)S
2063(of)S
2147(two)S
2279(workshops)S
2615(\(18-20)S
2831(June)S
2987(1988)S
577 3657(t)U
577 3573(at)U
653(NASA)S
873(Ames)S
1065(Research)S
1353(Center)S
1569(and)S
1697(8-10)S
1853(November)S
2181(1988)S
2349(at)S
2425(MIT\))S
2605(held)S
2753(to)S
2833(address)S
597 3657(hese)U
749(issues.)S
987(Held)S
1151(under)S
1339(the)S
1451(auspices)S
1719(of)S
1803(the)S
1915(Internet)S
2163(Activities)S
2467(Board)S
2667(\(IAB\))S
2863(at)S
2939(the)S
577 3825(a)U
577 3741(request)U
809(of)S
893(the)S
1005(FRICC,)S
1255(and)S
1383(sponsored)S
1699(by)S
1795(NASA)S
2015(through)S
2263(RIACS,)S
2517(the)S
2629(workshops)S
609 3825(ddressed)U
885(the)S
997(required)S
1261(and)S
1389(feasible)S
1637(technologies)S
2025(and)S
2153(architectures)S
2545(that)S
2677(could)S
2861(be)S
2953(used)S
3109(to)S
577 3909(satisfy)U
789(the)S
901(desired)S
1133(policies)S
1381(for)S
1489(interconnection.)S
727 4017(The)U
863(issues)S
1059(were)S
1223(divided)S
1463(into)S
1599(four)S
1743(categories,)S
2077(and)S
2205(working)S
2469(groups)S
2689(established)S
2987 4101(e)U
577 4185(p)U
577 4101(within)U
785(the)S
897(workshops)S
1233(to)S
1313(address)S
1553(each)S
1709(area.)S
1895(The)S
2031(\256rst)S
2167(working)S
2431(group)S
2623(addressed)S
2931(th)S
613 4185(olicies)U
825(themselves.)S
1211(Working)S
1491(with)S
1643(the)S
1755(members)S
2043(of)S
2127(the)S
2239(FRICC,)S
2489(the)S
2601(initial)S
2793(statements)S
60 Z
3149 4413(])U
577(Leiner)S
2962([Page)S
3119(1)S
EP
%%Page: ? 4
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
577 765(u)U
577 681(of)U
661(agency)S
889(policies)S
1137(were)S
1301(re\256ned)S
1525(so)S
1613(that)S
1745(the)S
1857(rest)S
1985(of)S
2069(the)S
2181(workshop)S
2489(attendees)S
2781(could)S
2965(better)S
613 765(nderstand)U
917(the)S
1029(desired)S
1261(and)S
1389(required)S
1653(policies.)S
1943(The)S
2079(second)S
2303(working)S
2567(group)S
2759(addressed)S
3051 849(p)U
577 933(a)U
577 849(issues)U
773(associated)S
1093(with)S
1245(access)S
1453(control)S
1681(to)S
1761(network)S
2021(resources.)S
2359(The)S
2495(third)S
2655(working)S
2919(grou)S
609 933(ddressed)U
885(the)S
997(techniques)S
1329(required)S
1593(to)S
1673(support)S
1913(the)S
2025(sharing)S
2261(of)S
2345(networking)S
2697(resources)S
2993(in)S
577 1101(e)U
577 1017(accordance)U
925(with)S
1077(agreed)S
1293(upon)S
1461(policies.)S
1751(The)S
1887(fourth)S
2087(working)S
2351(group)S
2543(focussed)S
2819(on)S
2915(the)S
609 1101(nd-to-end)U
913(services)S
1169(required)S
1433(to)S
1513(support)S
1753(an)S
1845(interconnected)S
2293(set)S
2397(of)S
2481(networks.)S
2979 1209(.)U
577 1293(T)U
727 1209(Each)U
895(of)S
979(the)S
1091(working)S
1355(groups)S
1575(prepared)S
1851(summary)S
2143(reports)S
2367(of)S
2451(their)S
2607(deliberations)S
621 1293(hese)U
773(reports)S
997(are)S
1109(contained)S
1413(in)S
1493(Sections)S
1761(3-6)S
1881(of)S
1965(this)S
2093(document.)S
2443(The)S
2579(report)S
2775(of)S
2859(the)S
2971(policy)S
577 1461(p)U
577 1377(working)U
841(group)S
1033(attempts)S
1301(to)S
1381(summarize)S
1721(the)S
1833(existing)S
2085(policies)S
2333(of)S
2417(each)S
2573(of)S
2657(the)S
2769(agencies,)S
613 1461(articularly)U
933(with)S
1085(respect)S
1313(to)S
1393(interconnection)S
1865(with)S
2017(other)S
2189(networks.)S
2519(The)S
2655(other)S
2827(three)S
3065 1545(f)U
577 1629(t)U
577 1545(working)U
841(groups)S
1061(focussed)S
1337(on)S
1433(the)S
1545(technology)S
1889(issues)S
2085(needed)S
2313(to)S
2393(be)S
2485(addressed)S
2793(in)S
2873(light)S
3029(o)S
597 1629(hose)U
753(policies.)S
1043(In)S
1127(each)S
1283(case,)S
1449(the)S
1561(working)S
1825(group)S
2017(report)S
2213(discusses)S
2505(the)S
2617(issues)S
2813(and)S
2913 1713(y)U
577 1797(p)U
577 1713(develops)U
857(an)S
949(evolutionary)S
1337(capability)S
1645(with)S
1797(the)S
1909(goal)S
2057(of)S
2141(fully)S
2301(addressing)S
2633(the)S
2745(agenc)S
613 1797(olicies.)U
867(Summaries)S
1215(of)S
1299(these)S
1471(reports)S
1695(are)S
1807(contained)S
2111(in)S
2191(the)S
2303(next)S
2451(section.)S
3115 1905(e)U
577 1989(r)U
727 1905(It)U
795(is)S
867(hoped)S
1067(that)S
1199(the)S
1311(results)S
1523(documented)S
1899(in)S
1979(this)S
2107(report)S
2303(will)S
2439(help)S
2587(the)S
2699(FRICC)S
2931(and)S
3059(th)S
601 1989(est)U
705(of)S
789(the)S
901(research)S
1165(community)S
1517(in)S
1597(achieving)S
1901(this)S
2029(exciting)S
2285(objective:)S
2593(a)S
2649(national)S
2905(research)S
60 Z
577 4413(L)U
72 Z
577 2073(networking)U
929(capability.)S
60 Z
614 4413(einer)U
2962([Page)S
3119(2])S
EP
%%Page: ? 5
BP
3 F
84 Z
577 681(2)U
1 F
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
3 F
84 Z
619 681(.)U
696(Workshop)S
1103(Summary)S
1 F
72 Z
727 789(D)U
(riving)R
975(the)S
1087(workshop)S
1395(were)S
1559(the)S
1671(policies)S
1919(of)S
2003(the)S
2115(individual)S
2431(agencies)S
2703(and)S
2831(a)S
2887(desire)S
3083(to)S
577 957(p)U
577 873(interconnect)U
957(the)S
1069(networks)S
1357(in)S
1437(a)S
1493(way)S
1637(that)S
1769(was)S
1905(satisfactory)S
2261(to)S
2341(those)S
2517(agencies.)S
2831(A)S
2907(prime)S
613 957(olicy)U
781(driver)S
977(appeared)S
1261(to)S
1341(be)S
1433(OMB)S
1621(Circular)S
1881(A130,)S
2083(which)S
2283(states)S
2467(that)S
2599(appropriate)S
3137 1041(s)U
577 1125(n)U
577 1041(mechanisms)U
957(must)S
1121(be)S
1213(used)S
1369(to)S
1449(assure)S
1653(some)S
1829(level)S
1993(of)S
2077(accounting)S
2417(for)S
2525(the)S
2637(use)S
2757(of)S
2841(the)S
2953(variou)S
613 1125(etworks.)U
907(Another)S
1167(important)S
1471(policy)S
1675(driver)S
1871(was)S
2007(the)S
2119(need)S
2279(for)S
2387(agencies)S
2659(to)S
2739(assure)S
2943(that)S
577 1293(u)U
577 1209(sharing)U
813(of)S
897(networks)S
1185(did)S
1301(not)S
1417(adversely)S
1717(impact)S
1937(the)S
2049(support)S
2289(of)S
2373(the)S
2485(individual)S
2801(agency)S
613 1293(sers)U
749(on)S
845(their)S
1001(speci\256c)S
1245(networks.)S
1575(This)S
1727(led)S
1839(in)S
1919(some)S
2095(cases)S
2271(to)S
2351(the)S
2463(need)S
2623(to)S
2703(be)S
2795(able)S
2939(to)S
3117 1377(k)U
577 1461(t)U
577 1377(dedicate)U
841(a)S
897(portion)S
1129(\(sometimes)S
1485(all)S
1581(during)S
1793(a)S
1849(speci\256ed)S
2129(time)S
2281(period\))S
2513(of)S
2597(an)S
2689(agency)S
2917(networ)S
597 1461(o)U
657(supporting)S
989(its)S
1081(own)S
1229(users.)S
1443(Finally,)S
1689(the)S
1801(need)S
1961(to)S
2041(provide)S
2285(appropriate)S
2637(supporting)S
2969(end-)S
577 1629(s)U
577 1545(to-end)U
785(services,)S
1059(including)S
1355(security)S
1607(issues,)S
1821(led)S
1933(to)S
2013(the)S
2125(need)S
2285(for)S
2393(coordinating)S
2781(such)S
605 1629(ervices.)U
727 1737(T)U
(o)R
831(facilitate)S
1107(the)S
1219(discussion)S
1543(of)S
1627(the)S
1739(technology)S
2083(issues)S
2279(and)S
2407(the)S
2519(presentation)S
2895(of)S
3073 1821(0)U
577 1905(r)U
577 1821(results,)U
807(it)S
871(was)S
1007(decided)S
1255(to)S
1335(describe)S
1599(the)S
1711(evolution)S
2007(of)S
2091(capability)S
2399(in)S
2479(four)S
2623(phases.)S
2881(Phase)S
601 1905(epresented)U
933(currently)S
1217(deployed)S
1505(and)S
1633(available)S
1917(capability.)S
2267(While)S
2467(not)S
2583(necessarily)S
2927(being)S
577 2073(v)U
577 1989(currently)U
861(used)S
1017(for)S
1125(the)S
1237(support)S
1477(of)S
1561(the)S
1673(policy)S
1877(issues,)S
2091(the)S
2203(capabilities)S
2555(of)S
2639(Phase)S
2831(0)S
2891(were)S
613 2073(iewed)U
809(as)S
893(being)S
1077(currently)S
1361(available)S
1645(and)S
1773(could)S
1957(be)S
2049(used)S
2205(starting)S
2445(today.)S
2671(Phase)S
2863(1)S
2977 2157(f)U
577 2241(s)U
577 2157(consisted)U
869(of)S
953(capabilities)S
1305(that)S
1437(were)S
1601(developed)S
1921(and)S
2049(deployed)S
2337(at)S
2413(a)S
2469(limited)S
2697(number)S
2941(o)S
605 2241(ites.)U
771(Thus,)S
957(the)S
1069(issues)S
1265(involved)S
1541(in)S
1621(using)S
1801(such)S
1957(capabilities)S
2309(involved)S
2585(mainly)S
2809(those)S
2985(of)S
3093 2325(d)U
577 2409(w)U
577 2325(widespread)U
929(deployment)S
1293(\(plus)S
1461(perhaps)S
1709(some)S
1885(limited)S
2113(amount)S
2353(of)S
2437(development)S
2833(associate)S
629 2409(ith,)U
747(e.g.,)S
893(porting)S
1125(of)S
1209(software\).)S
1547(Phase)S
1739(2)S
1799(represented)S
2155(capabilities)S
2507(that)S
2639(were)S
2803(relatively)S
3137 2493(e)U
577 2577(t)U
577 2493(well)U
725(understood)S
1069(\(little)S
1249(research)S
1513(required\))S
1801(but)S
1917(would)S
2121(require)S
2349(development)S
2745(activity)S
2985(befor)S
597 2577(hey)U
725(could)S
909(be)S
1001(used)S
1157(to)S
1237(support)S
1477(the)S
1589(policies)S
1837(for)S
1945(interconnection.)S
2459(Phase)S
2651(3)S
2711(capabilities)S
577 2661(require)U
805(research)S
1069(to)S
1149(achieve,)S
1411(and)S
1539(thus)S
1683(represent)S
1971(the)S
2083(most)S
2247(future)S
2443(capability.)S
727 2769(While)U
927(these)S
1099(phases)S
1315(of)S
1399(capability)S
1707(represent)S
1995(evolution)S
2291(in)S
2371(availability,)S
2737(they)S
2885(should)S
577 2937(d)U
577 2853(not)U
693(be)S
785(viewed)S
1017(as)S
1101(evolution)S
1397(in)S
1477(starting)S
1717(time)S
1869(for)S
1977(action.)S
2219(In)S
2303(all)S
2399(cases,)S
2593(research)S
2857(and)S
613 2937(evelopment)U
973(activities)S
1257(would)S
1461(have)S
1621(to)S
1701(start)S
1849(today)S
2033(in)S
2113(order)S
2289(that)S
2421(these)S
2593(capabilities)S
2945(be)S
577 3021(available)U
861(in)S
941(a)S
997(timely)S
1205(manner.)S
727 3129(As)U
831(the)S
943(working)S
1207(group)S
1399(on)S
1495(access)S
1703(control)S
1931(discussed)S
2231(the)S
2343(required)S
2607(technologies)S
2995(and)S
3123 3213(l)U
577 3297(p)U
577 3213(mechanisms,)U
975(it)S
1039(became)S
1283(clear)S
1447(that)S
1579(an)S
1671(important)S
1975(technology)S
2319(driver)S
2515(was)S
2651(the)S
2763(need)S
2923(to)S
3003(labe)S
613 3297(ackets)U
817(with)S
969(the)S
1081(appropriate)S
1433(information)S
1797(to)S
1877(make)S
2057(determinations)S
2509(of)S
2593(routing)S
2825(and)S
3005 3381(n)U
577 3465(l)U
577 3381(resource)U
845(allocation)S
1153(internal)S
1397(to)S
1477(the)S
1589(interconnected)S
2037(networks.)S
2367(For)S
2491(example,)S
2777(if)S
2845(certai)S
597 3465(inks)U
741(in)S
821(a)S
877(NASA)S
1097(network)S
1357(was)S
1493(to)S
1573(be)S
1665(restricted)S
1957(to)S
2037(use)S
2157(only)S
2309(by)S
2405(NASA)S
2625(users)S
2797(\(even)S
2981(if)S
3131 3549(h)U
577 3633(l)U
577 3549(accessing)U
877(the)S
989(network)S
1249(through)S
1497(an)S
1589(NSF)S
1745(network\),)S
2047(it)S
2111(would)S
2315(be)S
2407(necessary)S
2711(to)S
2791(provide)S
3035(suc)S
597 3633(abelling)U
853(information)S
1217(in)S
1297(the)S
1409(packet.)S
1663(The)S
1799(report)S
1995(of)S
2079(the)S
2191(working)S
2455(group)S
2647(discusses)S
2939(the)S
3129 3717(d)U
577 3801(s)U
577 3717(information)U
941(that)S
1073(needs)S
1261(to)S
1341(be)S
1433(carried)S
1657(in)S
1737(such)S
1893(labels,)S
2103(requirements)S
2503(for)S
2611(authentication,)S
3061(an)S
605 3801(ome)U
753(potential)S
1029(experiments)S
1405(and)S
1533(development)S
1929(that)S
2061(should)S
2277(be)S
2369(carried)S
2593(out)S
2709(to)S
2789(achieve)S
3033(the)S
577 3885(required)U
841(capability.)S
727 3993(The)U
863(working)S
1127(group)S
1319(on)S
1415(resource)S
1683(sharing)S
1919(focussed)S
2195(on)S
2291(the)S
2403(technologies)S
2791(that)S
2923(would)S
3099 4077(t)U
577 4161(e)U
577 4077(allow)U
761(fair)S
885(sharing)S
1121(of)S
1205(resources)S
1501(between)S
1765(the)S
1877(participating)S
2265(agencies.)S
2579(The)S
2715(key)S
2843(issue)S
3011(tha)S
609 4161(merged)U
849(from)S
1013(the)S
1125(discussions)S
1477(of)S
1561(this)S
1689(working)S
1953(group)S
2145(was)S
2281(the)S
2393(need)S
2553(to)S
2633(develop)S
2885(global)S
60 Z
3149 4413(])U
577(Leiner)S
2962([Page)S
3119(3)S
EP
%%Page: ? 6
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
577 765(e)U
577 681(algorithms)U
909(that)S
1041(permitted)S
1341(sharing)S
1577(and)S
1705(prioritization)S
2105(of)S
2189(the)S
2301(use)S
2421(of)S
2505(resources.)S
2843(As)S
2947(an)S
609 765(xample,)U
863(it)S
927(is)S
999(relatively)S
1295(easy)S
1447(for)S
1555(an)S
1647(agency)S
1875(to)S
1955(block)S
2139(low-priority)S
2511(traf\256c)S
2707(from)S
2871(traversing)S
3127 849(d)U
577 933(a)U
577 849(its)U
669(network)S
929(during)S
1141(a)S
1197(period)S
1405(of)S
1489(high)S
1641(internal)S
1885(requirement.)S
2299(It)S
2367(is)S
2439(not)S
2555(so)S
2643(easy)S
2795(to)S
2875(do)S
2971(so)S
3059(an)S
609 933(ssure)U
781(that)S
913(the)S
1025(external)S
1281(users)S
1453(still)S
1585(can)S
1709(receive)S
1941(the)S
2053(resources)S
2349(they)S
2497(need)S
2657(from)S
2821(the)S
577 1017(interconnected)U
1025(internet.)S
727 1125(The)U
863(working)S
1127(group)S
1319(on)S
1415(end-to-end)S
1751(services)S
2007(focussed)S
2283(on)S
2379(those)S
2555(services)S
2811(that)S
2943(are)S
3115 1209(d)U
577 1293(a)U
577 1209(required)U
841(from)S
1005(a)S
1061(user's)S
1257(perspective)S
1609(from)S
1773(the)S
1885(overall)S
2109(system,)S
2351(and)S
2479(need)S
2639(to)S
2719(be)S
2811(coordinate)S
609 1293(cross)U
781(the)S
893(interconnected)S
1341(networks.)S
1671(For)S
1795(example,)S
2081(directory)S
2365(and)S
2493(security)S
2745(services)S
3001(must)S
577 1461(g)U
577 1377(be)U
669(provided)S
949(across)S
1153(the)S
1265(interconnected)S
1713(system.)S
1979(The)S
2115(key)S
2243(element)S
2495(emerging)S
2791(from)S
2955(the)S
613 1461(roup)U
769(discussions)S
1121(was)S
1257(the)S
1369(need)S
1529(to)S
1609(establish)S
1885(a)S
1941(consistent)S
2253(set)S
2357(of)S
2441(mechanisms)S
2821(to)S
2959 1545(e)U
577 1629(m)U
577 1545(interconnect)U
957(the)S
1069(various)S
1305(end-to-end)S
1641(services.)S
1939(These)S
2135(must)S
2299(be)S
2391(provided)S
2671(in)S
2751(a)S
2807(secur)S
633 1629(anner)U
817(to)S
897(assure)S
1101(that)S
1233(the)S
1345(security)S
1597(services)S
1853(ful\256ll)S
2037(their)S
2193(function.)S
3059 1737(d)U
577 1821(a)U
727 1737(The)U
863(working)S
1127(groups)S
1347(identi\256ed)S
1643(the)S
1755(need)S
1915(to)S
1995(carry)S
2167(out)S
2283(supporting)S
2615(experiments)S
2991(an)S
609 1821(nalysis)U
833(to)S
913(carry)S
1085(forward)S
1337(the)S
1449(interconnection)S
1921(of)S
2005(the)S
2117(networks,)S
2423(e.g.,)S
2569(to)S
2649(make)S
2829(decisions)S
577 1989(p)U
577 1905(about)U
761(the)S
873(need)S
1033(for)S
1141(stream)S
1357(versus)S
1565(transaction)S
1905(support.)S
2187(Each)S
2355(group)S
2547(developed)S
2867(a)S
2923(set)S
3027(of)S
613 1989(ossible)U
837(experiments)S
1213(and)S
1341(activities)S
1625(in)S
1705(accordance)S
2053(with)S
2205(the)S
2317(phases)S
2533(of)S
2617(development)S
577 2073(discussed)U
877(above.)S
1115(These)S
1311(are)S
1423(summarized)S
1799(in)S
1879(Tables)S
2095(I-III.)S
727 2181(A)U
803(number)S
1047(of)S
1131(possible)S
1391(follow-on)S
1699(activities)S
1983(were)S
2147(identi\256ed)S
2443(to)S
2523(be)S
2615(passed)S
2831(on)S
2927(to)S
3007(the)S
577 2265(various)U
813(Task)S
977(Forces)S
1193(of)S
1277(the)S
1389(IAB.)S
1579(These)S
1775(are)S
1887(shown)S
2099(in)S
2179(Table)S
2367(IV.)S
727 2373(In)U
811(summary,)S
1121(the)S
1233(workshop)S
1541(identi\256ed)S
1837(a)S
1893(number)S
2137(of)S
2221(critical)S
2445(issues)S
2641(and)S
2769(identi\256ed)S
3019 2457(e)U
577 2541(r)U
577 2457(areas)U
749(where)S
949(further)S
1169(research)S
1433(and)S
1561(experimentation)S
2053(is)S
2125(required.)S
2431(It)S
2499(is)S
2571(hoped)S
2771(that)S
2903(thes)S
601 2541(esults)U
789(help)S
937(provide)S
1181(a)S
1237(``road)S
1437(map'')S
1633(for)S
1741(how)S
1889(to)S
1969(satisfy)S
2181(agency)S
2409(policies)S
2657(and)S
2785(requirements)S
60 Z
577 4413(L)U
72 Z
577 2625(in)U
657(the)S
769(interconnection)S
1241(of)S
1325(networks.)S
60 Z
614 4413(einer)U
2962([Page)S
3119(4])S
EP
%%Page: ? 7
BP
1 F
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
1767 681(Table)U
1955(I)S
2197 765(s)U
577 1041(P)U
1521 765(Access)U
1749(Control)S
1993(Project)S
617 1041(hase)U
769(0)S
1009(Access)S
1237(Control)S
1481(based)S
1669(on)S
1765(source/destination)S
2313(access)S
2521(matrix)S
2733(\(for)S
2865(traf\256c)S
3061(not)S
577 1233(P)U
1009 1125(transiting)U
1305(network\))S
617 1233(hase)U
769(1)S
2 F
1009(Statspy)S
1 F
1241(experiment)S
1589(to)S
1669(determine)S
1981(and)S
2109(de\256ne)S
2309(requirement)S
2681(for)S
2789(transactions)S
1009 1425(a)U
1009 1341(``ESnet)U
1253(hack'')S
1461(for)S
1569(limited)S
1797(access)S
2005(control)S
2233(based)S
2421(on)S
2517(source/destination)S
1041 1425(ddresses.)U
1009 1533(`)U
(`Xerox)R
1261(hack'')S
1469(for)S
1577(limited)S
1805(access)S
2013(control)S
2241(based)S
2429(on)S
2525(source/destination)S
577 1725(P)U
1009 1617(addresses.)U
617 1725(hase)U
769(2)S
1009(Coloring)S
1289(of)S
1373(stream)S
1589(packets)S
1009 1941(R)U
1009 1833(Simple)U
1237(colors/labelling)S
1057 1941(oute)U
1205(\256ltering)S
1457(for)S
1565(access)S
1773(control)S
2001(using)S
2181(source/destination)S
2729(addresses)S
1009 2157(A)U
1009 2049(Incorporate)U
1365(``Xerox)S
1617(hack'')S
1825(into)S
1961(other)S
2133(gateways)S
1061 2157(uthentication)U
1461(and)S
1589(signature)S
1877(architecture)S
577 2265(Phase)U
769(3)S
1009(Use)S
1145(of)S
1229(complex)S
1501(credentials)S
1009 2373(Use)U
1145(of)S
1229(policy)S
1433(gateways)S
1725(in)S
1805(route)S
1977(computation)S
60 Z
3149 4413(])U
577(Leiner)S
2962([Page)S
3119(5)S
EP
%%Page: ? 8
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
1703 765(R)U
1971 681(Table)U
2159(II)S
1751 765(esource)U
1995(Sharing)S
2243(Projects)S
577 1149(P)U
577 1041(Phase)U
769(0)S
1009(Simple)S
1237(route)S
1409(\256ltering)S
617 1149(hase)U
769(1)S
1009(Run)S
2 F
1153(Statspy)S
1 F
1385(to)S
1465(determine)S
1777(source/destination)S
2325(traf\256c)S
2521(\257ows)S
2701(\(to)S
2805(comply)S
577 1341(P)U
1009 1233(with)U
1161(A130)S
1345(traf\256c)S
1541(monitoring)S
1885(requirements\))S
617 1341(hase)U
769(2/3)S
1009(50/50)S
1197(resource)S
1465(management)S
1857(for)S
1965(link)S
2101(sharing)S
2913 1449(g)U
1009 1557(F)U
1009 1449(Color)U
1197(packets)S
1437(and)S
1565(observe)S
1813(behavior)S
2089(to)S
2169(improve)S
2433(traf\256c)S
2629(monitorin)S
1049 1557(ast)U
1153(encryption)S
1485(of)S
1569(route)S
1741(and)S
1869(certi\256cate)S
2177(packets,)S
2435(to)S
2515(secure)S
2723(traf\256c)S
1009 1749(F)U
1009 1641(monitoring)U
1353(and)S
1481(control)S
1049 1749(ast)U
1153(mapping)S
1429(from)S
1593(source/destination)S
2141(to)S
2221(packet)S
2433(label/color)S
1009 1965(D)U
1009 1857(Demonstration)U
1461(of)S
1545(gateway)S
1809(using)S
1989(soft)S
2121(state)S
1061 1965(e\256ne)U
1225(and)S
1353(support)S
1593(policy)S
1797(source)S
2009(routing)S
1009 2181(M)U
1009 2073(Synthesis)U
1309(of)S
1393(source)S
1605(route)S
1073 2181(anagement)U
1409(controls)S
1665(and)S
1793(protocols)S
1009 2397(D)U
1009 2289(Composition)U
1405(of)S
1489(policy)S
1693(terms)S
1061 2397(e\256ne)U
1225(and)S
1353(structure)S
1629(route)S
1801(set-up)S
2001(protocols)S
60 Z
3149 4413(])U
577(Leiner)S
2962([Page)S
3119(6)S
EP
%%Page: ? 9
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
1659 765(E)U
1959 681(Table)U
2147(III)S
1703 765(nd-to-End)U
2019(Services)S
2287(Projects)S
2969 1041(\))U
577(Phase)S
769(0)S
1009(User/process)S
1405(authentication)S
1837(using)S
2017(passwords)S
2341(\(origin)S
2561(authentication)S
1009 1149(Mail)U
1169(relays)S
1365(for)S
1473(both)S
1625(function)S
1889(and)S
2017(system)S
2241(isolation)S
2665 1257(g)U
577 1365(P)U
1009 1257(Name)U
1205(domains)S
1473(system)S
1697(for)S
1805(host)S
1949(name)S
2129(to)S
2209(address)S
2449(mappin)S
617 1365(hase)U
769(1)S
1009(User/process)S
1405(authentication)S
1837(using)S
2017(challenge/response)S
2589(or)S
2673(some)S
2849(other)S
1009 1557(S)U
1009 1449(protocol)U
1273(\(origin)S
1493(authentication\))S
1049 1557(ecure-ID)U
1329(or)S
1413(other)S
1585(authentication)S
2017(technologies)S
2921 1665(\))U
1009 1773(K)U
1009 1665(Challenge/response)U
1597(technologies)S
1985(\(overlaps)S
2277(with)S
2429(the)S
2541(previous)S
2813(line)S
1061 1773(erberos)U
1297(\(authentication)S
1753(server\))S
577 1881(Phase)U
769(2)S
1009(Authentication)S
1461(using)S
1641(certi\256cates)S
1009 1989(Integrity)U
1281(\(MACs,)S
1539(checksums\))S
1903(and)S
2031(labelling)S
1009 2205(S)U
1009 2097(Key)U
1153(distribution)S
1509(and)S
1637(management)S
1049 2205(ecure)U
1229(mail)S
1381(\(see)S
1521(RFC)S
1681(1113\))S
1009 2421(S)U
1009 2313(Certi\256cates)U
1361(\(see)S
1501(same)S
1673(RFC\))S
1049 2421(ecurity)U
1273(of)S
1357(distributed)S
1689(white)S
1873(pages)S
2313 2529(\))U
1009 2637(D)U
1009 2529(Integrity)U
1281(labelling,)S
1575(tools)S
1739(\(MACs,)S
1997(checksums)S
1061 2637(istributed)U
1357(white)S
1541(pages)S
1729(for)S
1837(the)S
1949(entire)S
2137(Internet)S
577 2745(Phase)U
769(3)S
1009(Use)S
1145(of)S
1229(VISAs)S
1009 2853(Certi\256cation)U
1393(across)S
1597(peer)S
1745(domains)S
1009 3069(N)U
1009 2961(Distributed)U
1357(computation)S
1061 3069(ational)U
1281(\256le)S
1397(system)S
1009 3285(F)U
1009 3177(Trusted)U
1253(accounting)S
1049 3285(irewalls)U
1301(for)S
1409(end-to-end)S
1745(services)S
1009 3393(I)U
(ntegrity)R
1281(of)S
1365(data)S
1509(across)S
1713(international)S
2101(boundaries)S
2441(with)S
2593(agreed)S
2809(upon)S
1009 3585(U)U
1009 3477(cryptographic)U
1433(technologies)S
1061 3585(se)U
1145(zero-sum)S
1437(knowledge)S
1777(to)S
1857(have)S
2017(a)S
2073(third)S
2233(party)S
2405(to)S
2485(assure)S
2689(integrity)S
60 Z
577 4413(L)U
72 Z
1009 3669(without)U
1253(secrecy)S
1493(for)S
1601(such)S
1757(cases)S
60 Z
614 4413(einer)U
2962([Page)S
3119(7])S
EP
%%Page: ? 10
BP
1 F
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
1957 681(Table)U
2145(IV)S
2495 765(s)U
1655(Projects)S
1911(for)S
2019(IAB)S
2167(Task)S
2331(Force)S
2241 1041(s)U
577 1149(A)U
577 1041(ETETF)U
1009(Handling)S
1301(of)S
1385(quality)S
1609(of)S
1693(service)S
1921(in)S
2001(gateway)S
629 1149(NTF)U
1009(Phases)S
1229(2)S
1289(and)S
1417(3)S
1477(of)S
1561(resource)S
1829(sharing)S
2065(activities)S
577 1365(P)U
577 1257(IETF)U
1009(Policy)S
1217(routing)S
617 1365(rivacy)U
1009(End-to-end)S
1357(privacy)S
1597(services)S
60 Z
577 4413(L)U
72 Z
577 1473(???)U
1009(End-to-end)S
1357(services)S
60 Z
614 4413(einer)U
2962([Page)S
3119(8])S
EP
%%Page: ? 11
BP
3 F
84 Z
577 681(3)U
1 F
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
3 F
84 Z
619 681(.)U
696(Working)S
1046(Group)S
1312(on)S
1429(Interconnection)S
2026(Policie)S
2262(s)S
72 Z
577 837(Working)U
877(Group)S
1105(0)S
1165(Members)S
1 F
697 945(Steve)U
881(Wolff)S
1077(\(Chair\))S
1993(NSF)S
2093 1029(e)U
697 1113(M)U
697 1029(Guy)U
845(Almes)S
1993(Ric)S
761 1113(att)U
857(Bishop)S
1993(Dartmouth)S
697 1281(S)U
697 1197(Brian)U
881(Boesch)S
1993(DARPA)S
737 1281(cott)U
869(Brim)S
1993(Cornell)S
697 1449(D)U
697 1365(Phill)U
857(Gross)S
1993(NRI)S
749 1449(an)U
841(Hitchcock)S
1993(DoE)S
2093 1533(A)U
697 1617(T)U
697 1533(Russ)U
861(Mundy)S
1993(DC)S
741 1617(ony)U
873(Villasenor)S
1993(NASA)S
3055 1749(e)U
577 1833(b)U
727 1749(Network)U
1003(resource)S
1271(sharing)S
1507(is)S
1579(encouraged)S
1935(by)S
2031(the)S
2143(potential)S
2419(for)S
2527(economies)S
2859(of)S
2943(scal)S
613 1833(oth)U
729(in)S
809(communication)S
1281(link)S
1417(acquisition)S
1757(cost)S
1897(and)S
2025(in)S
2105(provision)S
2401(of)S
2485(value-added)S
2861(network)S
3067 1917(e)U
577 2001(c)U
577 1917(services)U
833(\(the)S
969(latter)S
1141(not)S
1257(yet)S
1369(demonstrated)S
1781(in)S
1861(the)S
1973(Internet,)S
2239(but)S
2355(consistent)S
2667(with)S
2819(telephon)S
609 2001(ompany)U
865(experience\);)S
1245(it)S
1309(is)S
1381(suggested)S
1689(by)S
1785(the)S
1897(Congressionally-ordered)S
2633(network)S
2893(study)S
2 F
577 2169(P)U
1 F
577 2085(that)U
709(resulted)S
961(in)S
1041(the)S
1153(OSTP)S
1353(report)S
2 F
1549(A)S
1617(Research)S
1909(and)S
2041(Development)S
2445(Strategy)S
2709(for)S
2817(High)S
621 2169(erformance)U
977(Computing;)S
1 F
1345(and)S
1473(it)S
1537(is)S
1609(mandated)S
1913(by)S
2009(OMB)S
2197(Circular)S
2457(A-130.)S
2707(Technical)S
3065 2253(s)U
577 2337(t)U
577 2253(forces)U
777(in)S
857(the)S
969(same)S
1141(direction)S
1421(include)S
1657(the)S
1769(additional)S
2081(connectivity)S
2461(each)S
2617(agency)S
2845(provide)S
597 2337(o)U
657(its)S
749(clients)S
961(\(actual)S
1181(or)S
1265(potential\))S
1565(by)S
1661(acquiring)S
1957(the)S
2069(use)S
2189(of)S
2273(nets)S
2413(belonging)S
2725(to)S
2805(other)S
3047 2421(f)U
577 2505(r)U
577 2421(agencies)U
849(at)S
925(little)S
1081(or)S
1165(no)S
1261(additional)S
1573(cost,)S
1731(and)S
1859(the)S
1971(robustness)S
2299(afforded)S
2567(by)S
2663(the)S
2775(sharing)S
3011(o)S
601 2505(edundant)U
889(paths)S
1065(or)S
1149(other)S
1321(forms)S
1513(of)S
1597(``excess'')S
1905(capacity.)S
3019 2613(d)U
577 2697(r)U
727 2613(The)U
863(agencies)S
1135(represented)S
1491(on)S
1587(the)S
1699(FRICC,)S
1949(however,)S
2239(have)S
2399(differing)S
2675(missions)S
2951(an)S
601 2697(equirements,)U
995(and)S
1123(these)S
1295(differences)S
1639(are)S
1751(re\257ected)S
2023(in)S
2103(differing)S
2379(rules)S
2543(and)S
2671(procedures)S
3011(for)S
3099 2781(C)U
577 2865(a)U
577 2781(network)U
837(usage.)S
1067(WG0)S
1247(was)S
1383(created)S
1615(to)S
1695(explicate)S
1979(the)S
2091(rules)S
2255(for)S
2363(network)S
2623(use)S
2743(of)S
2827(the)S
2939(FRIC)S
609 2865(gencies,)U
867(for)S
975(those)S
1151(rules)S
1315(--)S
1387(particularly)S
1743(the)S
1855(differences)S
2199(among)S
2419(them)S
2587(--)S
2659(form)S
2823(the)S
3097 2949(e)U
577 3033(b)U
577 2949(foundation)U
913(upon)S
1081(which)S
1281(the)S
1393(technical)S
1677(speci\256cations)S
2093(of)S
2177(``policy-based)S
2617(routing'')S
2897(must)S
3061(b)S
613 3033(uilt.)U
775(This)S
927(report,)S
1141(therefore,)S
1443(is)S
1515(the)S
1627(primary)S
1879(input)S
2051(to)S
2131(the)S
2243(technical)S
2527(Working)S
2807(Groups)S
577 3117(WG1,)U
775(WG2,)S
973(and)S
1101(WG3.)S
727 3225(Making)U
975(all)S
1071(FRICC)S
1303(agencies')S
1599(network)S
1859(use)S
1979(rules)S
2143(the)S
2255(same)S
2427(is)S
2499(NOT)S
2671(a)S
2727(goal)S
2875(of)S
2959(WG0.)S
577 3393(i)U
577 3309(Each)U
745(FRICC)S
977(agency)S
1205(has)S
1325(more-or-less)S
1713(well-formulated)S
2201(rules)S
2365(for)S
2473(the)S
2585(use)S
2705(of)S
2789(its)S
2881(network)S
597 3393(n)U
657(the)S
769(absence)S
1021(of)S
1105(explicit)S
1345(interconnection)S
1817(with)S
1969(other)S
2141(networks)S
2429(and)S
2557(the)S
2669(attendant)S
3027 3477(r)U
577 3561(i)U
577 3477(``foreign'')U
905(traf\256c.)S
1143(These)S
1339(rules)S
1503(are)S
1615(given)S
1799(below.)S
2041(Currently,)S
2359(no)S
2455(agency)S
2683(has)S
2803(rules)S
2967(fo)S
597 3561(nterconnection)U
1049(with:)S
577 3669(-)U
757(networks)S
1045(of)S
1129(other)S
1301(FRICC)S
1533(agencies,)S
577 3885(-)U
577 3777(-)U
757(networks)S
1045(of)S
1129(other)S
1301(countries,)S
757 3885(commercial)U
1121(networks,)S
1427(or)S
577 3993(-)U
757(``sensitive'')S
1129(networks)S
1417(\(e.g.,)S
1587(SDInet,)S
1833(NASA)S
2053(mission-critical)S
2525(nets\);)S
2953 4101(.)U
60 Z
577 4413(L)U
72 Z
577 4101(consistent)U
889(formulation)S
1253(of)S
1337(such)S
1493(rules)S
1657(will)S
1793(be)S
1885(discussed)S
2185(in)S
2265(future)S
2461(FRICC)S
2693(meetings)S
60 Z
614 4413(einer)U
2962([Page)S
3119(9])S
EP
%%Page: ? 12
BP
1 F
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
727 681(It)U
795(was)S
931(however)S
1203(noted)S
1387(that,)S
1537(in)S
1617(dealing)S
1853(with)S
2005(subordinate)S
2365(\(not)S
2505(peer\))S
2677(networks,)S
2983(NSF)S
577 849(a)U
577 765(has)U
697(required)S
961(traf\256c)S
1157(presented)S
1457(to)S
1537(the)S
1649(NSFnet)S
1893(backbone)S
2193(to)S
2273(conform)S
2541(to)S
2621(NSF)S
2777(rules)S
2941(of)S
609 849(cceptable)U
905(use;)S
1045(DoE)S
1201(on)S
1297(the)S
1409(other)S
1581(hand)S
1745(is)S
1817(tending)S
2057(to)S
2137(the)S
2249(more)S
2421(liberal)S
2629(policy)S
2833(of)S
2917(carrying)S
577 1017(t)U
577 933(any)U
705(traf\256c)S
901(that)S
1033(meets)S
1225(the)S
1337(rules)S
1501(for)S
1609(acceptable)S
1937(use)S
2057(of)S
2141(the)S
2253(agency)S
2481(network)S
2741(offering)S
2997(the)S
597 1017(raf\256c.)U
3 F
577 1173(3)U
(.1.)R
733(Existing)S
1009(Policies,)S
1283(Summarized)S
1 F
727 1281(T)U
(he)R
863(following)S
1167(is)S
1239(a)S
1295(summary)S
1587(of)S
1671(the)S
1783(existing)S
2035(policies)S
2283(for)S
2391(network)S
2651(usage)S
2839(of)S
2923(the)S
3 F
577 1521(N)U
1 F
577 1365(FRICC)U
809(member)S
1069(agencies.)S
3 F
629 1521(SF)U
737(\(draft,)S
959(summarized\):)S
1 F
577 1629(-)U
757(Purpose)S
1013(is)S
1085(to)S
1165(support)S
1405(scienti\256c)S
1689(research)S
1953(and)S
2081(other)S
2253(scholarly)S
2541(activities.)S
3073 1737(n)U
577(-)S
757(Use)S
893(to)S
973(support)S
1213(research)S
1477(or)S
1561(instruction)S
1893(at)S
1969(not-for-pro\256t)S
2373(institutions)S
2717(of)S
2801(instructio)S
757 1821(and/or)U
965(research)S
1229(is)S
1301(acceptable,)S
1647(whether)S
1903(all)S
1999(parties)S
2215(to)S
2295(the)S
2407(use)S
2527(are)S
2639(located)S
2871(or)S
577 2013(-)U
757 1905(employed)U
1065(at)S
1141(such)S
1297(institutions)S
1641(or)S
1725(not.)S
757 2013(Activities)U
1061(in)S
1141(direct)S
1329(support)S
1569(of)S
1653(acceptable)S
1981(use)S
2101(are)S
2213(acceptable.)S
2941 2121(e)U
577(-)S
757(Use)S
893(for)S
1001(research)S
1265(or)S
1349(instruction)S
1681(by)S
1777(for-pro\256t)S
2065(institutions)S
2409(may)S
2557(or)S
2641(may)S
2789(not)S
2905(b)S
757 2205(acceptable,)U
1103(and)S
1231(will)S
1367(be)S
1459(reviewed)S
1747(case-by-case.)S
2769 2313(.)U
3 F
577 2469(D)U
1 F
577 2313(-)U
757(Commercial)S
1137(use)S
1257(by)S
1353(for-pro\256t)S
1641(institutions)S
1985(is)S
2057(generally)S
2349(not)S
2465(acceptable)S
3 F
629 2469(oE)U
737(\(draft,)S
959(summarized\):)S
1 F
577 2577(-)U
757(Use)S
893(in)S
973(which)S
1173(at)S
1249(least)S
1405(one)S
1533(party)S
1705(is)S
1777(supported)S
2085(by)S
2181(Energy)S
2413(Sciences)S
2689(funds)S
2873(is)S
577 2769(-)U
757 2661(acceptable.)U
757 2769(Use)U
893(by)S
989(persons)S
1233(at)S
1309(DoE)S
1465(sites)S
1617(is)S
1689(acceptable,)S
2035(even)S
2195(if)S
2263(they)S
2411(are)S
2523(not)S
2639(supported)S
2947(by)S
577 2961(-)U
757 2853(Energy)U
989(Sciences)S
1265(funds.)S
757 2961(Advertising)U
1121(or)S
1205(promotional)S
1581(activities)S
1865(are)S
1977(not)S
2093(acceptable.)S
2793 3069(.)U
3 F
577 3225(N)U
1 F
577 3069(-)U
757(Use)S
893(in)S
973(direct)S
1161(competition)S
1529(with)S
1681(commercial)S
2045(services)S
2301(is)S
2373(not)S
2489(acceptable)S
3 F
629 3225(ASA)U
797(\(draft,)S
1019(summarized\):)S
1 F
577 3333(-)U
757(Purposes)S
1041(are)S
1153(to)S
1233(support)S
1473(NASA)S
1693(space)S
1877(science)S
2113(programs,)S
2427(to)S
2507(support)S
2747(collaborating)S
757 3501(c)U
757 3417(science)U
993(activities)S
1277(\(e.g.,)S
1447(with)S
1599(ESA,)S
1777(NOAA,)S
2027(USGS\),)S
2277(and)S
2405(to)S
2485(support)S
2725(NASA)S
789 3501(ontractors)U
1101(\(e.g.,)S
1271(those)S
1447(involved)S
1723(in)S
1803(building)S
2067(scienti\256c)S
2351(sensors)S
2587(and)S
2715(spaceborne)S
577 3693(-)U
757 3585(hardware\).)U
757 3693(Other)U
945(activities)S
1229(may)S
1377(be)S
1469(supported)S
1777(on)S
1873(a)S
1929(case-by-case)S
2321(basis,)S
2507(provided)S
2787(there)S
2955(is)S
3027(no)S
577 3885(-)U
757 3777(impact)U
977(to)S
1057(the)S
1169(NASA)S
1389(programs.)S
757 3885(No)U
869(Eastern)S
1109(bloc)S
1257(access.)S
577 3993(-)U
757(Shared)S
981(use)S
1101(of)S
1185(network)S
1445(facilities)S
1717(must)S
1881(be)S
1973(controllable)S
2341(and)S
2469(annually)S
2741(accounted)S
3057(for.)S
577 4101(-)U
757(NASA)S
977(networking)S
1329(facilities)S
1601(may)S
1749(be)S
1841(made)S
2021(available)S
2305(for)S
2413(other)S
2585(uses)S
2733(and)S
2861(users)S
3033(on)S
3129(a)S
757 4185(cost-reimbursable)U
1297(basis.)S
60 Z
577 4413(L)U
(einer)R
2932([Page)S
3089(10])S
EP
%%Page: ? 13
BP
1 F
72 Z
577 681(-)U
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
757 681(Direct)U
961(competition)S
1329(with)S
1481(commercial)S
1845(services)S
2101(is)S
2173(not)S
2289(acceptable.)S
577 945(-)U
3 F
577 837(DARPA:)U
1 F
757 945(Purpose)U
1013(is)S
1085(to)S
1165(support)S
1405(network)S
1665(research)S
1929(and)S
2057(other)S
2229(DARPA)S
2497(research)S
2761(objectives.)S
3 F
577 1209(D)U
1 F
577 1053(-)U
757(There)S
949(may)S
1097(be)S
1189(``forbidden)S
1541(routes'')S
1789(for)S
1897(some)S
2073(traf\256c.)S
3 F
629 1209(DN)U
757(\(excluding)S
1101(ARPANET)S
1473(and)S
1613(the)S
1733(proposed)S
2041(DRI\):)S
1 F
2687 1317(.)U
577 1425(-)U
577 1317(-)U
757(Use)S
893(is)S
965(for)S
1073(DoD)S
1237(business)S
1505(only,)S
1675(unless)S
1879(otherwise)S
2183(approved)S
2475(by)S
2571(JCS)S
757 1425(All)U
873(connections)S
1241(to)S
1321(other)S
1493(nets)S
1633(strictly)S
1857(regulated)S
2149(by)S
2245(mailbridges)S
2609(\(now\))S
2805(or)S
2889(trusted)S
577 1617(-)U
757 1509(guard)U
945(gateways)S
1237(\(future\).)S
757 1617(Facilities)U
1045(must)S
1209(comply)S
1449(with)S
1601(DoD)S
1765(Security)S
2029(Architecture)S
2413(and)S
2541(with)S
2693(DoD)S
2857(Directive)S
3 F
577 1857(3)U
1 F
757 1701(5200.28)U
1015(which)S
1215(requires)S
1471(C2)S
1579(certi\256cation)S
1947(for)S
2055(sensitive)S
2331(unclassi\256ed)S
2695(information.)S
3 F
613 1857(.2.)U
733(Re\256ned)S
993(Policy)S
1205(Statements)S
1 F
727 1965(A)U
(s)R
831(a)S
887(result)S
1071(of)S
1155(the)S
1267(\256rst)S
1403(workshop)S
1711(discussions)S
2063(on)S
2159(policy,)S
2381(Dr.)S
2499(Cerf)S
2651(met)S
2783(with)S
2935(the)S
2999 2049(e)U
577 2133(m)U
577 2049(various)U
813(agency)S
1041(representatives)S
1497(to)S
1577(re\256ne)S
1765(the)S
1877(policy)S
2081(statements.)S
2451(The)S
2587(results)S
2799(of)S
2883(thes)S
633 2133(eetings)U
861(were)S
1025(as)S
1109(follows.)S
1391(Note)S
1555(that)S
1687(these)S
1859(statements)S
2187(are)S
2299(those)S
2475(of)S
2559(the)S
2671(workshop)S
2979(and)S
3087 2217(y)U
577 2316(T)U
577 2217(do)U
673(not)S
789(represent)S
1077(of\256cial)S
1305(agency)S
1533(policies.)S
1823(Each)S
1991(policy)S
2195(is)S
2267(represented)S
2623(in)S
2703(Clark's)S
2939(Polic)S
621 2316(erm)U
757(\(PT\))S
913(notation)S
1200(and)S
1328(then)S
1476(described)S
1776(in)S
1856(English.)S
2142(The)S
2278(standard)S
2546(Clark)S
2730(Form)S
2910(for)S
3018(PTs)S
577 2400(\()U
54 Z
1149 2289(1)U
72 Z
601 2400(Hsrc,ARsrc,ARent\)\(Hdst,ARdst,ARexit\))U
5 F
({)R
1 F
(UCI)R
5 F
(}{)R
1 F
(Cg)R
5 F
(})R
1 F
2149(FRICC=)S
5 F
({)R
1 F
(DOE,NASA,DCA,NSF)R
5 F
(})R
1 F
577 2568(\()U
577 2484(where)U
777(H=Host,)S
1047(AR=Autonomous)S
1583(Region,)S
1833(src=source,)S
2187(dst=destination,)S
2669(ent=entry)S
601 2568(previous)U
873(hope\),)S
1079(exit=exit)S
1359(\(last)S
1507(hop,)S
1657(F=Federal)S
1977(Agency)S
2225(Net,)S
2371(Re=Regional,)S
3115 2652(e)U
577 2736(a)U
577 2652(U=University,)U
1015(Co=Commercial)S
1519(Corporation,)S
1909(and)S
2037(Cc=Commercial)S
2537(Carrier.)S
2807(All)S
2923(PTs)S
3059(ar)S
609 2736(ssumed)U
849(to)S
929(be)S
1021(symmetrical)S
1401(in)S
1481(these)S
1653(examples.)S
577 3000(N)U
3 F
577 2892(NSF)U
1 F
629 3000(SF1:)U
937(\(*,*,)S
5 F
({)R
1 F
(F/Re)R
5 F
(})R
1 F
(\)\(*,*,)R
5 F
({)R
1 F
(F/Re)R
5 F
(})R
1 F
1641(\))S
5 F
({)R
1 F
(research,support)R
5 F
(}{)R
1 F
(unauthenticated)R
2721(UCI,)S
2887(no-per-)S
577 3192(i)U
937 3084(pkt)U
1053(charge)S
5 F
(})R
1 F
597 3192(.e.,)U
707(NSF)S
863(will)S
999(carry)S
1171(traf\256c)S
1367(for)S
1475(any)S
1603(host)S
1747(connected)S
2063(to)S
2143(a)S
2199(F/Re)S
2363(network)S
2623(talking)S
2847(to)S
2927(any)S
3276(s)T
577 3360(b)U
577 3276(other)U
749(host)S
893(connected)S
1209(to)S
1289(a)S
1345(F/Re)S
1509(via)S
1621(any)S
1749(F/Re)S
1913(entry)S
2085(and)S
2213(exit)S
2345(network,)S
2623(so)S
2711(long)S
2863(as)S
2947(it)S
3011(i)S
613 3360(eing)U
761(used)S
917(for)S
1025(research)S
1289(or)S
1373(support.)S
1655(There)S
1847(is)S
1919(no)S
2015(authentication)S
2447(of)S
2531(the)S
2643(UCI)S
2791(and)S
2919(no)S
3015(per)S
577 3528(u)U
577 3444(packet)U
789(charging.)S
1107(NSFnet)S
1351(is)S
1423(a)S
1479(backbone)S
1779(and)S
1907(so)S
1995(does)S
2151(not)S
2267(connect)S
2515(directly)S
2759(to)S
613 3528(niversities)U
933(or)S
1017(companies.)S
1391(Thus)S
1559(the)S
1671(indication)S
1983(of)S
5 F
2067({)S
1 F
(F/Re)R
5 F
(})R
1 F
2299(instead)S
2527(of)S
5 F
2611({)S
1 F
(F/Re/U/Co)R
5 F
(})R
1 F
3019(as)S
577 3627(ARent)U
789(and)S
917(ARexit.)S
54 Z
3600(2)T
72 Z
577 3735(N)U
(SF2:)R
937(\()S
5 F
({)R
1 F
(User)R
1155(svcs,)S
1321(Expert)S
1537(Svcs)S
5 F
(})R
1 F
(,)R
5 F
1749({)S
1 F
(NSF)R
5 F
(})R
1 F
(,)R
5 F
({)R
1 F
(F/Re)R
5 F
(})R
1 F
2175(\)\(*,)S
5 F
({)R
1 F
(F/Re)R
5 F
(})R
1 F
(,)R
5 F
({)R
1 F
(F/Re)R
5 F
(})R
1 F
2711(\))S
2931 3843(s)U
577 3927(R)U
577 3843(i.e.,)U
707(NSF)S
863(will)S
999(carry)S
1171(traf\256c)S
1367(to)S
1447(user)S
1591(and)S
1719(expert)S
1923(services)S
2179(hosts)S
2351(in)S
2431(NSF)S
2587(Autonomou)S
625 3927(egion)U
809(\(AR\))S
981(to/from)S
1221(any)S
1349(F/Re)S
1513(AR,)S
1655(via)S
1767(any)S
1895(F/Re)S
2059(AR.)S
2225(These)S
2421(are)S
2533(the)S
2645(only)S
2797(things)S
2997(that)S
0 F
48 Z
577 3984 M
8 22 0 0 16 0 0 18 PS16
601 3984 M
8 22 0 0 16 0 0 18 PS16
625 3984 M
8 22 0 0 16 0 0 18 PS16
649 3984 M
8 22 0 0 16 0 0 18 PS16
673 3984 M
8 22 0 0 16 0 0 18 PS16
697 3984 M
8 22 0 0 16 0 0 18 PS16
721 3984 M
8 22 0 0 16 0 0 18 PS16
745 3984 M
8 22 0 0 16 0 0 18 PS16
769 3984 M
8 22 0 0 16 0 0 18 PS16
793 3984 M
8 22 0 0 16 0 0 18 PS16
817 3984 M
8 22 0 0 16 0 0 18 PS16
841 3984 M
8 22 0 0 16 0 0 18 PS16
865 3984 M
8 22 0 0 16 0 0 18 PS16
889 3984 M
8 22 0 0 16 0 0 18 PS16
913 3984 M
8 22 0 0 16 0 0 18 PS16
937 3984 M
8 22 0 0 16 0 0 18 PS16
961 3984 M
8 22 0 0 16 0 0 18 PS16
985 3984 M
8 22 0 0 16 0 0 18 PS16
1009 3984 M
8 22 0 0 16 0 0 18 PS16
1033 3984 M
8 22 0 0 16 0 0 18 PS16
1057 3984 M
8 22 0 0 16 0 0 18 PS16
1081 3984 M
8 22 0 0 16 0 0 18 PS16
1105 3984 M
8 22 0 0 16 0 0 18 PS16
1129 3984 M
8 22 0 0 16 0 0 18 PS16
1153 3984 M
8 22 0 0 16 0 0 18 PS16
1177 3984 M
8 22 0 0 16 0 0 18 PS16
1201 3984 M
8 22 0 0 16 0 0 18 PS16
1225 3984 M
8 22 0 0 16 0 0 18 PS16
1249 3984 M
8 22 0 0 16 0 0 18 PS16
1273 3984 M
8 22 0 0 16 0 0 18 PS16
1297 3984 M
8 22 0 0 16 0 0 18 PS16
1321 3984 M
8 22 0 0 16 0 0 18 PS16
1345 3984 M
8 22 0 0 16 0 0 18 PS16
1369 3984 M
8 22 0 0 16 0 0 18 PS16
1393 3984 M
8 22 0 0 16 0 0 18 PS16
1417 3984 M
8 22 0 0 16 0 0 18 PS16
1 F
724 4065(D.D.)U
834(Clark,)S
968(``Policy)S
1138(Routing)S
1308(in)S
1361(Internet)S
1525(Protocols,'')S
1766(Version)S
1934(1.1,)S
2022(May)S
2126(19,)S
2202(1988.)S
36 Z
706 4128(2)U
706 4047(1)U
48 Z
740 4146(Note:)U
862(I)S
894(can't)S
1005(actually)S
1171(decide)S
1311(whether)S
1481(it)S
1523(should)S
1667(be)S
1728(as)S
1784(stated)S
1911(above)S
2041(or)S
2097(\(*,)S
5 F
({)R
1 F
(F/Re)R
5 F
(})R
1 F
(,)R
5 F
({)R
1 F
(F/Re)R
5 F
(})R
1 F
(\)\(*,)R
5 F
({)R
1 F
(F/Re)R
5 F
(})R
1 F
(,)R
5 F
({)R
1 F
(F/Re)R
5 F
(})R
1 F
(\))R
60 Z
3149 4413(])U
577(Leiner)S
2932([Page)S
3089(11)S
EP
%%Page: ? 14
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
3 F
72 Z
577 837(D)U
1 F
577 681(directly)U
821(connect)S
1069(to)S
1149(NSFnet.)S
3 F
629 837(OE)U
1 F
577 945(D)U
(OE1:)R
937(\(*,DOE,-\)\(*,*,*\))S
5 F
({)R
1 F
(research,support)R
5 F
(}{)R
1 F
(unauthenticated)R
2477(UCI,)S
2643(no-per-packet)S
577 1137(i)U
937 1029(charge)U
5 F
(})R
1 F
597 1137(.e.,)U
707(DOE)S
879(will)S
1015(carry)S
1187(traf\256c)S
1383(to)S
1463(and)S
1591(from)S
1755(any)S
1883(host)S
2027(directly)S
2271(connected)S
2587(to)S
2667(DOE)S
2839(so)S
2927(long)S
3079(as)S
577 1305(p)U
577 1221(it)U
641(is)S
713(used)S
869(for)S
977(research)S
1241(or)S
1325(support.)S
1607(There)S
1799(is)S
1871(no)S
1967(authentication)S
2399(of)S
2483(the)S
2595(UCI)S
2743(and)S
2871(no)S
2967(per)S
613 1305(acket)U
789(charging.)S
577 1413(D)U
(OE2:)R
937(\(*,*,)S
5 F
({)R
1 F
(F/Re)R
5 F
(})R
1 F
(\)\(*,*,)R
5 F
({)R
1 F
(F/Re)R
5 F
(})R
1 F
1641(\))S
5 F
({}{)R
1 F
(unauthenticated)R
2247(UCI,)S
2413(no-per-pkt)S
2741(charge)S
5 F
(})R
1 F
3011 1521(y)U
577 1605(o)U
577 1521(i.e.,)U
707(DOE)S
879(will)S
1015(carry)S
1187(traf\256c)S
1383(for)S
1491(any)S
1619(host)S
1763(connected)S
2079(to)S
2159(a)S
2215(F/Re)S
2379(network)S
2639(talking)S
2863(to)S
2943(an)S
613 1605(ther)U
749(host)S
893(connected)S
1209(to)S
1289(a)S
1345(F/Re)S
1509(via)S
1621(any)S
1749(F/Re)S
1913(entry)S
2085(and)S
2213(exit)S
2345(network)S
2605(without)S
2849(regard)S
3057(to)S
3117 1689(r)U
577 1773(w)U
577 1689(the)U
689(UCI.)S
879(There)S
1071(is)S
1143(no)S
1239(authentication)S
1671(of)S
1755(the)S
1867(UCI)S
2015(and)S
2143(no)S
2239(per)S
2355(packet)S
2567(charging.)S
2885(\(In)S
2993(othe)S
629 1773(ords,)U
795(DOE)S
967(is)S
1039(more)S
1211(restrictive)S
1523(with)S
1675(its)S
1767(own)S
1915(traf\256c)S
2111(than)S
2259(with)S
2411(traf\256c)S
2607(it)S
2671(is)S
2743(carrying)S
3007(as)S
3 F
577 2013(N)U
1 F
577 1857(part)U
713(of)S
797(a)S
853(resource)S
1121(sharing)S
1357(arrangement.\))S
3 F
629 2013(ASA)U
1 F
577 2121(N)U
(ASA1:)R
937(\(*,*,*\)\(*,NASA,-\))S
5 F
({)R
1 F
(NASA-research,support)R
5 F
(}{)R
1 F
(unauthenticated)R
2745(UCI,no-per-)S
577 2313(i)U
937 2205(packet-charge)U
5 F
(})R
1 F
597 2313(.e.,)U
707(NASA)S
927(will)S
1063(accept)S
1271(any)S
1399(traf\256c)S
1595(to/from)S
1835(members)S
2123(of)S
2207(the)S
2319(NASA)S
2539(AR,)S
2681(but)S
2797(no)S
2893(transit.)S
577 2505(N)U
577 2397(No)U
689(UCI)S
837(authentication)S
1269(and)S
1397(no)S
1493(per)S
1609(packet)S
1821(charge.)S
629 2505(ASA2:)U
937(\(*,)S
5 F
({)R
1 F
(F)R
5 F
(})R
1 F
(,*\)\(*,)R
5 F
({)R
1 F
(F)R
5 F
(})R
1 F
1387(,*\))S
5 F
({)R
1 F
(research,support)R
5 F
(}{)R
1 F
(per-packet)R
2369(accounting,)S
2727(limited)S
2955(to)S
3035(n%)S
577 2697(i)U
937 2589(of)U
1021(available)S
1305(BW)S
5 F
(})R
1 F
597 2697(.e.,)U
707(NASA)S
927(will)S
1063(carry)S
1235(transit)S
1439(traf\256c)S
1635(to/from)S
1875(other)S
2047(federal)S
2271(agency)S
2499(networks)S
2787(if)S
2855(they)S
3003(are)S
577 2880(b)U
577 2781(for)U
685(research)S
949(and)S
1077(if)S
1145(the)S
1257(total)S
1409(use)S
1529(of)S
1613(available)S
1897(BW)S
2037(by)S
2133(non-NASA)S
2485(Federal)S
2725(agencies)S
2997(is)S
613 2880(elow)U
777(n%.)S
54 Z
2853(3)T
72 Z
577 2988(N)U
(ASA3:)R
937(\(*,)S
5 F
({)R
1 F
(Co)R
5 F
(})R
1 F
(,*)R
5 F
(})R
1 F
1279(\(*,)S
5 F
({)R
1 F
(F/R/U)R
5 F
(})R
1 F
(,-\))R
5 F
1695({)S
1 F
(NASA)R
1949(research,support)S
5 F
(})R
2481({)S
1 F
(not)R
2631(authenticated)S
577 3180(i)U
937 3072(UCI,)U
1103(no)S
1199(per)S
1315(packet)S
1527(charge)S
5 F
(})R
1 F
597 3180(.e.,)U
707(NASA)S
927(will)S
1063(carry)S
1235(commercial)S
1599(traf\256c)S
1795(to)S
1875(federal,)S
2117(regional,)S
2395(and)S
2523(university)S
2835(ARs)S
2987(for)S
3141 3264(t)U
577 3348(i)U
577 3264(NASA)U
797(research)S
1061(or)S
1145(support,)S
1403(but)S
1519(it)S
1583(will)S
1719(not)S
1835(allow)S
2019(transit.)S
2265(The)S
2401(particular)S
2701(entry)S
2873(AR)S
2997(is)S
3069(no)S
597 3348(mportant.)U
577 3456(N)U
(ASA4:)R
937(\(*,*,-\)\(*,*,-\))S
5 F
({}{)R
1 F
(per-packet-charge)R
1943(to)S
2023(recoup)S
2243(cost,)S
2401(limited)S
2629(to)S
2709(n%)S
2829(of)S
577 3648(i)U
937 3540(available)U
1221(BW)S
5 F
(})R
1 F
597 3648(.e.,)U
707(On)S
819(a)S
875(case)S
1023(by)S
1119(case)S
1267(basis,)S
1453(NASA)S
1673(will)S
1809(consider)S
2077(non-NASA)S
2429(traf\256c)S
2625(on)S
2721(a)S
2777(cost-)S
0 F
48 Z
577 4017 M
8 22 0 0 16 0 0 18 PS16
1 F
72 Z
577 3732(reimbursed)U
925(basis.)S
1135(It)S
1203(will)S
1339(not)S
1455(carry)S
1627(transit)S
1831(traf\256c)S
2027(on)S
2123(this)S
2251(basis.)S
0 F
48 Z
601 4017 M
8 22 0 0 16 0 0 18 PS16
625 4017 M
8 22 0 0 16 0 0 18 PS16
649 4017 M
8 22 0 0 16 0 0 18 PS16
673 4017 M
8 22 0 0 16 0 0 18 PS16
697 4017 M
8 22 0 0 16 0 0 18 PS16
721 4017 M
8 22 0 0 16 0 0 18 PS16
745 4017 M
8 22 0 0 16 0 0 18 PS16
769 4017 M
8 22 0 0 16 0 0 18 PS16
793 4017 M
8 22 0 0 16 0 0 18 PS16
817 4017 M
8 22 0 0 16 0 0 18 PS16
841 4017 M
8 22 0 0 16 0 0 18 PS16
865 4017 M
8 22 0 0 16 0 0 18 PS16
889 4017 M
8 22 0 0 16 0 0 18 PS16
913 4017 M
8 22 0 0 16 0 0 18 PS16
937 4017 M
8 22 0 0 16 0 0 18 PS16
961 4017 M
8 22 0 0 16 0 0 18 PS16
985 4017 M
8 22 0 0 16 0 0 18 PS16
1009 4017 M
8 22 0 0 16 0 0 18 PS16
1033 4017 M
8 22 0 0 16 0 0 18 PS16
1057 4017 M
8 22 0 0 16 0 0 18 PS16
1081 4017 M
8 22 0 0 16 0 0 18 PS16
1105 4017 M
8 22 0 0 16 0 0 18 PS16
1129 4017 M
8 22 0 0 16 0 0 18 PS16
1153 4017 M
8 22 0 0 16 0 0 18 PS16
1177 4017 M
8 22 0 0 16 0 0 18 PS16
1201 4017 M
8 22 0 0 16 0 0 18 PS16
1225 4017 M
8 22 0 0 16 0 0 18 PS16
1249 4017 M
8 22 0 0 16 0 0 18 PS16
1273 4017 M
8 22 0 0 16 0 0 18 PS16
1297 4017 M
8 22 0 0 16 0 0 18 PS16
1321 4017 M
8 22 0 0 16 0 0 18 PS16
1345 4017 M
8 22 0 0 16 0 0 18 PS16
1369 4017 M
8 22 0 0 16 0 0 18 PS16
1393 4017 M
8 22 0 0 16 0 0 18 PS16
1417 4017 M
8 22 0 0 16 0 0 18 PS16
1 F
740 4098(N)U
(ote)R
849(that)S
936(this)S
1021(non-interference)S
1352(policy)S
1487(type)S
1585(needs)S
1710(some)S
1827(more)S
1941(work)S
2056(in)S
2109(terms)S
2231(of)S
2287(integrating)S
2509(it)S
2551(into)S
2641(the)S
2715(routing)S
2869(algorithms.)S
60 Z
577 4413(L)U
36 Z
706 4080(3)U
60 Z
614 4413(einer)U
2932([Page)S
3089(12])S
EP
%%Page: ? 15
BP
3 F
72 Z
577 681(D)U
1 F
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
3 F
72 Z
629 681(ARPA)U
1 F
577 789(D)U
(ARPA1:)R
937(\(*,*,*\)\(*,DARPA,-\))S
5 F
({)R
1 F
(research,support)R
5 F
(}{)R
1 F
(unauthenticated-UCI,)R
2739(no)S
2835(per)S
2951(packet)S
577 981(i)U
937 873(charge)U
5 F
(})R
1 F
597 981(.e.,)U
707(DARPA)S
975(will)S
1111(carry)S
1283(traf\256c)S
1479(to/from)S
1719(any)S
1847(host)S
1991(in)S
2071(DARPA)S
2339(AR)S
2463(from)S
2627(any)S
2755(external)S
3011(host)S
577 1149(p)U
577 1065(that)U
709(can)S
833(get)S
945(it)S
1009(there)S
1177(so)S
1265(long)S
1417(as)S
1501(UCI)S
1649(is)S
1721(research)S
1985(or)S
2069(support.)S
2351(No)S
2463(UCI)S
2611(authentication)S
3043(or)S
613 1149(er)U
693(packet)S
905(charge.)S
577 1257(D)U
(ARPA2:)R
937(\(*,*,)S
5 F
({)R
1 F
(F/R/U/Co)R
5 F
(})R
1 F
(\)\(*,*,)R
5 F
({)R
1 F
(F/R/U/Co)R
5 F
(})R
1 F
1929(\))S
5 F
({)R
1 F
(research,support)R
5 F
(}{)R
1 F
(unauthenticated-UCI,)R
577 1449(i)U
937 1341(no)U
1033(per)S
1149(packet)S
1361(charge,)S
1595(non-interference)S
2095(basis)S
5 F
(})R
1 F
597 1449(.e.,)U
707(DARPA)S
975(will)S
1111(carry)S
1283(traf\256c)S
1479(for)S
1587(any)S
1715(host)S
1859(connected)S
2175(to)S
2255(a)S
2311(F/Re/U/Co)S
2651(network)S
2911(talking)S
3141 1533(,)U
577 1617(s)U
577 1533(to)U
657(any)S
785(other)S
957(host)S
1101(connected)S
1417(to)S
1497(a)S
1553(F/Re/U/Co)S
1893(via)S
2005(any)S
2133(F/Re/U/Co)S
2473(entry)S
2645(and)S
2773(exit)S
2905(network)S
605 1617(o)U
665(long)S
817(as)S
901(it)S
965(is)S
1037(being)S
1221(used)S
1377(for)S
1485(research)S
1749(or)S
1833(support,)S
2091(and)S
2219(the)S
2331(network)S
2591(is)S
2663(not)S
2779(heavily)S
577 1716(congested!)U
937(There)S
1129(is)S
1201(no)S
1297(authentication)S
1729(of)S
1813(the)S
1925(UCI)S
2073(and)S
2201(no)S
2297(per)S
2413(packet)S
2625(charging.)S
54 Z
1689(4)T
72 Z
577 1980(D)U
3 F
577 1872(DCA)U
1 F
629 1980(DN1:)U
937(\(mailbridge,DDN,-\)\(*,)S
5 F
({)R
1 F
(F/Re)R
5 F
(})R
1 F
(,)R
5 F
({)R
1 F
(F/Re)R
5 F
(})R
1 F
2025(\))S
5 F
({)R
1 F
(research,support)R
5 F
(}{)R
1 F
(unauthenticated)R
577 2172(i)U
937 2064(UCI,)U
1103(all)S
1199(incoming)S
1495(packets)S
1735(marked,)S
1993(per-kilopacket)S
2433(charge)S
5 F
(})R
1 F
597 2172(.e.,)U
707(DDN)S
887(will)S
1023(not)S
1139(carry)S
1311(any)S
1439(transit)S
1643(traf\256c.)S
1881(It)S
1949(will)S
2085(only)S
2237(accept)S
2445(and)S
2573(send)S
2729(traf\256c)S
2925(to)S
3005(and)S
3 F
577 2427(A)U
1 F
577 2256(from)U
741(its)S
833(mailbridge\(s\))S
1245(and)S
1373(only)S
1525(from)S
1689(and)S
1817(to)S
1897(hosts)S
2069(on)S
2165(other)S
2337(F/Re)S
2501(nets.)S
3 F
629 2427(n)U
693(Example)S
989(Regional)S
54 Z
2400(5)T
1 F
72 Z
577 2535(R)U
(egional1:)R
937(\(*,)S
5 F
({)R
1 F
(F/Re/U)R
5 F
(})R
1 F
(,)R
5 F
({)R
1 F
(F/Re/U)R
5 F
(})R
1 F
1593(\)\(*,)S
5 F
({)R
1 F
(F/Re/U)R
5 F
(})R
1 F
(,NSF\))R
5 F
({)R
1 F
(research,support)R
5 F
(})R
1 F
577 2727(i)U
5 F
937 2619({)U
1 F
(unauthenticated)R
1451(UCI,)S
1617(no-per-packet)S
2041(charge)S
5 F
(})R
1 F
597 2727(.e.,)U
707(The)S
843(Regional)S
1127(will)S
1263(carry)S
1435(traf\256c)S
1631(from/to)S
1871(any)S
1999(directly)S
2243(connected)S
2559(F/Re/U)S
2795(network)S
3055(to)S
3139 2811(t)U
577 2895(a)U
577 2811(any)U
705(F/Re/U)S
941(network)S
1201(via)S
1313(NSF)S
1469(if)S
1537(it)S
1601(is)S
1673(for)S
1781(a)S
1837(research)S
2101(or)S
2185(support)S
2425(UCI.)S
2615(\(NSF)S
2795(requires)S
3051(tha)S
609 2895(ll)U
673(Regional)S
957(networks)S
1245(only)S
1397(forward)S
1649(to)S
1729(it)S
1793(traf\256c)S
1989(that)S
2121(complies)S
2405(with)S
2557(its,)S
2667(NSF's,)S
2893(policies!\))S
577 3003(Regional2:)U
961(\(*,)S
5 F
({)R
1 F
(F/Re/U)R
5 F
(})R
1 F
(,)R
5 F
({)R
1 F
(F/Re/U)R
5 F
(})R
1 F
1617(\)\(*,)S
5 F
({)R
1 F
(F/Re/U)R
5 F
(})R
1 F
(,Cc\))R
5 F
({})R
2189({)S
1 F
(unauthenticated)R
2703(UCI,)S
2869(per-)S
937 3087(kilopacket)U
1261(charge)S
5 F
(})R
1 F
577 3195(i)U
(.e.,)R
707(The)S
843(Regional)S
1127(will)S
1263(carry)S
1435(traf\256c)S
1631(from/to)S
1871(any)S
1999(directly)S
2243(connected)S
2559(F/Re/U)S
2795(network)S
3055(to)S
577 3363(p)U
577 3279(any)U
705(F/Re/U)S
941(network)S
1201(via)S
1313(a)S
1369(commercial)S
1733(carrier)S
1945(regardless)S
2261(of)S
2345(its)S
2437(UCI.)S
2627(In)S
2711(this)S
2839(case,)S
3005(the)S
613 3363(ackets)U
817(are)S
929(charged)S
1181(for)S
1289(since)S
1461(the)S
1573(commercial)S
1937(carrier)S
2149(charges)S
2393(per)S
2509(kilopacket.)S
0 F
48 Z
577 3879 M
8 22 0 0 16 0 0 18 PS16
601 3879 M
8 22 0 0 16 0 0 18 PS16
625 3879 M
8 22 0 0 16 0 0 18 PS16
649 3879 M
8 22 0 0 16 0 0 18 PS16
673 3879 M
8 22 0 0 16 0 0 18 PS16
697 3879 M
8 22 0 0 16 0 0 18 PS16
721 3879 M
8 22 0 0 16 0 0 18 PS16
745 3879 M
8 22 0 0 16 0 0 18 PS16
769 3879 M
8 22 0 0 16 0 0 18 PS16
793 3879 M
8 22 0 0 16 0 0 18 PS16
817 3879 M
8 22 0 0 16 0 0 18 PS16
841 3879 M
8 22 0 0 16 0 0 18 PS16
865 3879 M
8 22 0 0 16 0 0 18 PS16
889 3879 M
8 22 0 0 16 0 0 18 PS16
913 3879 M
8 22 0 0 16 0 0 18 PS16
937 3879 M
8 22 0 0 16 0 0 18 PS16
961 3879 M
8 22 0 0 16 0 0 18 PS16
985 3879 M
8 22 0 0 16 0 0 18 PS16
1009 3879 M
8 22 0 0 16 0 0 18 PS16
1033 3879 M
8 22 0 0 16 0 0 18 PS16
1057 3879 M
8 22 0 0 16 0 0 18 PS16
1081 3879 M
8 22 0 0 16 0 0 18 PS16
1105 3879 M
8 22 0 0 16 0 0 18 PS16
1129 3879 M
8 22 0 0 16 0 0 18 PS16
1153 3879 M
8 22 0 0 16 0 0 18 PS16
1177 3879 M
8 22 0 0 16 0 0 18 PS16
1201 3879 M
8 22 0 0 16 0 0 18 PS16
1225 3879 M
8 22 0 0 16 0 0 18 PS16
1249 3879 M
8 22 0 0 16 0 0 18 PS16
1273 3879 M
8 22 0 0 16 0 0 18 PS16
1297 3879 M
8 22 0 0 16 0 0 18 PS16
1321 3879 M
8 22 0 0 16 0 0 18 PS16
1345 3879 M
8 22 0 0 16 0 0 18 PS16
1369 3879 M
8 22 0 0 16 0 0 18 PS16
1393 3879 M
8 22 0 0 16 0 0 18 PS16
1417 3879 M
8 22 0 0 16 0 0 18 PS16
1 F
741 3960(Note:)U
864(DARPA)S
1045(would)S
1182(like)S
1270(to)S
1324(say)S
1405(something)S
1621(about)S
1744(the)S
1819(need)S
1926(to)S
1980(enter)S
2092(the)S
2167(DARPA)S
2348(AR)S
2432(at)S
2483(the)S
2558(point)S
2673(closest)S
2820(to)S
2874(the)S
2948(destination,)S
577 4017(b)U
36 Z
706 3942(4)U
48 Z
601 4017(ut)U
654(I)S
686(don't)S
803(know)S
926(how)S
1025(to)S
1078(express)S
1238(this.)S
740 4098(N)U
(ote:)R
862(No)S
937(interview)S
1133(was)S
1224(done)S
1333(for)S
1405(this)S
1490(one.)S
1587(This)S
1688(is)S
1736(just)S
1821(a)S
1858(guess.)S
60 Z
577 4413(L)U
36 Z
706 4080(5)U
60 Z
614 4413(einer)U
2932([Page)S
3089(13])S
EP
%%Page: ? 16
BP
3 F
84 Z
577 681(4)U
1 F
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
3 F
84 Z
619 681(.)U
696(Access)S
962(Control)S
1270(for)S
1405(Network)S
1746(Switching)S
2129(and)S
2293(Transmission)S
72 Z
577 921(W)U
84 Z
577 765(Resources)U
72 Z
649 921(orking)U
877(Group)S
1105(1)S
1165(Members)S
1 F
2089 1029(N)U
697 1113(G)U
697 1029(Steve)U
881(Kent)S
1045(\(Chair\))S
1993(BB)S
749 1113(uy)U
845(Almes)S
1993(Rice)S
2321 1197(s)U
697 1281(M)U
697 1197(Bill)U
829(Bostwick)S
1993(Los)S
2125(Alamo)S
761 1281(arsha)U
937(Branstad)S
1993(DoD)S
2093 1365(I)U
697 1449(D)U
697 1365(Vint)U
849(Cerf)S
1993(NR)S
749 1449(eborah)U
969(Estrin)S
1993(USC)S
2265 1533(e)U
697 1617(D)U
697 1533(Tony)U
873(Hain)S
1993(Livermor)S
749 1617(an)U
841(Lynch)S
1993(ACE)S
2093 1701(A)U
697 1785(A)U
697 1701(Russ)U
861(Mundy)S
1993(DC)S
749 1785(nita)U
881(Holmgren)S
1993(Unisys)S
3 F
577 1965(4.1.)U
733(Introduction)S
1 F
727 2073(This)U
879(report)S
1075(re\257ects)S
1307(discussions)S
1659(among)S
1879(the)S
1991(members)S
2279(of)S
2363(working)S
2627(group)S
2819(with)S
2971(regard)S
577 2241(c)U
577 2157(to)U
657(network)S
917(access)S
1125(control)S
1353(for)S
1461(the)S
1573(National)S
1845(Research)S
2133(Internet)S
2381(\(NRI\).)S
2619(The)S
2755(NRI)S
2903(will)S
3039(be)S
609 2241(omposed)U
893(of)S
977(network)S
1237(resources)S
1533(contributed)S
1885(by)S
1981(various)S
2217(organizations)S
2629(\(primarily)S
3063 2325(a)U
577 2409(c)U
577 2325(agencies)U
849(of)S
933(the)S
1045(Federal)S
1285(government\).)S
1719(The)S
1855(operational)S
2203(model)S
2407(for)S
2515(the)S
2627(NRI)S
2775(is)S
2847(that)S
2979(of)S
609 2409(ollection)U
885(of)S
969(autonomous,)S
1363(administrative)S
1799(domains)S
2067(\(referred)S
2343(to)S
2423(as)S
2507(``domains'')S
2871(within)S
577 2577(s)U
577 2493(this)U
705(report\),)S
943(each)S
1099(of)S
1183(which)S
1383(manages)S
1659(a)S
1715(collection)S
2023(of)S
2107(network)S
2367(transmission)S
2755(and/or)S
605 2577(witching)U
881(resources.)S
1219(\(Other,)S
1449(higher)S
1657(level)S
1821(resources)S
2117(also)S
2257(may)S
2405(be)S
2497(shared)S
2709(across)S
2913(domain)S
3105 2661(e)U
577 2745(o)U
577 2661(boundaries,)U
935(but)S
1051(these)S
1223(are)S
1335(not)S
1451(the)S
1563(focus)S
1743(of)S
1827(the)S
1939(access)S
2147(controls)S
2403(discussed)S
2703(herein.\))S
2973(Som)S
613 2745(f)U
661(these)S
833(network)S
1093(resources)S
1389(are)S
1501(owned)S
1717(or)S
1801(leased)S
2005(exclusively)S
2357(on)S
2453(behalf)S
2657(of)S
2741(the)S
3023 2829(e)U
577 2913(j)U
577 2829(administrative)U
1013(domain)S
1253(responsible)S
1605(for)S
1713(the)S
1825(resource,)S
2111(whereas)S
2371(other)S
2543(resources)S
2839(may)S
2987(b)S
597 2913(ointly)U
789(paid)S
937(for)S
1045(and)S
1173(administered.)S
727 3021(T)U
(here)R
919(is)S
991(a)S
1047(perceived)S
1351(requirement)S
1723(that)S
1855(a)S
1911(domain)S
2151(provide)S
2395(access)S
2603(control)S
2831(for)S
2939(the)S
3035 3105(s)U
577 3189(c)U
577 3105(network)U
837(transmission)S
1225(and)S
1353(switching)S
1657(resources)S
1953(that)S
2085(comprise)S
2373(it.)S
2479(This)S
2631(form)S
2795(of)S
2879(acces)S
609 3189(ontrol)U
805(is)S
877(distinguished)S
1285(from)S
1449(measures)S
1741(oriented)S
2001(toward)S
2225(controlling)S
2565(access)S
2773(to)S
2853(subscriber)S
577 3357(a)U
577 3273(resources,)U
891(e.g.,)S
1037(workstations,)S
1447(\256le)S
1563(servers,)S
1809(etc.)S
1959(Rather,)S
2193(these)S
2365(measures)S
2657(are)S
2769(intended)S
3041(to)S
609 3357(pply)U
761(to)S
841(communication)S
1313(paths)S
1489(which)S
1689(transit)S
1893(gateways,)S
2203(circuits,)S
2457(networks,)S
2763(etc.)S
3055 3465(.)U
577 3549(T)U
727 3465(There)U
919(are)S
1031(several)S
1259(motivations)S
1623(for)S
1731(introducing)S
2087(network)S
2347(resource)S
2615(access)S
2823(controls)S
621 3549(he)U
713(organizations)S
1125(which)S
1325(will)S
1461(contribute)S
1777(network)S
2037(resources)S
2333(or)S
2417(funding)S
2665(for)S
2773(shared)S
3049 3633(n)U
577 3717(b)U
577 3633(resources)U
873(to)S
953(the)S
1065(NRI)S
1213(need)S
1373(to)S
1453(be)S
1545(satis\256ed)S
1805(that)S
1937(sharing)S
2173(of)S
2257(these)S
2429(network)S
2689(resources)S
2985(ca)S
613 3717(e)U
669(controlled)S
985(in)S
1065(such)S
1221(a)S
1277(fashion)S
1513(as)S
1597(to)S
1677(accord)S
1893(priority)S
2133(to)S
2213(designated)S
2545(users)S
2717(or)S
2801(groups)S
3021(of)S
577 3885(b)U
577 3801(users)U
749(and)S
877(to)S
957(account)S
1205(for)S
1313(resource)S
1581(usage)S
1769(in)S
1849(accordance)S
2197(with)S
2349(OMB)S
2537(guidelines.)S
2899(It)S
2967(may)S
613 3885(e)U
669(necessary)S
973(to)S
1053(bill)S
1173(for)S
1281(usage)S
1469(of)S
1553(some)S
1729(resources,)S
2043(especially)S
2355(commercial)S
2719(facilities)S
577 4053(t)U
577 3969(connected)U
893(to)S
973(the)S
1085(NRI.)S
1275(Some)S
1463(organizations)S
1875(have)S
2035(adopted)S
2287(policies)S
2535(that)S
2667(prohibit)S
597 4053(ransport)U
857(of)S
941(data)S
1085(from)S
1249(certain)S
1469(classes)S
1693(of)S
1777(users)S
1949(across)S
2153(their)S
2309(networks.)S
60 Z
3149 4413(])U
577(Leiner)S
2932([Page)S
3089(14)S
EP
%%Page: ? 17
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
577 765(i)U
727 681(This)U
879(report)S
1075(examines)S
1371(various)S
1607(aspects)S
1839(of)S
1923(network)S
2183(resource)S
2451(access)S
2659(control)S
2887(measures)S
597 765(n)U
657(the)S
769(NRI)S
917(context,)S
1171(including)S
1467(bases)S
1647(for)S
1755(making)S
1995(access)S
2203(control)S
2431(decisions)S
2723(\(policy)S
2951(inputs\),)S
577 933(p)U
577 849(communication)U
1049(scenarios)S
1341(to)S
1421(be)S
1513(supported,)S
1839(mechanisms)S
2219(for)S
2327(enforcing)S
2627(access)S
2835(control)S
613 933(olicies,)U
843(and)S
971(assurance)S
1275(issues)S
1471(associated)S
1791(with)S
1943(enforcement.)S
2369(Formulation)S
2749(of)S
2833(speci\256c)S
3141 1017(t)U
577 1101(o)U
577 1017(access)U
785(control)S
1013(policies)S
1261(is)S
1333(outside)S
1565(the)S
1677(scope)S
1865(of)S
1949(this)S
2077(report)S
2273(and)S
2401(is)S
2473(addressed)S
2781(by)S
2877(the)S
2989(repor)S
613 1101(f)U
661(Policy)S
869(Working)S
1149(Group.)S
727 1209(T)U
(his)R
879(report)S
1075(has)S
1195(been)S
1355(prepared)S
1631(by)S
1727(the)S
1839(members)S
2127(of)S
2211(the)S
2323(working)S
2587(group)S
2779(as)S
2863(a)S
2919(result)S
3103(of)S
577 1377(N)U
577 1293(discussions)U
929(that)S
1061(took)S
1213(place)S
1389(at)S
1465(workshops)S
1801(sponsored)S
2117(by)S
2213(NASA)S
2433(on)S
2529(June)S
2685(15-17,)S
2895(1988)S
3063(and)S
629 1377(ovember)U
905(8-10,)S
1079(1988.)S
1289(Additional)S
1621(inputs)S
1821(have)S
1981(been)S
2141(prepared)S
2417(by)S
2513(working)S
2777(group)S
3073 1461(.)U
3 F
577 1617(4)U
1 F
577 1461(members)U
865(during)S
1077(the)S
1189(interval)S
1433(between)S
1697(these)S
1869(workshops)S
2205(and)S
2333(co-ordinated)S
2721(by)S
2817(the)S
2929(chair)S
3 F
613 1617(.2.)U
733(Access)S
961(Control)S
1225(Policy)S
1437(Issues)S
577 1773(4.2.1.)U
787(Policies)S
1043(and)S
1183(Models)S
1 F
727 1881(Any)U
875(discussion)S
1199(of)S
1283(access)S
1491(control)S
1719(measures)S
2011(should)S
2227(begin)S
2411(with)S
2563(a)S
2619(characterization)S
3103(of)S
577 2049(u)U
577 1965(the)U
689(policies)S
937(which)S
1137(the)S
1249(measures)S
1541(are)S
1653(to)S
1733(enforce,)S
1991(and)S
2119(a)S
2175(de\256nition)S
2475(of)S
2559(the)S
2671(model)S
2875(that)S
613 2049(nderlies)U
865(the)S
977(policies.)S
1267(There)S
1459(are)S
1571(various)S
1807(ways)S
1979(to)S
2059(characterize)S
2431(access)S
2639(control)S
2867(policies,)S
577 2217(d)U
577 2133(one)U
705(of)S
789(which)S
989(\(ISO)S
1153(7498-2\))S
1405(considers)S
1701(two)S
1833(axes:)S
2005(1\))S
2089(the)S
2201(basis)S
2369(on)S
2465(which)S
2665(access)S
2873(control)S
613 2217(ecisions)U
869(are)S
981(made)S
1161(\(rule-based)S
1509(or)S
1593(identity-based\),)S
2067(and)S
2195(2\))S
2279(the)S
2391(entity)S
2579(who)S
2727(de\256nes)S
2955(the)S
577 2385(a)U
577 2301(policy)U
781(\(user-directed)S
1205(or)S
1289(administratively)S
1781(directed\).)S
2103(For)S
2227(the)S
2339(NRI)S
2487(environment,)S
2893(we)S
609 2385(nticipate)U
881(the)S
993(policies)S
1241(are)S
1353(all)S
1449(administratively)S
1941(directed)S
2197(since)S
2369(they)S
2517(represent)S
2805(constraints)S
577 2553(s)U
577 2469(imposed)U
845(by)S
941(organizations)S
1353(which)S
1553(contribute)S
1869(resources)S
2165(to)S
2245(the)S
2357(NRI,)S
2523(not)S
2639(individual)S
605 2553(ubscribers.)U
727 2661(D)U
(iscussions)R
1095(with)S
1247(organizational)S
1683(representatives)S
2139(suggest)S
2379(that)S
2511(both)S
2663(identity-based)S
577 2829(a)U
577 2745(and)U
705(rule-based)S
1029(policies)S
1277(may)S
1425(be)S
1517(employed.)S
1867(For)S
1991(example,)S
2277(in)S
2357(some)S
2533(circumstances)S
2965(an)S
609 2829(ccess)U
785(control)S
1013(decision)S
1277(will)S
1413(be)S
1505(made)S
1685(based)S
1873(on)S
1969(the)S
2081(identity)S
2325(of)S
2409(the)S
2521(user)S
2665(\(or)S
2773(a)S
2829(class)S
2993(of)S
3077 2913(n)U
577 2997(i)U
577 2913(which)U
777(the)S
889(user)S
1033(is)S
1105(a)S
1161(member\))S
1445(requesting)S
1769(access.)S
2019(In)S
2103(many)S
2287(cases,)S
2481(possession)S
2813(of)S
2897(a)S
2953(toke)S
597 2997(ndicating)U
889(agency)S
1117(authorization)S
1521(for)S
1629(resource)S
1897(use,)S
2035(perhaps)S
2283(coupled)S
2535(with)S
2687(time)S
2839(and)S
2967(day)S
3095(of)S
577 3165(i)U
577 3081(week)U
753(inputs,)S
971(will)S
1107(form)S
1271(the)S
1383(basis)S
1551(for)S
1659(the)S
1771(access)S
1979(control)S
2207(decision.)S
2513(These)S
2709(two)S
2841(examples)S
597 3165(llustrate)U
853(identity-based)S
1285(and)S
1413(rule-based)S
1737(policies)S
1985(and)S
2113(policies)S
2361(that)S
2493(combine)S
2765(both)S
2917(policy)S
577 3249(bases)U
757(are)S
869(also)S
1009(possible.)S
727 3357(The)U
863(security)S
1115(access)S
1323(model)S
1527(we)S
1635(assume)S
1871(for)S
1979(the)S
2091(NRI)S
2239(environment)S
2627(is)S
2699(a)S
2755(traditional)S
3101 3441(h)U
577 3525(a)U
577 3441(one)U
705(involving)S
1005(subjects)S
1261(and)S
1389(objects.)S
1659(Subjects)S
1927(are)S
2039(active)S
2235(entities)S
2467(\(e.g.,)S
2637(processes\))S
2961(whic)S
609 3525(re)U
689(accorded)S
973(some)S
1149(access)S
1357(privileges)S
1665(with)S
1817(respect)S
2045(to)S
2125(objects.)S
2395(The)S
2531(processes)S
2831(execute)S
3075(in)S
577 3693(b)U
577 3609(various)U
813(subscriber)S
1133(equipments)S
1489(\(hosts,)S
1703(workstations,)S
2113(servers,)S
2359(etc.\))S
2509(either)S
2697(acting)S
2897(on)S
613 3693(ehalf)U
781(of)S
865(users)S
1037(\(individuals)S
1405(or)S
1489(groups\))S
1733(or)S
1817(acting)S
2017(as)S
2101(entities)S
2333(independent)S
2709(of)S
2793(any)S
2921(speci\256c,)S
577 3861(t)U
577 3777(human)U
797(user.)S
983(Objects)S
1227(in)S
1307(this)S
1435(context)S
1671(are)S
1783(typically)S
2059(data)S
2203(paths)S
2379(through)S
2627(the)S
2739(NRI,)S
2905(and)S
3033(thus)S
597 3861(hey)U
725(implicitly)S
1029(entail)S
1213(the)S
1325(use)S
1445(of)S
1529(transmission)S
1917(and)S
2045(switching)S
2349(resources.)S
2687(\(Alternatively,)S
577 4029(c)U
577 3945(we)U
685(could)S
869(consider)S
1137(these)S
1309(resources)S
1605(individually)S
1977(as)S
2061(the)S
2173(objects)S
2401(and)S
2529(the)S
2641(paths)S
2817(as)S
609 4029(ompositions)U
985(of)S
1069(the)S
1181(component)S
1525(parts.\))S
60 Z
577 4413(L)U
(einer)R
2932([Page)S
3089(15])S
EP
%%Page: ? 18
BP
3 F
72 Z
577 681(4)U
1 F
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
3 F
72 Z
613 681(.2.2.)U
787(Policy)S
999(Inputs)S
1 F
727 789(A)U
803(re\256nement)S
1135(of)S
1219(policy)S
1423(characterization)S
1907(is)S
1979(provided)S
2259(by)S
2355(considering)S
2715(the)S
2827(range)S
3011(of)S
577 957(i)U
577 873(inputs)U
777(on)S
873(which)S
1073(access)S
1281(control)S
1509(decisions)S
1801(will)S
1937(be)S
2029(made.)S
2251(These)S
2447(inputs)S
2647(can)S
2771(be)S
2863(divided)S
597 957(nto)U
713(two)S
845(categories)S
1161(\(somewhat)S
1501(arbitrarily\):)S
1857(1\))S
1941(data)S
2085(implicitly)S
2389(available)S
2673(to)S
2753(the)S
3059 1041(\))U
577 1125(d)U
577 1041(enforcement)U
961(entities,)S
1211(e.g.,)S
1357(time)S
1509(and)S
1637(date)S
1781(or)S
1865(utilization)S
2181(and)S
2309(connectivity)S
2689(status,)S
2895(and)S
3023(2)S
613 1125(ata)U
721(explicitly)S
1017(provided)S
1297(by)S
1393(subjects,)S
1667(e.g.,)S
1813(in)S
1893(packet)S
2105(headers.)S
2391(Note)S
2555(that)S
2687(this)S
2969 1209(y)U
577 1293(p)U
577 1209(characterization)U
1061(does)S
1217(not)S
1333(specify)S
1565(whether)S
1821(the)S
1933(explicit)S
2173(inputs)S
2373(are)S
2485(provided)S
2765(in)S
2845(ever)S
613 1293(acket)U
789(or)S
873(only)S
1025(in)S
1105(some)S
1281(packets,)S
1539(how)S
1687(the)S
1799(inputs)S
1999(are)S
2111(validated,)S
2417(etc.)S
2567(These)S
2763(details)S
2975(are)S
3053 1377(l)U
577 1461(f)U
577 1377(critical)U
801(components)S
1173(of)S
1257(an)S
1349(architecture,)S
1731(not)S
1847(just)S
1975(an)S
2067(implementation,)S
2561(and)S
2689(thus)S
2833(the)S
2945(\256na)S
601 1461(orm)U
741(of)S
825(this)S
953(list)S
1065(should)S
1281(take)S
1425(into)S
1561(account)S
1809(these)S
1981(considerations)S
2421(as)S
2505(well)S
2653(as)S
2737(the)S
2849(rationale)S
577 1545(provided)U
857(below.)S
727 1653(Based)U
927(on)S
1023(inputs)S
1223(from)S
1387(agency)S
1615(representatives)S
2071(present)S
2303(at)S
2379(the)S
2491(workshops,)S
2845(it)S
2909(appears)S
577 1821(m)U
577 1737(desirable)U
861(that)S
993(information)S
1357(on)S
1453(local)S
1617(resource)S
1885(utilization)S
2201(and)S
2329(global)S
2533(connectivity)S
2913(be)S
633 1821(ajor)U
769(implicit)S
1017(inputs)S
1217(in)S
1297(access)S
1505(control)S
1733(decisions.)S
2067(The)S
2203(rationale)S
2479(is)S
2551(that)S
2683(many)S
2867(agencies)S
577 1989(s)U
577 1905(appear)U
793(to)S
873(be)S
965(adopting)S
1241(policies)S
1489(which)S
1689(permit)S
1901(sharing)S
2137(of)S
2221(resources)S
2517(by)S
2613(``outside)S
605 1989(ubjects'')U
881(on)S
977(a)S
1033(``non-interference'')S
1629(basis.)S
1839(This)S
1991(requires)S
2247(that)S
2379(the)S
2491(enforcement)S
3117 2073(s)U
577 2172(t)U
577 2073(mechanisms)U
957(be)S
1049(cognizant)S
1353(of)S
1437(the)S
1549(resource)S
1817(utilization)S
2133(status)S
2321(\(congestion)S
2681(measures\))S
2997(so)S
3085(a)S
597 2172(o)U
657(determine)S
969(what)S
1133(constitutes)S
1465(non-interfering)S
1925(sharing.)S
2206(It)S
2274(also)S
2414(requires)S
2670(some)S
2846(explicit)S
54 Z
2155 2145(6)U
72 Z
3061 2256(e)U
577 2340(a)U
577 2256(identi\256cation)U
981(of)S
1065(subjects)S
1321(to)S
1401(determine)S
1713(whether)S
1969(the)S
2081(non-interference)S
2581(criteria)S
2809(should)S
3025(b)S
609 2340(pplied.)U
855(More)S
1035(re\256ned)S
1259(sharing)S
1495(policies)S
1743(could)S
1927(take)S
2071(into)S
2207(account)S
2455(relative)S
2695(priorities)S
2979(for)S
577 2508(S)U
577 2424(various)U
813(subjects,)S
1087(type)S
1235(of)S
1319(service)S
1547(\(TOS\)-based)S
1943(routing)S
2175(decisions,)S
2485(etc.)S
2635(The)S
2771(Resource)S
617 2508(haring)U
825(Working)S
1105(Group)S
1313(is)S
1385(focusing)S
1657(on)S
1753(routing)S
1985(issues)S
2181(which)S
2381(take)S
2525(into)S
2661(account)S
2985 2592(n)U
577 2676(p)U
577 2592(quantitative)U
941(measures)S
1233(related)S
1453(to)S
1533(TOS.)S
1735(In)S
1819(contrast,)S
2089(this)S
2217(group)S
2409(has)S
2529(focused)S
2777(more)S
2949(o)S
613 2676(olicies)U
825(in)S
905(which)S
1105(such)S
1261(quantitative)S
1625(measures)S
1917(are)S
2029(not)S
2145(primary)S
2397(inputs)S
2597(to)S
2677(the)S
2789(access)S
3039 2760(m)U
577 2844(b)U
577 2760(control)U
805(decision.)S
1111(This)S
1263(suggests)S
1531(that)S
1663(a)S
1719(combination)S
2103(of)S
2187(the)S
2299(architectural)S
2683(proposal)S
2955(fro)S
613 2844(oth)U
729(groups)S
949(will)S
1085(be)S
1177(required)S
1441(to)S
1521(address)S
1761(some)S
1937(of)S
2021(the)S
2133(access)S
2341(control)S
2569(policy)S
2773(requirements)S
577 2928(described)U
877(at)S
953(the)S
1065(workshops.)S
727 3036(Data)U
887(that)S
1019(might)S
1211(be)S
1303(explicitly)S
1599(required)S
1863(from)S
2027(a)S
2083(subject)S
2311(was)S
2447(the)S
2559(topic)S
2727(of)S
2811(much)S
3120(.)T
577 3204(A)U
577 3120(discussion.)U
943(A)S
1019(list)S
1131(of)S
1215(candidate)S
1515(data)S
1659(items)S
1839(was)S
1975(developed)S
2295(and)S
2423(is)S
2495(discussed)S
2795(below)S
629 3204(lthough)U
873(not)S
989(all)S
1085(administrative)S
1521(domains)S
1789(might)S
1981(require)S
2209(all)S
2305(of)S
2389(these)S
2561(inputs)S
2761(for)S
2869(an)S
2961(access)S
577 3372(a)U
577 3288(control)U
805(decision,)S
1087(it)S
1151(has)S
1271(been)S
1431(suggested)S
1739(that)S
1871(the)S
1983(list)S
2095(be)S
2187(universally)S
2531(agreed)S
2747(upon)S
2915(among)S
609 3372(ll)U
673(domains.)S
983(The)S
1119(argument)S
1415(is)S
1487(that)S
1619(global)S
1823(routing)S
2055(determinations)S
2507(are)S
2619(affected)S
2875(by)S
2971(local)S
577 3540(p)U
577 3456(access)U
785(control)S
1013(decisions)S
1305(and)S
1433(that)S
1565(it)S
1629(is)S
1701(desirable)S
1985(to)S
2065(enable)S
2277(subscribers)S
2625(\(or)S
2733(their)S
2889(local)S
613 3540(olicy)U
781(route)S
953(servers\))S
1205(to)S
1285(calculate)S
1565(permitted)S
1865(routes)S
2065(before)S
2273(initiating)S
2557(transmission)S
2945(of)S
3029(data)S
577 3708(a)U
577 3624(along)U
761(a)S
817(path.)S
1007(In)S
1091(order)S
1267(to)S
1347(perform)S
1603(such)S
1759(calculations,)S
2145(each)S
2301(domain)S
2541(must)S
2705(publish)S
2941(its)S
609 3708(ccess)U
785(control)S
1013(policy)S
1217(and)S
1345(the)S
1457(inputs)S
1657(to)S
1737(the)S
1849(policy)S
2053(must)S
2217(be)S
2309(universally)S
2653(interpretable.)S
3045 3792(e)U
0 F
48 Z
577 3849 M
8 22 0 0 16 0 0 18 PS16
1 F
72 Z
577 3792(Thus)U
745(there)S
913(is)S
985(a)S
1041(strong)S
1245(motivation)S
1581(to)S
1661(de\256ne)S
1861(a)S
1917(minimum)S
2221(set)S
2325(of)S
2409(explicit)S
2649(inputs)S
2849(to)S
2929(thes)S
0 F
48 Z
601 3849 M
8 22 0 0 16 0 0 18 PS16
625 3849 M
8 22 0 0 16 0 0 18 PS16
649 3849 M
8 22 0 0 16 0 0 18 PS16
673 3849 M
8 22 0 0 16 0 0 18 PS16
697 3849 M
8 22 0 0 16 0 0 18 PS16
721 3849 M
8 22 0 0 16 0 0 18 PS16
745 3849 M
8 22 0 0 16 0 0 18 PS16
769 3849 M
8 22 0 0 16 0 0 18 PS16
793 3849 M
8 22 0 0 16 0 0 18 PS16
817 3849 M
8 22 0 0 16 0 0 18 PS16
841 3849 M
8 22 0 0 16 0 0 18 PS16
865 3849 M
8 22 0 0 16 0 0 18 PS16
889 3849 M
8 22 0 0 16 0 0 18 PS16
913 3849 M
8 22 0 0 16 0 0 18 PS16
937 3849 M
8 22 0 0 16 0 0 18 PS16
961 3849 M
8 22 0 0 16 0 0 18 PS16
985 3849 M
8 22 0 0 16 0 0 18 PS16
1009 3849 M
8 22 0 0 16 0 0 18 PS16
1033 3849 M
8 22 0 0 16 0 0 18 PS16
1057 3849 M
8 22 0 0 16 0 0 18 PS16
1081 3849 M
8 22 0 0 16 0 0 18 PS16
1105 3849 M
8 22 0 0 16 0 0 18 PS16
1129 3849 M
8 22 0 0 16 0 0 18 PS16
1153 3849 M
8 22 0 0 16 0 0 18 PS16
1177 3849 M
8 22 0 0 16 0 0 18 PS16
1201 3849 M
8 22 0 0 16 0 0 18 PS16
1225 3849 M
8 22 0 0 16 0 0 18 PS16
1249 3849 M
8 22 0 0 16 0 0 18 PS16
1273 3849 M
8 22 0 0 16 0 0 18 PS16
1297 3849 M
8 22 0 0 16 0 0 18 PS16
1321 3849 M
8 22 0 0 16 0 0 18 PS16
1345 3849 M
8 22 0 0 16 0 0 18 PS16
1369 3849 M
8 22 0 0 16 0 0 18 PS16
1393 3849 M
8 22 0 0 16 0 0 18 PS16
1417 3849 M
8 22 0 0 16 0 0 18 PS16
1 F
724 3930(T)U
(here)R
853(is)S
903(a)S
942(potential)S
1126(con\257ict)S
1287(here)S
1387(in)S
1442(using)S
1564(local)S
1674(congestion)S
1899(measures)S
2095(as)S
2153(inputs)S
2288(to)S
2343(an)S
2406(access)S
2546(control)S
2698(decision.)S
2902(It)S
2948(is)S
2997(desirable)S
577 3987(f)U
36 Z
706 3912(6)U
48 Z
593 3987(or)U
651(a)S
690(remote)S
840(subject)S
993(\(e.g.,)S
1108(policy)S
1245(controller\))S
1464(to)S
1519(determine)S
1727(in)S
1782(advance)S
1956(if)S
2003(a)S
2042(speci\256ed)S
2230(transmission)S
2490(resource)S
2670(can)S
2754(be)S
2817(used)S
2923(in)S
2978(construct-)S
577 4101(c)U
577 4044(ing)U
658(a)S
699(\(policy\))S
870(route)S
988(between)S
1167(two)S
1259(points)S
1396(in)S
1453(the)S
1531(NRI,)S
1646(for)S
1722(reasons)S
1886(elucidate)S
2057(d)S
2101(by)S
2169(Dave)S
2290(Clark)S
2416(in)S
2473(his)S
2548(policy)S
2686(routing)S
2843(paper.)S
2996(Thus)S
3111(the)S
598 4101(on\257ict)U
743(arises)S
875(if)S
927(either)S
1058(the)S
1139(remote)S
1293(subject)S
1450(cannot)S
1599(obtain)S
1740(the)S
1820(necessary)S
2028(local)S
2142(congestion)S
2371(measures)S
2571(or)S
2633(if)S
2684(these)S
2804(measures)S
3004(are)S
3084(very)S
60 Z
577 4413(L)U
48 Z
577 4158(dynamic.)U
60 Z
614 4413(einer)U
2932([Page)S
3089(16])S
EP
%%Page: ? 19
BP
1 F
72 Z
577 681(p)U
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
613 681(olicies.)U
727 789(A)U
(t)R
823(one)S
951(point)S
1123(in)S
1203(the)S
1315(discussion)S
1639(it)S
1703(was)S
1839(suggested)S
2147(that)S
2279(any)S
2407(inputs)S
2607(to)S
2687(access)S
2895(control)S
577 957(f)U
577 873(decisions)U
869(that)S
1001(were)S
1165(not)S
1281(universally)S
1625(interpretable)S
2013(could)S
2197(be)S
2289(accommodated)S
2749(by)S
2845(allowing)S
601 957(or)U
685(``domain)S
973(speci\256c'')S
1265(data)S
1409(items.)S
1631(Such)S
1799(data)S
1943(items)S
2123(would)S
2327(be)S
2419(interpreted)S
2755(by)S
2851(only)S
3003(a)S
3059(few)S
577 1125(c)U
577 1041(domains)U
845(\(perhaps)S
1117(only)S
1269(a)S
1325(single)S
1521(domain\))S
1785(along)S
1969(a)S
2025(route.)S
2239(However,)S
2545(we)S
2653(note)S
2801(that)S
2933(this)S
609 1125(oncept)U
825(does)S
981(not)S
1097(seem)S
1269(to)S
1349(be)S
1441(in)S
1521(concert)S
1757(with)S
1909(the)S
2021(principle)S
2301(cited)S
2465(earlier)S
2673(\(and)S
2825(discussed)S
577 1293(a)U
577 1209(in)U
657(Clark's)S
893(paper\),)S
1119(i.e.,)S
1249(subjects)S
1505(should)S
1721(be)S
1813(able)S
1957(to)S
2037(predict)S
2261(access)S
2469(control)S
2697(decisions)S
2989(for)S
609 1293(ny)U
705(domain)S
945(through)S
1193(which)S
1393(they)S
1541(might)S
1733(construct)S
2021(a)S
2077(route.)S
2291(Thus)S
2459(the)S
2571(concept)S
2819(of)S
2903(a)S
2977 1377(g)U
577 1461(a)U
577 1377(domain-speci\256c)U
1061(access)S
1269(control)S
1497(data)S
1641(item)S
1793(as)S
1877(an)S
1969(``escape'')S
2281(mechanism)S
2633(for)S
2741(includin)S
609 1461(dditional)U
889(inputs)S
1089(to)S
1169(access)S
1377(control)S
1605(decisions)S
1897(may)S
2045(not)S
2161(be)S
2253(appropriate.)S
2647(Recall)S
2855(that)S
2987(no)S
577 1629(d)U
577 1545(domain)U
817(is)S
889(required)S
1153(to)S
1233(employ)S
1473(all)S
1569(the)S
1681(supplied)S
1949(inputs)S
2149(in)S
2229(making)S
2469(an)S
2561(access)S
2769(control)S
613 1629(ecision)U
841(and)S
969(thus)S
1113(inclusion)S
1401(of)S
1485(a)S
1541(data)S
1685(item)S
1837(in)S
1917(a)S
1973(widely)S
2193(known)S
2413(collection)S
2721(need)S
2881(not)S
577 1713(impose)U
809(on)S
905(domains)S
1173(that)S
1305(do)S
1401(not)S
1517(wish)S
1677(to)S
1757(make)S
1937(use)S
2057(of)S
2141(the)S
2253(data)S
2397(item.)S
727 1821(Since)U
911(the)S
1023(administrative)S
1459(domains)S
1727(often)S
1899(represent)S
2187(federal)S
2411(agencies)S
2683(\(e.g.,)S
2853(DOE,)S
3005 1905(n)U
577 1989(a)U
577 1905(NASA,)U
815(NSF\),)S
1013(it)S
1077(was)S
1213(perceived)S
1517(that)S
1649(there)S
1817(should)S
2033(be)S
2125(some)S
2301(means)S
2509(of)S
2593(representing)S
2973(a)S
609 1989(gency's)U
857(granting)S
1121(authorization)S
1525(for)S
1633(resource)S
1901(use)S
2021(to)S
2101(the)S
2213(subject.)S
2483(This)S
2635(might)S
2827(be)S
2919(a)S
2947 2073(e)U
577 2157(s)U
577 2073(hierarchic)U
889(data)S
1033(item,)S
1203(specifying)S
1527(both)S
1679(an)S
1771(agency)S
1999(identi\256er)S
2283(and)S
2411(further)S
2631(de\256ning)S
2891(th)S
605 2157(ubject's)U
857(privileges)S
1165(as)S
1249(granted)S
1489(by)S
1585(the)S
1697(agency.)S
1967(For)S
2091(example,)S
2377(an)S
2469(agency)S
2697(such)S
2853(as)S
2937(DOE)S
577 2325(s)U
577 2241(might)U
769(grant)S
941(somewhat)S
1257(different)S
1529(privileges)S
1837(to)S
1917(its)S
2009(employees,)S
2359(to)S
2439(its)S
2531(grantees)S
2795(and)S
2923(their)S
605 2325(taff,)U
747(and)S
875(to)S
955(other)S
1127(individuals)S
1471(engaged)S
1735(in)S
1815(work)S
1987(that)S
2119(is)S
2191(viewed)S
2423(as)S
2507(supportive)S
2835(to)S
2915(the)S
3055 2409(e)U
577 2493(a)U
577 2409(agency)U
805(mission)S
1053(\(though)S
1301(not)S
1417(necessarily)S
1761(funded)S
1985(by)S
2081(the)S
2193(agency\).)S
2487(This)S
2639(effect)S
2827(might)S
3019(b)S
609 2493(chieved)U
857(by)S
953(issuing)S
1181(to)S
1261(each)S
1417(of)S
1501(these)S
1673(subjects)S
1929(credentials)S
2265(that)S
2397(specify)S
2629(some)S
2805(form)S
2969(of)S
3047 2577(e)U
577 2661(n)U
577 2577(af\256liation)U
881(with)S
1033(the)S
1145(agency)S
1373(in)S
1453(question)S
1721(but)S
1837(with)S
1989(different)S
2261(quali\256ers,)S
2571(depending)S
2895(on)S
2991(th)S
613 2661(ature)U
781(of)S
865(the)S
977(af\256liation.)S
1323(Thus)S
1491(we)S
1599(envision)S
1867(a)S
1923(compound)S
2251(access)S
2459(control)S
2687(data)S
2831(item)S
2983(that)S
3111 2745(D)U
577 2829(a)U
577 2745(will)U
713(specify)S
945(an)S
1037(AGENCY)S
1361(AFFILIATION)S
1833(INDICATOR,)S
2271(consisting)S
2587(of)S
2671(an)S
2763(AGENCY)S
3087(I)S
609 2829(nd)U
705(AFFILIATION)S
1177(CLASS.)S
727 2937(I)U
(t)R
795(is)S
867(anticipated)S
1207(that)S
1339(some)S
1515(form)S
1679(of)S
1763(accounting)S
2103(for)S
2211(use)S
2331(of)S
2415(resources)S
2711(will)S
2847(be)S
2911 3021(s)U
577 3105(a)U
577 3021(required)U
841(in)S
921(many)S
1105(circumstances)S
1537(within)S
1745(the)S
1857(NRI.)S
2047(OMB)S
2235(regulations)S
2579(requires)S
2835(thi)S
609 3105(ccounting)U
917(at)S
993(the)S
1105(agency)S
1333(level,)S
1515(and)S
1643(thus)S
1787(it)S
1851(might)S
2043(be)S
2135(suf\256cient)S
2427(to)S
2507(rely)S
2643(on)S
2739(the)S
2851(agency)S
577 3288(i)U
577 3189(af\256liation)U
881(data)S
1025(to)S
1105(satisfy)S
1317(this)S
1445(requirement.)S
1859(In)S
1943(other)S
2115(cases,)S
2309(an)S
2401(orthogonal)S
2737(account)S
597 3288(denti\256er)U
861(might)S
1053(be)S
1145(required)S
1409(and)S
1537(so)S
1625(we)S
1733(allow)S
1917(for)S
2025(inclusion)S
2313(of)S
2397(a)S
2453(BILLING)S
2765(CODE)S
3012(as)S
577 3456(c)U
577 3372(part)U
713(of)S
797(the)S
909(explicit)S
1149(access)S
1357(control)S
1585(data.)S
1771(This)S
1923(may)S
2071(prove)S
2259(especially)S
2571(important)S
2875(in)S
54 Z
2961 3261(7)U
72 Z
609 3456(ontexts)U
841(where)S
1041(commercial)S
1405(facilities)S
1677(are)S
1789(employed.)S
2987 3564(e)U
577 3648(i)U
727 3564(In)U
811(the)S
923(most)S
1087(extreme)S
1343(cases)S
1519(it)S
1583(may)S
1731(be)S
1823(necessary)S
2127(for)S
2235(an)S
2327(individual)S
2643(subject)S
2871(to)S
2951(b)S
597 3648(denti\256ed,)U
891(either)S
1079(for)S
1187(accounting)S
1527(or)S
1611(for)S
1719(access)S
1927(authorization.)S
2373(Although)S
2669(details)S
2881(for)S
2989(such)S
577 3816(a)U
577 3732(an)U
669(identi\256er)S
953(were)S
1117(not)S
1233(discussed,)S
1551(it)S
1615(seems)S
1815(likely)S
2003(that)S
2135(a)S
2191(hierarchic)S
2503(data)S
2647(item)S
2799(would)S
3003(be)S
609 3816(ppropriate,)U
947(with)S
1099(a)S
1155(domain)S
1395(identi\256er)S
1679(used)S
1835(to)S
1915(specify)S
2147(the)S
2259(authority)S
2543(that)S
2675(vouches)S
2935(for)S
3043(the)S
577 3984(u)U
577 3900(subject's)U
857(identity,)S
1119(plus)S
1263(a)S
1319(subject)S
1547(identi\256er)S
1831(that)S
1963(is)S
2035(unique)S
2255(within)S
2463(the)S
2575(domain.)S
2857(Even)S
3029(if)S
613 3984(sers)U
749(need)S
909(not)S
1025(be)S
1117(identi\256ed)S
1413(as)S
1497(individuals,)S
1859(groups)S
2079(of)S
2163(users)S
2335(may)S
2483(be)S
2575(identi\256ed)S
2871(for)S
0 F
48 Z
577 4041 M
8 22 0 0 16 0 0 18 PS16
601 4041 M
8 22 0 0 16 0 0 18 PS16
625 4041 M
8 22 0 0 16 0 0 18 PS16
649 4041 M
8 22 0 0 16 0 0 18 PS16
673 4041 M
8 22 0 0 16 0 0 18 PS16
697 4041 M
8 22 0 0 16 0 0 18 PS16
721 4041 M
8 22 0 0 16 0 0 18 PS16
745 4041 M
8 22 0 0 16 0 0 18 PS16
769 4041 M
8 22 0 0 16 0 0 18 PS16
793 4041 M
8 22 0 0 16 0 0 18 PS16
817 4041 M
8 22 0 0 16 0 0 18 PS16
841 4041 M
8 22 0 0 16 0 0 18 PS16
865 4041 M
8 22 0 0 16 0 0 18 PS16
889 4041 M
8 22 0 0 16 0 0 18 PS16
913 4041 M
8 22 0 0 16 0 0 18 PS16
937 4041 M
8 22 0 0 16 0 0 18 PS16
961 4041 M
8 22 0 0 16 0 0 18 PS16
985 4041 M
8 22 0 0 16 0 0 18 PS16
1009 4041 M
8 22 0 0 16 0 0 18 PS16
1033 4041 M
8 22 0 0 16 0 0 18 PS16
1057 4041 M
8 22 0 0 16 0 0 18 PS16
1081 4041 M
8 22 0 0 16 0 0 18 PS16
1105 4041 M
8 22 0 0 16 0 0 18 PS16
1129 4041 M
8 22 0 0 16 0 0 18 PS16
1153 4041 M
8 22 0 0 16 0 0 18 PS16
1177 4041 M
8 22 0 0 16 0 0 18 PS16
1201 4041 M
8 22 0 0 16 0 0 18 PS16
1225 4041 M
8 22 0 0 16 0 0 18 PS16
1249 4041 M
8 22 0 0 16 0 0 18 PS16
1273 4041 M
8 22 0 0 16 0 0 18 PS16
1297 4041 M
8 22 0 0 16 0 0 18 PS16
1321 4041 M
8 22 0 0 16 0 0 18 PS16
1345 4041 M
8 22 0 0 16 0 0 18 PS16
1369 4041 M
8 22 0 0 16 0 0 18 PS16
1393 4041 M
8 22 0 0 16 0 0 18 PS16
1417 4041 M
8 22 0 0 16 0 0 18 PS16
1 F
724 4122(Note)U
833(that)S
920(this)S
1005(item)S
1105(may)S
1203(enter)S
1314(into)S
1404(the)S
1478(decision)S
1653(process)S
1813(or)S
1869(may)S
1967(be)S
2028(employed)S
2232(only)S
2333(for)S
2405(accounting.)S
60 Z
577 4413(L)U
36 Z
706 4104(7)U
60 Z
614 4413(einer)U
2932([Page)S
3089(17])S
EP
%%Page: ? 20
BP
1 F
72 Z
577 681(a)U
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
609 681(uthorization)U
981(purposes.)S
1303(Hence)S
1511(we)S
1619(expect)S
1831(to)S
1911(see)S
2027(a)S
2083(SUBJECT)S
2411(ID)S
2511(compound)S
2839(data)S
2983(item)S
3131 765(t)U
577 849(a)U
577 765(consisting)U
893(of)S
977(a)S
1033(DOMAIN)S
1353(ID)S
1453(and)S
1581(a)S
1637(USER)S
1845(ID,)S
1963(where)S
2163(this)S
2291(later)S
2443(data)S
2587(item)S
2739(may)S
2887(represen)S
633 849(group)U
825(of)S
909(users)S
1081(rather)S
1273(than)S
1421(a)S
1477(single)S
1673(individual.)S
2939 957(s)U
577 1041(a)U
727 957(The)U
863(\(ultimate\))S
1171(internet)S
1415(layer)S
1583(\(IP)S
1695(or)S
1779(CLNP\))S
2011(source)S
2223(and)S
2351(destination)S
2691(addresse)S
609 1041(ssociated)U
897(with)S
1049(a)S
1105(packet,)S
1335(possibly)S
1599(including)S
1895(protocol)S
2159(identi\256cation)S
2563(data,)S
2725(are)S
2837(also)S
3055 1125(t)U
577 1209(t)U
577 1125(viewed)U
809(as)S
893(legitimate)S
1205(inputs)S
1405(to)S
1485(access)S
1693(control)S
1921(decisions,)S
2231(but)S
2347(for)S
2455(different)S
2727(reasons)S
2967(tha)S
597 1209(he)U
689(other)S
861(data)S
1005(items)S
1185(described)S
1485(above.)S
1723(Use)S
1859(of)S
1943(addresses)S
2243(provides)S
2515(a)S
2571(convenient)S
2911(means)S
577 1377(s)U
577 1293(of)U
661(prohibiting)S
1005(access)S
1213(by)S
1309(speci\256c)S
1553(devices)S
1793(or)S
1877(groups)S
2097(of)S
2181(devices)S
2421(\(e.g.,)S
2591(entire)S
2779(LANs\))S
605 1377(hould)U
793(it)S
857(become)S
1105(necessary)S
1409(to)S
1489(revoke)S
1709(access)S
1917(at)S
1993(this)S
2121(granularity.)S
2503(Also,)S
2681(one)S
2809(can)S
2933(imagine)S
577 1545(w)U
577 1461(simple)U
793(access)S
1001(control)S
1229(policies)S
1477(that)S
1609(might)S
1801(be)S
1893(employed)S
2201(initially)S
2449(in)S
2529(the)S
2641(NRI)S
2789(and)S
2917(which)S
629 1545(ould)U
781(be)S
873(based)S
1061(only)S
1213(\(or)S
1321(primarily\))S
1637(on)S
1733(these)S
1905(values.)S
2155(Finally,)S
2401(we)S
2509(note)S
2657(that)S
2789(these)S
2961(data)S
3105 1629(g)U
577 1713(t)U
577 1629(items)U
757(are)S
869(already)S
1105(included)S
1377(in)S
1457(every)S
1641(packet)S
1853(and)S
1981(are)S
2093(examined)S
2397(in)S
2477(the)S
2589(course)S
2801(of)S
2885(effectin)S
597 1713(he)U
689(routing)S
921(decisions)S
1213(which)S
1413(are)S
1525(the)S
1637(heart)S
1805(of)S
1889(the)S
2001(internet)S
2245(switching)S
2549(system)S
2773(and)S
2901(which)S
577 1881(i)U
577 1797(are)U
689(thus)S
833(intimately)S
1149(related)S
1369(to)S
1449(the)S
1561(objects)S
1789(being)S
1973(protected.)S
2307(Thus)S
2475(even)S
2635(if)S
2703(these)S
2875(data)S
597 1881(tems)U
757(are)S
869(not)S
985(used)S
1141(in)S
1221(formulating)S
1585(an)S
1677(access)S
1885(control)S
2113(decision,)S
2395(they)S
2543(play)S
2691(an)S
2783(important)S
3131 1965(n)U
577 2049(o)U
577 1965(role)U
713(in)S
793(the)S
905(enforcement)S
1289(of)S
1373(the)S
1485(policies.)S
1775(It)S
1843(is)S
1915(worth)S
2107(noting)S
2315(that)S
2447(the)S
2559(preceding)S
2867(discussio)S
613 2049(f)U
661(data)S
805(items)S
985(which)S
1185(are)S
1297(candidates)S
1625(as)S
1709(explicit)S
1949(inputs)S
2149(to)S
2229(access)S
2437(control)S
2665(decisions)S
2957(does)S
577 2217(t)U
577 2133(not)U
693(address)S
933(how)S
1081(or)S
1165(when)S
1345(these)S
1517(data)S
1661(items)S
1841(are)S
1953(created,)S
2203(distributed,)S
2553(validated,)S
2859(or)S
597 2217(ransported)U
925(in)S
1005(subscriber)S
1325(traf\256c.)S
1563(These)S
1759(are)S
1871(important)S
2175(architectural)S
2559(issues,)S
2773(some)S
2949(of)S
3 F
577 2457(4)U
1 F
577 2301(which)U
777(are)S
889(addressed)S
1197(in)S
1277(later)S
1429(portions)S
1689(of)S
1773(this)S
1901(document.)S
3 F
613 2457(.3.)U
733(Communication)S
1253(Scenarios)S
1919 2613(n)U
577(4.3.1.)S
787(Connection-Oriented)S
1463(Communicatio)S
1 F
727 2721(Different)U
1015(types)S
1191(of)S
1275(communication)S
1747(scenarios)S
2039(may)S
2187(impose)S
2419(differing)S
2695(requirements)S
3095(on)S
577 2889(f)U
577 2805(access)U
785(control)S
1013(mechanisms.)S
1435(We)S
1559(observe)S
1807(that)S
1939(\256ne-grained)S
2311(access)S
2519(control)S
2747(mechanisms)S
601 2889(or)U
685(connection-oriented)S
1285(communications)S
1785(are)S
1897(better)S
2085(understood)S
2429(and)S
2557(easier)S
2749(to)S
2829(implement)S
577 3057(b)U
577 2973(than)U
725(corresponding)S
1161(mechanisms)S
1541(for)S
1649(connectionless)S
2097(communication.)S
2611(The)S
2747(rationale)S
613 3057(ehind)U
797(this)S
925(observation)S
1285(is)S
1357(that)S
1489(connection-oriented)S
2089(communication)S
2561(implies)S
2797(some)S
2939 3141(m)U
577 3225(a)U
577 3141(connection)U
917(establishment)S
1337(procedure.)S
1691(This)S
1843(procedure)S
2155(is)S
2227(a)S
2283(natural)S
2507(place)S
2683(to)S
2763(perfor)S
609 3225(ccess)U
785(control)S
1013(checks)S
1233(and)S
1361(to)S
1441(terminate)S
1737(the)S
1849(procedure)S
2161(if)S
2229(the)S
2341(checks)S
2561(fail.)S
2723(Moreover,)S
3049(the)S
577 3393(p)U
577 3309(processing)U
909(and)S
1037(bandwidth)S
1365(overhead)S
1653(associated)S
1973(with)S
2125(connection)S
2465(establishment)S
613 3393(rocedures)U
917(makes)S
1125(the)S
1237(added)S
1433(burden)S
1657(of)S
1741(transporting)S
2113(and)S
2241(processing)S
2573(access)S
2781(control)S
3085 3477(s)U
577 3561(c)U
577 3477(information)U
941(less)S
1073(onerous.)S
1367(In)S
1451(contrast,)S
1721(additional)S
2033(processing)S
2365(and)S
2493(bandwidth)S
2821(for)S
2929(acces)S
609 3561(ontrol)U
805(applied)S
1041(to)S
1121(individual)S
1437(packets)S
1677(is)S
1749(much)S
1933(more)S
2105(likely)S
2293(to)S
2373(result)S
2557(in)S
2637(an)S
2729(unacceptable)S
3113 3645(.)U
577(overhead)S
865(if)S
933(comparable)S
1293(levels)S
1485(of)S
1569(assurance)S
1873(and)S
2001(granularity)S
2341(of)S
2425(enforcement)S
2809(are)S
2921(sought)S
727 3753(The)U
863(NRI)S
1011(is)S
1083(expected)S
1363(to)S
1443(provide)S
1687(\(lower)S
1899(layer)S
2067(3\))S
2151(connectionless)S
2599(service)S
2827(as)S
2911(its)S
3003(basic)S
577 3921(e)U
577 3837(interface.)U
895(Many)S
1087(proposed)S
1375(designs)S
1615(for)S
1723(IP)S
1811(or)S
1895(CLNP)S
2103(switches)S
2375(for)S
2483(this)S
2611(network)S
609 3921(nvironment)U
965(introduce)S
1261(a)S
1317(notion)S
1525(of)S
1609(``soft-state'')S
1993(for)S
2101(connectionless)S
2549(traf\256c)S
2745(which)S
2945(is)S
3067 4005(s)U
577 4089(s)U
577 4005(roughly)U
825(analogous)S
1141(to)S
1221(treating)S
1465(this)S
1593(traf\256c)S
1789(as)S
1873(though)S
2097(it)S
2161(were)S
2325(connection-oriented.)S
2967(Thi)S
605 4089(oft)U
709(state)S
865(is)S
937(usually)S
1169(cited)S
1333(as)S
1417(a)S
1473(prerequisite)S
1837(for)S
1945(providing)S
2249(better)S
2437(congestion)S
2773(control)S
3009 4173(f)U
60 Z
577 4413(L)U
72 Z
577 4173(facilities)U
849(in)S
929(the)S
1041(Internet)S
1289(and)S
1417(for)S
1525(supporting)S
1857(more)S
2029(sophisticated)S
2429(routing,)S
2679(e.g.,)S
2825(type)S
2973(o)S
60 Z
614 4413(einer)U
2932([Page)S
3089(18])S
EP
%%Page: ? 21
BP
1 F
72 Z
577 681(s)U
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
605 681(ervice)U
805(\(TOS\))S
1013(routing)S
1245(with)S
1397(support)S
1637(for)S
1745(bandwidth)S
2073(guarantees.)S
2799 789(s)U
577 873(e)U
727 789(We)U
851(anticipate)S
1155(that)S
1287(designated)S
1619(IP/CLNP)S
1911(switches)S
2183(in)S
2263(the)S
2375(NRI)S
2523(will)S
2659(act)S
2767(a)S
609 873(nforcement)U
961(mechanisms)S
1341(for)S
1449(the)S
1561(transmission)S
1949(and)S
2077(switching)S
2381(access)S
2589(control)S
2817(policy,)S
3039(an)S
577 1041(`)U
577 957(assumption)U
929(that)S
1061(matches)S
1321(Clark's)S
1557(policy)S
1761(routing)S
1993(model.)S
2239(The)S
2375(switches,)S
2665(designated)S
601 1041(`policy)U
829(gateways'')S
1169(in)S
1249(Clark's)S
1485(paper,)S
1687(are)S
1799(ideal)S
1963(candidates)S
2291(for)S
2399(this)S
2527(role)S
2663(as)S
2747(they)S
2895(provide)S
577 1209(d)U
577 1125(the)U
689(interfaces)S
993(between)S
1257(domains)S
1525(and)S
1653(thus)S
1797(have)S
1957(direct)S
2145(control)S
2373(over)S
2525(packet)S
2737(transport)S
3017(at)S
613 1209(omain)U
817(boundaries.)S
1199(Based)S
1399(on)S
1495(these)S
1667(observations,)S
2073(it)S
2137(seems)S
2337(reasonable)S
2669(to)S
2749(pursue)S
2965(access)S
577 1377(i)U
577 1293(control)U
805(mechanisms)S
1185(which)S
1385(assume)S
1621(that)S
1753(some)S
1929(form)S
2093(of)S
2177(connection)S
2517(abstraction)S
2857(can)S
2981(be)S
597 1377(mposed)U
845(on)S
941(most)S
1105(\(though)S
1353(perhaps)S
1601(not)S
1717(all\))S
1837(communications.)S
2379(The)S
2515(intent)S
2703(is)S
2775(that)S
2907(the)S
3053 1461(s)U
577 1545(c)U
577 1461(soft-state)U
865(database)S
1137(could)S
1321(be)S
1413(augmented)S
1753(to)S
1833(include)S
2069(additional)S
2381(data)S
2525(required)S
2789(for)S
2897(acces)S
609 1545(ontrol)U
805(enforcement.)S
727 1653(T)U
(hroughout)R
1091(this)S
1219(report)S
1415(we)S
1523(shall)S
1683(employ)S
1923(the)S
2035(term)S
2191(``connection'')S
2627(in)S
2707(this)S
2835(broad)S
3135 1737(t)U
577 1821(l)U
577 1737(sense)U
757(when)S
937(discussing)S
1261(path)S
1409(establishment)S
1829(procedures,)S
2187(even)S
2347(if)S
2415(the)S
2527(internet)S
2771(and)S
2899(transpor)S
597 1821(ayer)U
745(protocols)S
1037(employed)S
1345(by)S
1441(the)S
1553(end)S
1681(points)S
1881(do)S
1977(not)S
2093(provide)S
2337(a)S
2393(true)S
2529(connection)S
2869(service.)S
577 1989(m)U
577 1905(Only)U
745(when)S
925(the)S
1037(characteristics)S
1473(of)S
1557(a)S
1613(communication)S
2085(activity)S
2325(cannot)S
2541(be)S
2633(effectively)S
633 1989(odelled)U
869(as)S
953(a)S
1009(connection)S
1349(in)S
1429(this)S
1557(soft)S
1689(state)S
1845(sense)S
2025(\(as)S
2133(would)S
2337(be)S
2429(the)S
2541(case)S
2689(in)S
2769(many)S
2953(brief,)S
3093 2073(')U
577 2157(t)U
577 2073(transaction-oriented)U
1177(communication)S
1649(scenarios\))S
1965(will)S
2101(we)S
2209(use)S
2329(the)S
2441(term)S
2597(``connectionless')S
597 2157(o)U
657(describe)S
921(the)S
1033(activity.)S
727 2265(T)U
(his)R
879(orientation)S
1215(is)S
1287(further)S
1507(motivated)S
1819(by)S
1915(the)S
2027(relative)S
2267(ease)S
2415(with)S
2567(which)S
2767(one)S
2895(can)S
577 2433(`)U
577 2349(devise)U
785(mechanisms)S
1165(for)S
1273(communication)S
1745(scenarios)S
2037(in)S
2117(which)S
2317(there)S
2485(is)S
2557(a)S
2613(well)S
2761(de\256ned)S
601 2433(`initiator'')U
925(of)S
1009(a)S
1065(``connection'')S
1501(and)S
1629(this)S
1757(initiator)S
2009(can)S
2133(be)S
2225(called)S
2421(upon)S
2589(to)S
2669(supply)S
2885(inputs)S
3085(to)S
577 2601(i)U
577 2517(the)U
689(access)S
897(control)S
1125(process.)S
1407(For)S
1531(example,)S
1817(traditional)S
2137(virtual)S
2349(terminal)S
2613(communication)S
597 2601(nvolves)U
845(establishing)S
1213(an)S
1305(actual)S
1501(connection,)S
1859(in)S
1939(real)S
2071(time,)S
2241(between)S
2505(two)S
2637(processes.)S
2979(The)S
3065 2685(e)U
577 2769(c)U
577 2685(initiator)U
829(of)S
913(the)S
1025(connection)S
1365(is)S
1437(required)S
1701(to)S
1781(supply)S
1997(authorization)S
2401(data)S
2545(to)S
2625(the)S
2737(target)S
2925(of)S
3009(th)S
609 2769(onnection)U
917(before)S
1125(access)S
1333(is)S
1405(granted)S
1645(to)S
1725(the)S
1837(computation)S
2221(resources)S
2517(at)S
2593(the)S
2705(target)S
2893(\(though)S
577 2937(t)U
577 2853(this)U
705(occurs)S
917(after)S
1073(the)S
1185(connection)S
1525(itself)S
1693(is)S
1765(established\).)S
2175(The)S
2311(same)S
2483(holds)S
2663(true)S
2799(for)S
597 2937(raditional)U
897(\256le)S
1013(transfer)S
1257(scenarios,)S
1567(even)S
1727(though)S
1951(3-way)S
2155(\256le)S
2271(transfer)S
2515(facilities)S
2787(have)S
2947(been)S
3 F
577 3177(4)U
1 F
577 3021(de\256ned)U
813(which)S
1013(may)S
1161(not)S
1277(precisely)S
1561(\256t)S
1645(this)S
1773(model.)S
3 F
613 3177(.3.2.)U
787(Variations)S
1135(on)S
1235(Connection-Oriented)S
1911(Scenarios)S
1 F
2933 3285(y)U
577 3369(b)U
727 3285(When)U
923(the)S
1035(scenario)S
1299(does)S
1455(not)S
1571(embody)S
1827(the)S
1939(concept)S
2187(of)S
2271(an)S
2363(initiator,)S
2633(then)S
2781(it)S
2845(ma)S
613 3369(ecome)U
825(more)S
997(dif\256cult)S
1249(to)S
1329(devise)S
1537(simple)S
1753(mechanisms)S
2133(for)S
2241(acquiring)S
2537(the)S
2649(authorization)S
577 3537(e)U
577 3453(data)U
721(prior)S
885(to)S
965(authorizing)S
1317(transmission)S
1705(of)S
1789(data)S
1933(on)S
2029(the)S
2141(connection)S
2481(in)S
2561(question.)S
2871(The)S
609 3537(xample)U
845(of)S
929(simultaneous)S
1333(connection)S
1673(initiation)S
1957(by)S
2053(two)S
2185(TCP)S
2341(instances)S
2629(was)S
2765(cited)S
2929(as)S
3013(an)S
3065 3621(.)U
577 3705(T)U
577 3621(example)U
845(of)S
929(this)S
1057(sort)S
1189(of)S
1273(deviation)S
1565(from)S
1729(our)S
1849(simple)S
2065(connection)S
2405(establishment)S
2825(scenario)S
621 3705(he)U
713(concern)S
965(here)S
1113(is)S
1185(not)S
1301(an)S
1393(access)S
1601(control)S
1829(issue)S
1997(per)S
2113(se,)S
2215(but)S
2331(rather)S
2523(that)S
2655(two)S
2787(simplex)S
3051 3789(n)U
577 3873(w)U
577 3789(connections)U
945(would)S
1149(be)S
1241(separately)S
1557(routed)S
1765(instead)S
1993(of)S
2077(one)S
2205(duplex)S
2425(connection,)S
2783(a)S
2839(situatio)S
629 3873(hich)U
777(could)S
961(lead)S
1105(to)S
1185(anomalous)S
1521(behavior)S
1797(\(in)S
1901(terms)S
2085(of)S
2169(performance\).)S
2623(Note)S
2787(also)S
2927(that)S
3117 3957(n)U
577 4041(a)U
577 3957(ISO)U
717(transport)S
997(protocols)S
1289(\(TP0-4\))S
1541(do)S
1637(not)S
1753(support)S
1993(such)S
2149(simultaneous)S
2553(connection)S
2893(initiatio)S
609 4041(nd)U
705(so)S
793(the)S
905(criticality)S
1205(of)S
1289(supporting)S
1621(such)S
1777(``dual)S
1973(initiator'')S
2273(situations)S
2573(is)S
2645(not)S
2761(clear.)S
3107 4149(n)U
577 4233(i)U
727 4149(Another)U
987(concern)S
1239(was)S
1375(voiced)S
1591(over)S
1743(situations)S
2043(in)S
2123(which)S
2323(the)S
2435(initiator)S
2687(of)S
2771(a)S
2827(connectio)S
597 4233(s)U
649(readily)S
873(identi\256ed)S
1169(but)S
1285(permission)S
1625(to)S
1705(traverse)S
1957(a)S
2013(path)S
2161(is)S
2233(a)S
2289(function)S
2553(of)S
2637(the)S
2749(authorization)S
60 Z
3149 4413(])U
577(Leiner)S
2932([Page)S
3089(19)S
EP
%%Page: ? 22
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
577 765(c)U
577 681(of)U
661(the)S
773(computing)S
1105(resources)S
1401(being)S
1585(accessed,)S
1879(not)S
1995(of)S
2079(the)S
2191(subscriber)S
2511(initiating)S
2795(the)S
609 765(onnection.)U
959(The)S
1095(assumption)S
1447(underlying)S
1783(this)S
1911(concern)S
2163(is)S
2235(that)S
2367(the)S
2479(initiator)S
2731(of)S
2815(the)S
3031 849(n)U
577 933(d)U
577 849(connection)U
917(would)S
1121(not)S
1237(be)S
1329(capable)S
1573(of)S
1657(supplying)S
1965(the)S
2077(necessary,)S
2399(validated)S
2687(authorizatio)S
613 933(ata)U
721(to)S
801(the)S
913(satisfaction)S
1265(of)S
1349(the)S
1461(policy)S
1665(gateways)S
1957(because)S
2209(such)S
2365(inputs)S
2565(would)S
2769(be)S
2861(available)S
577 1101(a)U
577 1017(only)U
729(at)S
805(the)S
917(destination.)S
1299(However,)S
1605(if)S
1673(the)S
1785(host)S
1929(being)S
2113(accessed)S
2389(could)S
2573(distribute)S
609 1101(ppropriate)U
929(credentials)S
1265(to)S
1345(the)S
1457(user)S
1601(prior)S
1765(to)S
1845(his)S
1953(access,)S
2179(the)S
2291(simple)S
2507(initiator)S
2759(scenario)S
577 1185(might)U
769(suf\256ce.)S
727 1293(These)U
923(two)S
1055(examples)S
1351(indicate)S
1603(how)S
1751(discussion)S
2075(of)S
2159(access)S
2367(control)S
2595(in)S
2675(the)S
2787(context)S
3023(of)S
3089 1377(s)U
577 1461(a)U
577 1377(speci\256c)U
821(communication)S
1293(scenarios)S
1585(can)S
1709(be)S
1801(highly)S
2009(dependent)S
2329(on)S
2425(underlying)S
2761(assumption)S
609 1461(bout)U
761(details)S
973(of)S
1057(enforcement)S
1441(mechanisms.)S
1863(Many)S
2055(such)S
2211(discussions)S
2563(cannot)S
2779(take)S
2923(place)S
577 1629(a)U
577 1545(without)U
821(a)S
877(straw)S
1057(man)S
1205(architecture)S
1569(for)S
1677(such)S
1833(mechanisms,)S
2231(and)S
2359(the)S
2471(straw)S
2651(man)S
2799(must)S
609 1629(ddress)U
817(assurance)S
1121(issues,)S
1335(etc.)S
1485(Nonetheless,)S
1879(it)S
1943(is)S
2015(worthwhile)S
2367(to)S
2447(characterize)S
2819(the)S
2931(range)S
3089 1713(e)U
577 1797(f)U
577 1713(of)U
661(communication)S
1133(scenarios)S
1425(which)S
1625(need)S
1785(be)S
1877(supported)S
2185(in)S
2265(order)S
2441(to)S
2521(establish)S
2797(a)S
2853(referenc)S
601 1797(or)U
685(evaluating)S
1009(such)S
1165(straw)S
1345(men.)S
1535(Thus)S
1703(we)S
1811(will)S
1947(continue)S
2219(exploring)S
2519(communication)S
2961 1881(.)U
3 F
577 2037(4)U
1 F
577 1881(scenarios)U
869(and)S
997(postpone)S
1281(enforcement)S
1665(mechanism)S
2017(discussion)S
2341(until)S
2497(the)S
2609(next)S
2757(section)S
3 F
613 2037(.3.3.)U
787(Electronic)S
1127(Messaging)S
1 F
727 2145(E)U
(lectronic)R
1047(mail)S
1199(poses)S
1383(something)S
1707(of)S
1791(a)S
1847(problem)S
2111(for)S
2219(connection-oriented)S
2819(access)S
3077 2229(r)U
577 2313(m)U
577 2229(control)U
805(models)S
1037(for)S
1145(several)S
1373(reasons.)S
1655(First,)S
1829(the)S
1941(initiator)S
2193(of)S
2277(a)S
2333(connection)S
2673(established)S
3017(fo)S
633 2313(ail)U
729(transfer)S
973(is)S
1045(generally)S
1337(not)S
1453(the)S
1565(message)S
1833(originator)S
2141(and)S
2269(may)S
2417(not)S
2533(even)S
2693(have)S
2853(any)S
3025 2397(s)U
577 2481(r)U
577 2397(relationship)U
941(to)S
1021(the)S
1133(originator)S
1441(or)S
1525(a)S
1581(recipient.)S
1899(In)S
1983(fact,)S
2133(staged)S
2341(delivery)S
2601(of)S
2685(mail)S
2837(permit)S
601 2481(elay)U
745(points)S
945(which)S
1145(have)S
1305(no)S
1401(af\256liation)S
1705(with)S
1857(the)S
1969(message)S
2237(originator)S
2545(or)S
2629(any)S
2757(recipient.)S
577 2649(S)U
577 2565(This)U
729(decoupling)S
1073(raises)S
1261(concerns)S
1541(with)S
1693(respect)S
1921(to)S
2001(assurance)S
2305(of)S
2389(access)S
2597(control)S
2825(inputs.)S
617 2649(econd,)U
831(identifying)S
1171(a)S
1227(single)S
1423(subject)S
1651(for)S
1759(access)S
1967(control)S
2195(purposes)S
2475(becomes)S
2751(dif\256cult)S
3003(in)S
3041 2733(r)U
577 2817(c)U
577 2733(this)U
705(context)S
941(as)S
1025(multiple)S
1289(message)S
1557(originators)S
1893(may)S
2041(be)S
2133(served)S
2345(by)S
2441(a)S
2497(single)S
2693(mail)S
2845(transfe)S
609 2817(onnection.)U
959(Third,)S
1161(if)S
1229(traf\256c)S
1425(destinations)S
1793(are)S
1905(included)S
2177(in)S
2257(an)S
2349(access)S
2557(control)S
2785(decision,)S
3067(the)S
577 2901(multi-recipient)U
1029(characteristic)S
1437(of)S
1521(many)S
1705(messages)S
2001(further)S
2221(complicates)S
2589(the)S
2701(process.)S
727 3009(We)U
851(could)S
1035(accommodate)S
1459(mail)S
1611(transfer)S
1855(by)S
1951(treating)S
2195(mail)S
2347(transfer)S
2591(agents)S
2799(\(MTAs\))S
3059(as)S
577 3177(t)U
577 3093(subjects,)U
851(and)S
979(according)S
1287(to)S
1367(them)S
1535(a)S
1591(set)S
1695(of)S
1779(privileges)S
2087(appropriate)S
2439(to)S
2519(ensure)S
2731(mail)S
2883(delivery)S
597 3177(hroughout)U
917(the)S
1029(NRI,)S
1195(though)S
1419(that)S
1551(may)S
1699(not)S
1815(translate)S
2083(into)S
2219(allowing)S
2495(every)S
2679(MTA)S
2863(to)S
2943(access)S
577 3345(\256)U
577 3261(every)U
761(other)S
933(MTA)S
1117(directly)S
1361(or)S
1445(via)S
1557(any)S
1685(possible)S
1945(network)S
2205(path.)S
2395(This)S
2547(approach)S
2835(sacri\256ces)S
617 3345(ne)U
709(granularity)S
1049(access)S
1257(control,)S
1503(and)S
1631(possibly)S
1895(ef\256ciency)S
2203(of)S
2287(mail)S
2439(transfer,)S
2701(for)S
2809(simplicity.)S
3128 3444(e)U
577(The)S
713(fact)S
845(that)S
977(mail)S
1129(generally)S
1421(does)S
1577(not)S
1693(require)S
1921(the)S
2033(low)S
2165(delay)S
2345(paths)S
2548(\(which)S
2772(we)S
2880(anticipat)S
54 Z
2497 3417(8)U
72 Z
2871 3528(f)U
577 3612(c)U
577 3528(will)U
713(be)S
805(the)S
917(most)S
1081(scarce)S
1285(resources\))S
1605(may)S
1753(make)S
1933(this)S
2061(approach)S
2349(more)S
2521(palatable.)S
2847(I)S
609 3612(ommercial)U
941(paths)S
1117(are)S
1229(employed)S
1537(and)S
1665(\256ne)S
1797(grained)S
2037(billing)S
2249(is)S
2321(required,)S
2603(this)S
2731(approach)S
577 3780(e)U
577 3696(delegates)U
869(responsibility)S
1285(for)S
1393(per-user)S
1653(billing)S
1865(to)S
1945(the)S
2057(message)S
2325(handling)S
2601(system)S
2825(\(as)S
609 3780(nvisioned)U
913(in)S
993(X.400)S
1195(recommendations\).)S
1797(This)S
1949(approach)S
2237(is)S
2309(analogous)S
2625(to)S
2705(the)S
2817(access)S
3101 3864(.)U
0 F
48 Z
577 3960 M
8 22 0 0 16 0 0 18 PS16
1 F
72 Z
577 3864(control)U
805(technique)S
1109(typically)S
1385(adopted)S
1637(for)S
1745(end-system)S
2097(access)S
2305(control)S
2533(with)S
2685(regard)S
2893(to)S
2973(mail)S
0 F
48 Z
601 3960 M
8 22 0 0 16 0 0 18 PS16
625 3960 M
8 22 0 0 16 0 0 18 PS16
649 3960 M
8 22 0 0 16 0 0 18 PS16
673 3960 M
8 22 0 0 16 0 0 18 PS16
697 3960 M
8 22 0 0 16 0 0 18 PS16
721 3960 M
8 22 0 0 16 0 0 18 PS16
745 3960 M
8 22 0 0 16 0 0 18 PS16
769 3960 M
8 22 0 0 16 0 0 18 PS16
793 3960 M
8 22 0 0 16 0 0 18 PS16
817 3960 M
8 22 0 0 16 0 0 18 PS16
841 3960 M
8 22 0 0 16 0 0 18 PS16
865 3960 M
8 22 0 0 16 0 0 18 PS16
889 3960 M
8 22 0 0 16 0 0 18 PS16
913 3960 M
8 22 0 0 16 0 0 18 PS16
937 3960 M
8 22 0 0 16 0 0 18 PS16
961 3960 M
8 22 0 0 16 0 0 18 PS16
985 3960 M
8 22 0 0 16 0 0 18 PS16
1009 3960 M
8 22 0 0 16 0 0 18 PS16
1033 3960 M
8 22 0 0 16 0 0 18 PS16
1057 3960 M
8 22 0 0 16 0 0 18 PS16
1081 3960 M
8 22 0 0 16 0 0 18 PS16
1105 3960 M
8 22 0 0 16 0 0 18 PS16
1129 3960 M
8 22 0 0 16 0 0 18 PS16
1153 3960 M
8 22 0 0 16 0 0 18 PS16
1177 3960 M
8 22 0 0 16 0 0 18 PS16
1201 3960 M
8 22 0 0 16 0 0 18 PS16
1225 3960 M
8 22 0 0 16 0 0 18 PS16
1249 3960 M
8 22 0 0 16 0 0 18 PS16
1273 3960 M
8 22 0 0 16 0 0 18 PS16
1297 3960 M
8 22 0 0 16 0 0 18 PS16
1321 3960 M
8 22 0 0 16 0 0 18 PS16
1345 3960 M
8 22 0 0 16 0 0 18 PS16
1369 3960 M
8 22 0 0 16 0 0 18 PS16
1393 3960 M
8 22 0 0 16 0 0 18 PS16
1417 3960 M
8 22 0 0 16 0 0 18 PS16
1 F
724 4041(I)U
(f)R
778(electronic)S
987(mail)S
1093(offered)S
1253(priority)S
1418(service)S
1575(categories)S
1790(which)S
1929(imposed)S
2113(stringent)S
2302(limits)S
2432(on)S
2502(delivery)S
2680(delays,)S
2836(then)S
2939(this)S
3029(general)S
577 4098(c)U
36 Z
706 4023(8)U
48 Z
598 4098(omment)U
770(might)S
897(not)S
974(hold.)S
60 Z
577 4413(L)U
(einer)R
2932([Page)S
3089(20])S
EP
%%Page: ? 23
BP
3 F
72 Z
577 681(4)U
1 F
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
3 F
72 Z
613 681(.3.4.)U
787(Transaction-Oriented)S
1483(Communication)S
1 F
2889 789(.)U
577 873(I)U
727 789(Various)U
979(brief,)S
1157(connectionless)S
1605(interactions)S
1965(will)S
2101(take)S
2245(place)S
2421(between)S
2685(servers)S
601 873(nteractions)U
941(are)S
1053(so)S
1141(brief,)S
1319(and)S
1447(may)S
1595(be)S
1687(so)S
1775(dispersed)S
2071(over)S
2223(time)S
2375(that)S
2507(they)S
2655(do)S
2751(not)S
2867(\256t)S
2951(the)S
3133 957(e)U
577 1041(a)U
577 957(connection)U
917(abstraction)S
1257(noted)S
1441(above.)S
1679(Nonetheless,)S
2073(some)S
2249(form)S
2413(of)S
2497(access)S
2705(control)S
2933(must)S
3097(b)S
609 1041(llied)U
761(to)S
841(all)S
937(traf\256c)S
1133(if)S
1201(the)S
1313(access)S
1521(control)S
1749(facilities)S
2021(are)S
2133(to)S
2213(be)S
2305(effective)S
2581(\(complete)S
2891 1125(y)U
577 1209(c)U
577 1125(mediation\).)U
955(Such)S
1123(interactions)S
1483(may)S
1631(best)S
1771(be)S
1863(accommodated)S
2323(by)S
2419(not)S
2535(requiring)S
2823(an)S
609 1209(onnection-like)U
1049(authorization)S
1453(procedure,)S
1783(but)S
1899(rather)S
2091(by)S
2187(requiring)S
2475(the)S
2587(access)S
2795(control)S
3105 1293(n)U
577 1377(a)U
577 1293(enforcement)U
961(points)S
1161(to)S
1241(recognize)S
1545(such)S
1701(interactions)S
2061(\(perhaps)S
2333(based)S
2521(on)S
2617(source/destinatio)S
609 1377(ddresses\))U
901(and)S
1029(permit)S
1241(them)S
1409(on)S
1505(the)S
1617(basis)S
1785(of)S
1869(fairly)S
2049(static)S
2225(authorizations.)S
2699(This)S
2851(``special)S
3129 1461(g)U
577 1545(t)U
577 1461(case'')U
773(treatment)S
1069(for)S
1177(connectionless)S
1625(traf\256c)S
1821(is)S
1893(likely)S
2081(to)S
2161(be)S
2253(acceptable)S
2581(only)S
2733(if)S
2801(the)S
2913(resultin)S
597 1545(raf\256c)U
773(volume)S
1013(is)S
1085(fairly)S
1265(low.)S
1439(Some)S
1627(form)S
1791(of)S
1875(auditing)S
2135(of)S
2219(these)S
2391(traf\256c)S
2587(\257ows)S
2767(would)S
2971(still)S
577 1644(be)U
669(necessary)S
1000(to)S
1080(support)S
1320(the)S
1432(accounting)S
1772(requirements)S
2172(cited)S
2336(in)S
2416(section)S
2644(1)S
2704(and)S
2832(would)S
54 Z
949 1617(9)U
72 Z
577 1728(p)U
(rovide)R
821(a)S
877(basis)S
1045(for)S
1153(detecting)S
1441(anomalous)S
1777(patterns)S
2029(that)S
2161(might)S
2353(be)S
2445(indicative)S
2753(of)S
2837(misuse.)S
577 1920(t)U
727 1836(File)U
863(server)S
1063(interactions)S
1423(may)S
1571(not)S
1687(\256t)S
1771(this)S
1899(pro\256le,)S
2129(despite)S
2357(the)S
2469(fact)S
2601(that)S
2733(they)S
2881(are)S
597 1920(ransaction-orientated)U
1229(communications.)S
1771(If)S
1843(the)S
1955(quantity)S
2215(of)S
2299(data)S
2443(returned)S
2707(in)S
2787(response)S
3063(to)S
577 2088(w)U
577 2004(a)U
633(small)S
813(query)S
1001(is)S
1073(quite)S
1241(large,)S
1427(e.g.,)S
1573(an)S
1665(entire)S
1853(\256le)S
1969(or)S
2053(directory,)S
2355(then)S
2503(the)S
2615(traf\256c)S
2811(volume)S
629 2088(ould)U
781(likely)S
969(be)S
1061(too)S
1177(large)S
1345(to)S
1425(treat)S
1577(as)S
1661(above.)S
1899(Fortunately,)S
2273(most)S
2437(\256le)S
2553(server)S
2753(interactions)S
3147 2172(,)U
577 2256(t)U
577 2172(would)U
781(likely)S
969(be)S
1061(local)S
1225(and)S
1353(thus)S
1497(not)S
1613(subject)S
1841(to)S
1921(the)S
2033(access)S
2241(controls)S
2497(we)S
2605(are)S
2717(discussing,)S
3059(i.e.)S
597 2256(he)U
689(transfers)S
961(would)S
1165(not)S
1281(cross)S
1453(domain)S
1693(boundaries.)S
2075(However,)S
2381(a)S
2437(homogeneous)S
2861(collection)S
577 2424(t)U
577 2340(of)U
661(\256le)S
777(servers)S
1005(in)S
1085(different)S
1357(geographic)S
1701(locations)S
1985(might)S
2177(generate)S
2445(signi\256cant)S
2769(amounts)S
3037(of)S
597 2424(raf\256c)U
773(in)S
853(response)S
1129(to)S
1209(user)S
1353(commands.)S
1731(This)S
1883(poses)S
2067(the)S
2179(potential)S
2455(problem)S
2719(of)S
2803(large)S
2971(data)S
3133 2508(e)U
577 2592(o)U
577 2508(transfers)U
849(initiated)S
1109(from)S
1273(hosts)S
1445(which)S
1645(employ)S
1885(connectionless)S
2333(protocols)S
2625(and)S
2753(which)S
2953(operat)S
613 2592(n)U
673(behalf)S
877(of)S
961(\(non-resident\))S
1393(users.)S
1607(The)S
1743(\256rst)S
1879(aspect)S
2083(of)S
2167(this)S
2295(problem)S
2559(could)S
2743(be)S
2835(addressed)S
3137 2676(e)U
577 2760(s)U
577 2676(by)U
673(requiring)S
961(use)S
1081(of)S
1165(connection-oriented)S
1765(protocols)S
2057(for)S
2165(such)S
2321(transfers)S
2593(\(a)S
2673(not)S
2789(unreasonabl)S
605 2760(uggestion)U
909(for)S
1017(other)S
1189(than)S
1337(local)S
1501(transfers)S
1773(anyway\).)S
2087(The)S
2223(second)S
2447(aspect)S
2651(of)S
2735(the)S
2847(problem)S
577 2928(a)U
577 2844(either)U
765(requires)S
1021(enforcement)S
1405(mechanisms)S
1785(which)S
1985(support)S
2225(such)S
2381(``proxy'')S
2669(operations)S
2993(or)S
609 2928(doption)U
853(of)S
937(policies)S
1185(which)S
1385(do)S
1481(not)S
1597(require)S
1825(\256ne)S
1957(grained)S
2197(access)S
2405(control)S
2633(\(so)S
2745(that)S
3 F
577 3168(4)U
1 F
577 3012(identi\256cation)U
981(of)S
1065(the)S
1177(\256le)S
1293(server)S
1493(rather)S
1685(than)S
1833(the)S
1945(speci\256c)S
2189(user)S
2333(is)S
2405(suf\256cient\).)S
3 F
613 3168(.3.5.)U
787(Multicast)S
1103(Communication)S
1 F
727 3276(O)U
(ne)R
871(other)S
1043(class)S
1207(of)S
1291(communication)S
1763(was)S
1899(very)S
2051(brie\257y)S
2263(discussed)S
2563(which)S
2763(was)S
2899(also)S
3039(not)S
577 3444(c)U
577 3360(well)U
725(represented)S
1081(by)S
1177(our)S
1297(simple)S
1513(connection-oriented)S
2113(model,)S
2335(i.e.,)S
2465(multicast)S
609 3444(ommunication.)U
1091(At)S
1187(least)S
1343(some)S
1519(of)S
1603(the)S
1715(concerns)S
1995(about)S
2179(support)S
2419(for)S
2527(multicast)S
2815(seem)S
2987(to)S
3017 3528(n)U
577 3612(a)U
577 3528(have)U
737(arisen)S
933(in)S
1013(conjunction)S
1377(with)S
1529(discussion)S
1853(of)S
1937(the)S
2049(need)S
2209(to)S
2289(factor)S
2481(in)S
2561(the)S
2673(authorizatio)S
609 3612(ssociated)U
897(with)S
1049(the)S
1161(destination)S
1501(of)S
1585(a)S
1641(packet)S
1853(as)S
1937(well)S
2085(as)S
2169(its)S
2261(source.)S
2515(Again,)S
2733(the)S
2845(underlying)S
577 3780(a)U
577 3696(assumption)U
929(seems)S
1129(to)S
1209(be)S
1301(that)S
1433(the)S
1545(destination)S
1885(might)S
2077(be)S
2169(required)S
2433(to)S
2513(provide)S
2757(some)S
609 3780(uthorization)U
981(information)S
1345(data)S
1489(which)S
1689(only)S
1841(it)S
1905(would)S
2109(possess)S
2349(and)S
2477(acquiring)S
2773(this)S
2901(data)S
577 3948(m)U
577 3864(would)U
781(become)S
1029(even)S
1189(more)S
1361(complex)S
1633(in)S
1713(scenarios)S
2005(where)S
2205(the)S
2317(packet)S
2529(is)S
2601(addressed)S
2909(to)S
633 3948(ultiple)U
841(destinations.)S
0 F
48 Z
1417 4005 M
8 22 0 0 16 0 0 18 PS16
577 4005 M
8 22 0 0 16 0 0 18 PS16
601 4005 M
8 22 0 0 16 0 0 18 PS16
625 4005 M
8 22 0 0 16 0 0 18 PS16
649 4005 M
8 22 0 0 16 0 0 18 PS16
673 4005 M
8 22 0 0 16 0 0 18 PS16
697 4005 M
8 22 0 0 16 0 0 18 PS16
721 4005 M
8 22 0 0 16 0 0 18 PS16
745 4005 M
8 22 0 0 16 0 0 18 PS16
769 4005 M
8 22 0 0 16 0 0 18 PS16
793 4005 M
8 22 0 0 16 0 0 18 PS16
817 4005 M
8 22 0 0 16 0 0 18 PS16
841 4005 M
8 22 0 0 16 0 0 18 PS16
865 4005 M
8 22 0 0 16 0 0 18 PS16
889 4005 M
8 22 0 0 16 0 0 18 PS16
913 4005 M
8 22 0 0 16 0 0 18 PS16
937 4005 M
8 22 0 0 16 0 0 18 PS16
961 4005 M
8 22 0 0 16 0 0 18 PS16
985 4005 M
8 22 0 0 16 0 0 18 PS16
1009 4005 M
8 22 0 0 16 0 0 18 PS16
1033 4005 M
8 22 0 0 16 0 0 18 PS16
1057 4005 M
8 22 0 0 16 0 0 18 PS16
1081 4005 M
8 22 0 0 16 0 0 18 PS16
1105 4005 M
8 22 0 0 16 0 0 18 PS16
1129 4005 M
8 22 0 0 16 0 0 18 PS16
1153 4005 M
8 22 0 0 16 0 0 18 PS16
1177 4005 M
8 22 0 0 16 0 0 18 PS16
1201 4005 M
8 22 0 0 16 0 0 18 PS16
1225 4005 M
8 22 0 0 16 0 0 18 PS16
1249 4005 M
8 22 0 0 16 0 0 18 PS16
1273 4005 M
8 22 0 0 16 0 0 18 PS16
1297 4005 M
8 22 0 0 16 0 0 18 PS16
1321 4005 M
8 22 0 0 16 0 0 18 PS16
1345 4005 M
8 22 0 0 16 0 0 18 PS16
1369 4005 M
8 22 0 0 16 0 0 18 PS16
1393 4005 M
8 22 0 0 16 0 0 18 PS16
1 F
724 4086(If)U
773(the)S
848(volume)S
1007(is)S
1055(suf\256ciently)S
1286(low,)S
1386(the)S
1460(traf\256c)S
1590(might)S
1717(be)S
1778(considered)S
2001(part)S
2091(of)S
2147(the)S
2221(``noise)S
2370(\257oor'')S
2509(for)S
2581(the)S
2655(NRI)S
2754(and)S
2839(not)S
2916(explicitl)S
3071(y)S
3111(ac-)S
577 4143(c)U
36 Z
706 4068(9)U
48 Z
598 4143(ounted)U
744(for,)S
828(as)S
884(would)S
1020(be)S
1081(the)S
1155(case)S
1253(for)S
1325(routing)S
1479(updates,)S
1653(etc.)S
60 Z
577 4413(L)U
(einer)R
2932([Page)S
3089(21])S
EP
%%Page: ? 24
BP
1 F
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
727 681(One)U
871(can)S
995(distinguish)S
1335(two)S
1467(classes)S
1691(of)S
1775(multicast)S
2063(communication:)S
2555(transaction-oriented)S
3115 765(e)U
577 849(t)U
577 765(and)U
705(stream-oriented.)S
1223(The)S
1359(latter)S
1531(has)S
1651(been)S
1811(typical)S
2031(of)S
2115(conferencing)S
2515(communication)S
2987(whil)S
597 849(he)U
689(former)S
909(is)S
981(typical)S
1201(of)S
1285(server)S
1485(location)S
1741(queries,)S
1991(etc.)S
2141(Transaction-oriented)S
2765(multicast)S
3015 933(l)U
577 1017(m)U
577 933(communication)U
1049(might)S
1241(be)S
1333(accommodated)S
1793(by)S
1889(the)S
2001(static,)S
2195(address-based)S
2623(access)S
2831(contro)S
633 1017(echanisms)U
957(discussed)S
1257(in)S
1337(section)S
1565(4.3.4.)S
1775(Stream-oriented)S
2263(multicast)S
2551(typically)S
2827(involves)S
3101 1101(t)U
577 1185(d)U
577 1101(some)U
753(form)S
917(of)S
1001(stream)S
1217(establishment)S
1637(procedure)S
1949(prior)S
2113(to)S
2193(transmission)S
2581(of)S
2665(user)S
2809(data)S
2953(and)S
3081(i)S
613 1185(oes)U
733(not)S
849(seem)S
1021(unreasonable)S
1425(to)S
1505(augment)S
1777(such)S
1933(procedures)S
2273(to)S
2353(accommodate)S
2777(authorization)S
577 1353(a)U
577 1269(data)U
721(transfer.)S
1007(Thus)S
1175(multicast)S
1463(communication)S
1935(may)S
2083(not)S
2199(be)S
2291(so)S
2379(dif\256cult)S
2631(to)S
2711(accommodate)S
609 1353(s)U
661(originally)S
965(suggested.)S
3 F
1617 1509(s)U
577(4.4.)S
733(Access)S
961(Control)S
1225(Architecture)S
1 F
727 1617(Access)U
955(control)S
1183(policies)S
1431(can)S
1555(be)S
1647(examined)S
1951(independent)S
2327(of)S
2411(enforcement)S
2795(mechanisms)S
577 1785(n)U
577 1701(and)U
705(architectural)S
1089(details,)S
1319(but)S
1435(there)S
1603(are)S
1715(limitations)S
2047(to)S
2127(such)S
2283(isolated)S
2531(examination,)S
2929(as)S
613 1785(oted)U
761(in)S
841(section)S
1069(4.3.)S
1225(There)S
1417(are)S
1529(several)S
1757(reasons)S
1997(for)S
2105(adopting)S
2381(a)S
2437(\(straw)S
2641(man\))S
2813(architecture)S
577 1953(e)U
577 1869(in)U
657(which)S
857(to)S
937(consider)S
1205(such)S
1361(policies.)S
1651(First,)S
1825(one)S
1953(must)S
2117(identify)S
2365(the)S
2477(transmission)S
2865(costs,)S
609 1953(.g.,)U
723(in)S
803(terms)S
987(of)S
1071(processing)S
1403(overhead)S
1691(or)S
1775(bandwidth)S
2103(reduction,)S
2417(associated)S
2737(with)S
2993 2037(w)U
577 2121(p)U
577 2037(enforcement)U
961(mechanisms)S
1341(in)S
1421(support)S
1661(of)S
1745(policies.)S
2035(Second,)S
2289(one)S
2417(must)S
2581(understand)S
2921(ho)S
613 2121(olicies')U
849(representations)S
1309(and)S
1437(authorization)S
1841(data)S
1985(are)S
2097(managed)S
2381(in)S
2461(order)S
2637(to)S
2717(estimate)S
2981(the)S
577 2289(d)U
577 2205(infrastructure)U
989(costs)S
1157(\(additional)S
1493(servers)S
1721(and)S
1849(databases,)S
2167(dissemination)S
2591(of)S
2675(authorization)S
613 2289(ata,)U
739(human)S
959(management)S
1351(for)S
1459(the)S
1571(databases)S
1871(and)S
1999(equipment,)S
2345(etc.\))S
2495(associated)S
2815(with)S
2967(such)S
3097 2373(r)U
577 2457(t)U
577 2373(policies.)U
867(Third,)S
1069(one)S
1197(must)S
1361(understand)S
1701(where)S
1901(trust)S
2053(is)S
2125(vested)S
2333(in)S
2413(the)S
2525(architecture)S
2889(in)S
2969(orde)S
597 2457(o)U
657(gage)S
817(its)S
909(social)S
1101(acceptability)S
1493(and)S
1621(establish)S
1897(the)S
2009(level)S
2173(of)S
2257(assurance)S
2561(that)S
2693(might)S
2885(be)S
577 2541(accorded)U
861(the)S
973(resulting)S
1249(access)S
1457(control)S
1685(system.)S
727 2649(In)U
811(this)S
939(section,)S
1185(we)S
1293(discuss)S
1525(how)S
1673(operating)S
1969(system)S
2193(security)S
2445(principles)S
2753(might)S
2945(be)S
3 F
577 2889(4)U
1 F
577 2733(applied)U
813(in)S
893(this)S
1021(access)S
1229(control)S
1457(context.)S
3 F
613 2889(.4.1.)U
787(Analogies)S
1111(with)S
1271(Operating)S
1611(System)S
1855(Security)S
1 F
2961 2997(o)U
577 3081(c)U
727 2997(In)U
811(discussing)S
1135(mechanisms)S
1515(for)S
1623(network)S
1883(resource)S
2151(access)S
2359(control,)S
2605(it)S
2669(is)S
2741(useful)S
2941(t)S
609 3081(ompare)U
849(them)S
1017(to)S
1097(some)S
1273(of)S
1357(the)S
1469(enforcement)S
1853(precepts)S
2117(generally)S
2409(applied)S
2645(to)S
2725(operating)S
3019 3165(r)U
577 3249(r)U
577 3165(system)U
801(access)S
1009(control)S
1237(mechanisms.)S
1659(In)S
1743(the)S
1855(context)S
2091(of)S
2175(computer)S
2471(systems)S
2723(\(subscribe)S
601 3249(esources\),)U
915(the)S
1027(concept)S
1275(of)S
1359(a)S
1415(``reference)S
1755(monitor'')S
2055(is)S
2127(widely)S
2347(used.)S
2545(A)S
2621(reference)S
2913(monitor)S
577 3417(i)U
577 3333(mediates)U
857(all)S
953(accesses)S
1221(by)S
1317(subjects)S
1573(to)S
1653(objects.)S
1923(\(For)S
2071(any)S
2199(reasonable)S
2531(degree)S
2747(of)S
597 3417(mplementation)U
1053(assurance)S
1357(the)S
1469(reference)S
1761(monitor)S
2013(must)S
2177(itself)S
2345(be)S
2437(protected)S
2729(from)S
2913 3501(e)U
577 3585(a)U
577 3501(tampering)U
893(so)S
981(that)S
1113(it)S
1177(cannot)S
1393(be)S
1485(circumvented.\))S
1943(Before)S
2163(any)S
2291(object)S
2491(is)S
2563(accessed,)S
2857(th)S
609 3585(uthorization)U
981(of)S
1065(the)S
1177(subject)S
1405(to)S
1485(access)S
1693(the)S
1805(object,)S
2023(and)S
2151(to)S
2231(operate)S
2467(on)S
2563(it)S
2627(in)S
2707(the)S
2819(fashion)S
577 3753(m)U
577 3669(requested,)U
895(is)S
967(checked.)S
1269(This)S
1421(a)S
1477(priori)S
1661(checking)S
1945(is)S
2017(deemed)S
2265(essential)S
2537(if)S
2605(the)S
2717(reference)S
633 3753(onitor)U
829(is)S
901(to)S
981(prevent)S
1221(the)S
1333(unauthorized)S
1733(release)S
1957(or)S
2041(modi\256cation)S
2429(of)S
2513(data.)S
2699(Despite)S
2943(the)S
3055(use)S
577 3921(i)U
577 3837(of)U
661(reference)S
953(monitors,)S
1251(even)S
1411(in)S
1491(relatively)S
1787(high)S
1939(assurance)S
2243(operating)S
2539(system)S
597 3921(mplementations,)U
1099(there)S
1267(are)S
1379(usually)S
1611(covert)S
1815(channels)S
2091(via)S
2203(which)S
2403(data)S
2547(can)S
2671(be)S
2763(released)S
3023(to)S
60 Z
3149 4413(])U
577(Leiner)S
2932([Page)S
3089(22)S
EP
%%Page: ? 25
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
54 Z
2035 669(10)U
72 Z
2969 696(e)U
577 780(c)U
577 696(unauthorized)U
977(subjects)S
1233(at)S
1309(relatively)S
1605(low)S
1737(data)S
1881(rates.)S
2113(Complete)S
2417(elimination)S
2769(of)S
2853(thes)S
609 780(overt)U
781(channels)S
1057(is)S
1129(usually)S
1361(deemed)S
1609(impractical)S
1957(except)S
2169(in)S
2249(the)S
2361(most)S
2525(sensitive)S
2801(applications.)S
577 948(e)U
577 864(Auditing)U
857(of)S
941(object)S
1141(accesses)S
1409(is)S
1481(often)S
1653(performed)S
1977(in)S
2057(addition)S
2317(to)S
2397(the)S
2509(access)S
2717(control)S
609 948(nforcement)U
961(described)S
1261(above)S
1457(and)S
1585(post)S
1729(access)S
1937(analysis)S
2193(may)S
2341(be)S
2433(carried)S
2657(out.)S
2815(However,)S
577 1116(d)U
577 1032(this)U
705(analysis)S
961(is)S
1033(best)S
1173(viewed)S
1405(as)S
1489(a)S
1545(damage)S
1793(control)S
2021(measure)S
2285(and)S
2413(a)S
2469(possible)S
2729(means)S
2937(of)S
613 1116(etecting)U
865(anomalous)S
1201(usage)S
1389(patters,)S
1623(not)S
1739(a)S
1795(primary)S
2047(enforcement)S
2431(mechanism.)S
2837 1224(r)U
577 1308(m)U
727 1224(In)U
811(the)S
923(context)S
1159(of)S
1243(network)S
1503(resource)S
1771(access)S
1979(control,)S
2225(neither)S
2449(disclosure)S
2765(no)S
633 1308(odi\256cation)U
965(of)S
1049(subscriber)S
1369(data)S
1513(is)S
1585(at)S
1661(risk.)S
1835(\(Recall)S
2067(that)S
2199(traf\256c)S
2395(analysis)S
2651(is)S
2723(not)S
2839(a)S
2895(service)S
577 1476(E)U
577 1392(considered)U
913(here,)S
1079(but)S
1195(rather)S
1387(is)S
1459(a)S
1515(subscriber)S
1835(security)S
2087(service)S
2315(considered)S
2651(by)S
2747(the)S
2859(End-to-)S
621 1476(nd)U
717(Working)S
997(Group\).)S
1271(Instead,)S
1521(the)S
1633(primary)S
1885(concern)S
2137(is)S
2209(transmission)S
2597(of)S
2681(packets)S
2921(via)S
577 1644(m)U
577 1560(paths)U
753(which)S
953(are)S
1065(not)S
1181(unauthorized,)S
1599(i.e.,)S
1729(unauthorized)S
2129(consumption)S
2525(of)S
2609(resources.)S
2947(A)S
633 1644(ajor)U
769(failure)S
981(of)S
1065(these)S
1237(controls)S
1493(could)S
1677(result)S
1861(in)S
1941(denial)S
2141(of)S
2225(service)S
2453(for)S
2561(authorized)S
2889(users,)S
577 1812(i)U
577 1728(but)U
693(minor)S
889(failures)S
1129(result)S
1313(only)S
1465(in)S
1545(some)S
1721(small)S
1901(amount)S
2141(of)S
2225(``theft)S
2429(of)S
2513(service''.)S
2831(The)S
597 1812(mpression)U
917(provided)S
1197(by)S
1293(the)S
1405(report)S
1601(of)S
1685(the)S
1797(Policy)S
2005(Working)S
2285(Group)S
2493(is)S
2565(that)S
2697(such)S
2853(minor)S
3121 1896(d)U
577 1995(a)U
577 1896(violations)U
885(would)S
1089(be)S
1181(acceptable)S
1509(in)S
1589(the)S
1701(context)S
1937(of)S
2021(most,)S
2203(though)S
2427(not)S
2543(all,)S
2657(of)S
2741(the)S
2853(articulate)S
609 1995(ccess)U
785(control)S
1013(policies)S
1261(for)S
1369(switching)S
1673(and)S
1801(transmission)S
2189(resources.)S
54 Z
2506 1968(1)U
2479(1)S
72 Z
3051 2103(e)U
577 2187(r)U
727 2103(This)U
879(suggests)S
1147(that)S
1279(it)S
1343(is)S
1415(appropriate)S
1767(to)S
1847(adopt)S
2031(enforcement)S
2415(mechanisms)S
2795(which)S
2995(ar)S
601 2187(esistant)U
841(to)S
921(attacks)S
1145(which)S
1345(would)S
1549(result)S
1733(in)S
1813(major)S
2005(violations)S
2313(of)S
2397(the)S
2509(access)S
2717(control)S
577 2355(i)U
577 2271(policies,)U
843(but)S
959(that)S
1091(perfect)S
1315(control)S
1543(of)S
1627(traf\256c)S
1823(\257ows)S
2003(is)S
2075(not)S
2191(essential)S
2463(\(analogous)S
2803(to)S
597 2355(nformation)U
941(disclosure)S
1257(via)S
1369(covert)S
1573(channels)S
1849(in)S
1929(the)S
2041(operating)S
2337(system)S
2561(context\).)S
2863(It)S
2931(also)S
3041 2439(o)U
577 2523(v)U
577 2439(suggests)U
845(that)S
977(post)S
1121(access)S
1329(auditing)S
1589(is)S
1661(appropriate)S
2013(as)S
2097(a)S
2153(damage)S
2401(control)S
2629(measure)S
2893(and)S
3021(t)S
613 2523(erify)U
773(that)S
905(authorized)S
1233(subjects)S
1489(have)S
1649(not)S
1765(engaged)S
2029(in)S
2109(usage)S
2297(patterns)S
2549(which)S
2749(call)S
2877(into)S
2975 2607(e)U
577 2691(a)U
577 2607(question)U
845(their)S
1001(trustworthiness.)S
1507(Thus)S
1675(we)S
1783(suggest)S
2023(adopting)S
2299(a)S
2355(reference)S
2647(monitor-lik)S
609 2691(pproach)U
865(for)S
973(our)S
1093(access)S
1301(control)S
1529(policies,)S
1795(but)S
1911(with)S
2063(the)S
2175(understanding)S
2607(that)S
2739(perfect)S
2963(access)S
3 F
577 2931(4)U
1 F
577 2775(mediation)U
889(is)S
961(probably)S
1241(infeasible)S
1545(and)S
1673(unnecessary.)S
3 F
613 2931(.4.2.)U
787(Clark's)S
1043(Policy)S
1255(Routing)S
1527(Model)S
1747(and)S
1887(Access)S
2115(Control)S
1 F
2977 3099(s)U
577 3198(p)U
577 3099(We)U
701(adopted)S
953(as)S
1037(a)S
1093(strawman)S
1397(architecture)S
1761(the)S
1873(design)S
2085(presented)S
2385(by)S
2481(Dave)S
2657(Clark)S
2841(in)S
2921(hi)S
613 3198(aper)U
761(on)S
857(policy)S
1061(routing.)S
1365(Many)S
1557(of)S
1641(our)S
1761(discussions)S
2113(were)S
2277(in\257uenced)S
2601(by)S
2697(the)S
2809(concepts)S
577 3282(a)U
54 Z
1287 3171(12)U
72 Z
609 3282(nd)U
705(mechanisms)S
1085(proposed)S
1373(in)S
1453(the)S
1565(paper.)S
1791(In)S
1875(this)S
2003(section,)S
2249(we)S
2357(review)S
2577(those)S
2753(aspects)S
2985(of)S
3069(the)S
3131 3366(t)U
577 3450(c)U
577 3366(design)U
789(which)S
989(are)S
1101(relevant)S
1357(to)S
1437(our)S
1557(access)S
1765(control)S
1993(concerns,)S
2291(discuss)S
2523(areas)S
2695(which)S
2895(were)S
3059(no)S
609 3450(ompletely)U
921(speci\256ed)S
1201(in)S
1281(Clark's)S
1517(paper,)S
1719(and)S
1847(explore)S
2087(some)S
2263(modi\256cations)S
2679(and)S
2807(extensions)S
577 3534(to)U
657(this)S
785(design.)S
727 3642(Clark's)U
963(paper)S
1147(de\256nes)S
1375(three)S
1543(new)S
1687(entities)S
1919(in)S
1999(the)S
2111(Internet)S
2359(which)S
2559(participate)S
2887(in)S
2967(policy)S
577 3810(c)U
577 3726(routing)U
809(and)S
937(thus)S
1081(network)S
1341(resource)S
1609(access)S
1817(control.)S
2087(Enforcement)S
2483(of)S
2567(policy)S
2771(route)S
609 3810(onstraints)U
913(is)S
985(the)S
1097(responsibility)S
1513(of)S
1597(policy)S
1801(gateways.)S
2135(These)S
2331(gateways)S
2623(are)S
2735(present)S
2967(at)S
3043(the)S
0 F
48 Z
577 3867 M
8 22 0 0 16 0 0 18 PS16
601 3867 M
8 22 0 0 16 0 0 18 PS16
625 3867 M
8 22 0 0 16 0 0 18 PS16
649 3867 M
8 22 0 0 16 0 0 18 PS16
673 3867 M
8 22 0 0 16 0 0 18 PS16
697 3867 M
8 22 0 0 16 0 0 18 PS16
721 3867 M
8 22 0 0 16 0 0 18 PS16
745 3867 M
8 22 0 0 16 0 0 18 PS16
769 3867 M
8 22 0 0 16 0 0 18 PS16
793 3867 M
8 22 0 0 16 0 0 18 PS16
817 3867 M
8 22 0 0 16 0 0 18 PS16
841 3867 M
8 22 0 0 16 0 0 18 PS16
865 3867 M
8 22 0 0 16 0 0 18 PS16
889 3867 M
8 22 0 0 16 0 0 18 PS16
913 3867 M
8 22 0 0 16 0 0 18 PS16
937 3867 M
8 22 0 0 16 0 0 18 PS16
961 3867 M
8 22 0 0 16 0 0 18 PS16
985 3867 M
8 22 0 0 16 0 0 18 PS16
1009 3867 M
8 22 0 0 16 0 0 18 PS16
1033 3867 M
8 22 0 0 16 0 0 18 PS16
1057 3867 M
8 22 0 0 16 0 0 18 PS16
1081 3867 M
8 22 0 0 16 0 0 18 PS16
1105 3867 M
8 22 0 0 16 0 0 18 PS16
1129 3867 M
8 22 0 0 16 0 0 18 PS16
1153 3867 M
8 22 0 0 16 0 0 18 PS16
1177 3867 M
8 22 0 0 16 0 0 18 PS16
1201 3867 M
8 22 0 0 16 0 0 18 PS16
1225 3867 M
8 22 0 0 16 0 0 18 PS16
1249 3867 M
8 22 0 0 16 0 0 18 PS16
1273 3867 M
8 22 0 0 16 0 0 18 PS16
1297 3867 M
8 22 0 0 16 0 0 18 PS16
1321 3867 M
8 22 0 0 16 0 0 18 PS16
1345 3867 M
8 22 0 0 16 0 0 18 PS16
1369 3867 M
8 22 0 0 16 0 0 18 PS16
1393 3867 M
8 22 0 0 16 0 0 18 PS16
1417 3867 M
8 22 0 0 16 0 0 18 PS16
1 F
758 3948(Data)U
864(rates)S
970(on)S
1034(the)S
1108(order)S
1225(of)S
1281(1-10)S
1385(bits)S
1470(per)S
1547(second)S
1696(are)S
1770(typical)S
1915(for)S
1987(covert)S
2122(channels)S
2305(in)S
2358(this)S
2443(context.)S
36 Z
706 4011(1)U
706 3930(10)U
724 4011(1)U
48 Z
4029(It)T
791(is)S
843(clear)S
955(that)S
1046(some)S
1167(access)S
1309(control)S
1464(policies)S
1631(would)S
1770(not)S
1850(be)S
1914(satis\256ed)S
2090(by)S
2157(inherent)S
2332(limitat)S
2455(ions)S
2554(of)S
2613(the)S
2690(type)S
2791(suggested)S
2999(here)S
3100(and)S
3150 4086(s)U
577 4143(t)U
577 4086(thus)U
675(would)S
813(not)S
892(be)S
955(accommodat)S
1198(ed)S
1261(by)S
1327(the)S
1403(architect)S
1566(ures)S
1663(proposed)S
1856(herein.)S
2020(For)S
2104(example,)S
2294(NASA)S
2443(is)S
2492(unlikely)S
2665(to)S
2719(trust)S
2821(such)S
2926(architect)S
3089(ure)S
590 4143(o)U
630(enforce)S
789(a)S
826(non-interference)S
1157(policy)S
1292(for)S
1364(network)S
1537(resources)S
1734(critical)S
1881(to)S
1934(shuttle)S
2077(operations)S
2292(during)S
2433(a)S
2470(mission.)S
60 Z
3149 4413(])U
577(Leiner)S
2932([Page)S
3089(23)S
EP
%%Page: ? 26
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
577 696(i)U
54 Z
1389 669(13)U
72 Z
597 696(nterfaces)U
881(between)S
1145(domains)S
1467(and)S
1595(thus)S
1739(are)S
1851(capable)S
2095(of)S
2179(controlling)S
2519(the)S
2631(\257ow)S
2783(of)S
2867(all)S
2963(traf\256c)S
577 795(into)U
713(or)S
797(out)S
913(of)S
997(a)S
1053(domain.)S
1335(Within)S
1559(each)S
1715(domain)S
1955(are)S
2067(one)S
2195(or)S
2279(more)S
2451(policy)S
2655(servers.)S
2955(These)S
54 Z
2877 768(14)U
72 Z
2941 879(s)U
577 963(c)U
577 879(devices)U
817(serve)S
993(several)S
1221(functions)S
1513(and)S
1641(are,)S
1771(in)S
1851(many)S
2035(respects,)S
2309(the)S
2421(heart)S
2589(of)S
2673(the)S
2785(acces)S
609 963(ontrol)U
805(system)S
1029(proposed)S
1317(by)S
1413(Clark.)S
1639(A)S
1715(policy)S
1919(server)S
2119(serves)S
2323(as)S
2407(the)S
2519(repository)S
2835(for)S
2943(and)S
3071(the)S
577 1131(p)U
577 1047(management)U
969(interface)S
1245(to)S
1325(inter-domain)S
1721(access)S
1929(control)S
2157(policies)S
2405(for)S
2513(its)S
2605(domain.)S
2887(Thus)S
3055(it)S
613 1131(rovides)U
849(representations)S
1309(of)S
1393(these)S
1565(policies)S
1813(to)S
1893(policy)S
2097(servers)S
2325(in)S
2405(other)S
2577(domains)S
2845(and)S
2973(it)S
3067 1215(o)U
577 1299(q)U
577 1215(acquires)U
841(from)S
1005(them)S
1173(policies)S
1421(applicable)S
1741(to)S
1821(their)S
1977(domains.)S
2287(A)S
2363(policy)S
2567(server)S
2767(responds)S
3047(t)S
613 1299(ueries)U
809(from)S
973(subjects)S
1229(on)S
1325(hosts)S
1497(within)S
1705(its)S
1797(domain,)S
2055(synthesizing)S
2439(valid)S
2607(routes)S
2807(based)S
2995(on)S
577 1467(c)U
577 1383(the)U
689(subject's)S
969(communication)S
1441(requirements,)S
1859(the)S
1971(PS's)S
2127(knowledge)S
2467(of)S
2551(current)S
2779(internet)S
609 1467(onnectivity,)U
975(and)S
1103(of)S
1187(applicable)S
1507(inter-domain)S
1903(access)S
2111(control)S
2339(policies.)S
2629(A)S
2705(policy)S
2909(server)S
3127 1551(g)U
577 1635(d)U
577 1551(provides)U
849(the)S
961(selected)S
1217(policy)S
1421(route\(s\))S
1669(to)S
1749(the)S
1861(subject,)S
2107(along)S
2291(with)S
2443(authorization)S
2847(and)S
2975(billin)S
613 1635(ata,)U
739(cryptographically)S
1271(sealed)S
1475(by)S
1571(the)S
1683(policy)S
1887(server.)S
2129(This)S
2281(operation)S
2577(is)S
2649(best)S
2789(viewed)S
3021(as)S
3105(a)S
577 1719(digital)U
785(signature)S
1073(process.)S
727 1827(A)U
803(central)S
1023(feature)S
1247(of)S
1331(this)S
1459(proposal)S
1731(is)S
1803(that)S
1935(it)S
1999(requires)S
2255(the)S
2367(policy)S
2571(gateways)S
2863(to)S
2943(trust)S
577 1995(e)U
577 1911(the)U
689(policy)S
893(servers)S
1121(that)S
1253(represent)S
1541(a)S
1597(domain,)S
1855(but)S
1971(does)S
2127(not)S
2243(require)S
2471(this)S
2599(trust)S
2751(to)S
2831(be)S
609 1995(xtended)U
861(to)S
941(each)S
1097(subject)S
1325(within)S
1533(the)S
1645(domain.)S
1927(Clark)S
2111(assumes)S
2375(that)S
2507(domains)S
2775(are)S
2887(mutually)S
577 2163(h)U
577 2079(trustworthy)U
933(to)S
1013(the)S
1125(extent)S
1325(that)S
1457(the)S
1569(policy)S
1773(gateways)S
2065(rely)S
2201(on)S
2297(the)S
2409(source)S
2621(policy)S
2825(server)S
3025(to)S
613 2163(ave)U
737(correctly)S
1017(evaluated)S
1317(the)S
1429(subject's)S
1709(authorization)S
2113(to)S
2193(make)S
2373(use)S
2493(of)S
2577(a)S
2633(given)S
2817(policy)S
3119 2247(e)U
577 2331(m)U
577 2247(route.)U
791(Since)S
975(domains)S
1243(in)S
1323(the)S
1435(NRI)S
1583(represent)S
1871(organizations)S
2283(\(e.g.,)S
2453(Federal)S
2693(agencies\),)S
3007(ther)S
633 2331(ay)U
725(be)S
817(a)S
873(reasonable)S
1205(basis)S
1373(for)S
1481(assuming)S
1777(that)S
1909(the)S
2021(individuals)S
2365(managing)S
2673(a)S
2729(policy)S
2933(server)S
577 2499(t)U
577 2415(on)U
673(behalf)S
877(of)S
961(a)S
1017(domain)S
1257(can)S
1381(be)S
1473(relied)S
1661(upon)S
1829(to)S
1909(operate)S
2145(in)S
2225(a)S
2281(responsible)S
2633(manner.)S
2915(\(The)S
597 2499(rustworthiness)U
1041(of)S
1125(the)S
1237(hardware)S
1529(and)S
1657(software)S
1929(upon)S
2097(which)S
2297(a)S
2353(policy)S
2557(server)S
2757(is)S
2983 2583(r)U
577 2667(e)U
577 2583(implemented)U
977(is)S
1049(a)S
1105(separate)S
1365(concern.\))S
1659(Note)S
1823(that)S
1955(the)S
2067(means)S
2275(by)S
2371(which)S
2571(a)S
2627(policy)S
2831(serve)S
609 2667(nsures)U
817(that)S
949(a)S
1005(validated)S
1293(route)S
1465(is)S
1537(properly)S
1805(bound)S
2009(to)S
2089(an)S
2181(authorized)S
2509(subject)S
2737(within)S
2945(the)S
577 2751(domain)U
817(is)S
889(a)S
945(local)S
1109(matter,)S
1335(not)S
1451(speci\256ed)S
1731(by)S
1827(the)S
1939(architecture.)S
727 2859(Signing)U
975(of)S
1059(this)S
1187(collection)S
1495(of)S
1579(data)S
1723(serves)S
1927(several)S
2155(purposes.)S
2477(As)S
2581(noted)S
2765(above,)S
2979(the)S
577 3027(a)U
577 2943(policy)U
781(server)S
981(for)S
1089(a)S
1145(domain)S
1385(is)S
1457(vouching)S
1749(for)S
1857(any)S
1985(identi\256cation)S
2389(and)S
2517(billing)S
2729(data)S
2873(and)S
3001(is)S
609 3027(lso)U
717(stating)S
933(that)S
1065(it)S
1129(has)S
1249(selected)S
1505(a)S
1561(route)S
1733(which)S
1933(is)S
2005(allowed)S
2257(by)S
2353(the)S
2465(access)S
2673(control)S
2901(policies)S
577 3195(v)U
577 3111(provided)U
857(by)S
953(other)S
1125(domains.)S
1435(Clark)S
1619(notes)S
1795(that)S
1927(this)S
2055(does)S
2211(not)S
2327(preclude)S
2599(checking)S
2883(of)S
2967(route)S
613 3195(alidity)U
821(by)S
917(policy)S
1121(gateways,)S
1431(but)S
1547(it)S
1611(does)S
1767(allow)S
1951(mutually)S
2231(trusting)S
2475(domains)S
2743(to)S
2823(rely)S
2959(on)S
3083 3279(s)U
577 3363(t)U
577 3279(these)U
749(checks)S
969(performed)S
1293(by)S
1389(the)S
1501(originating)S
1841(domain's)S
2133(policy)S
2337(server.)S
2579(It)S
2647(is)S
2719(advantageou)S
597 3363(hat)U
709(the)S
821(signature)S
1109(be)S
1201(generated)S
1505(using)S
1685(asymmetric)S
2045(cryptography)S
2453(so)S
2541(that)S
2673(the)S
2785(policy)S
3149 3447(t)U
577 3531(p)U
577 3447(gateways)U
869(have)S
1029(a)S
1085(non-repudiable)S
1545(record)S
1753(of)S
1837(these)S
2009(claims)S
2221(by)S
2317(a)S
2373(policy)S
2577(server)S
2777(\(which)S
3001(migh)S
613 3531(rove)U
765(useful)S
965(should)S
1181(disputes)S
1441(arise)S
1601(or)S
1685(in)S
1765(isolating)S
2037(faults\).)S
2287(Since)S
2471(only)S
2623(policy)S
2827(servers)S
3023 3615(s)U
577 3699(m)U
577 3615(generate)U
845(the)S
957(signatures,)S
1291(the)S
1403(task)S
1543(of)S
1627(managing)S
1935(keys)S
2091(for)S
2199(signature)S
2487(validation)S
2799(become)S
633 3699(anageable.)U
0 F
48 Z
577 3756 M
8 22 0 0 16 0 0 18 PS16
601 3756 M
8 22 0 0 16 0 0 18 PS16
625 3756 M
8 22 0 0 16 0 0 18 PS16
649 3756 M
8 22 0 0 16 0 0 18 PS16
673 3756 M
8 22 0 0 16 0 0 18 PS16
697 3756 M
8 22 0 0 16 0 0 18 PS16
721 3756 M
8 22 0 0 16 0 0 18 PS16
745 3756 M
8 22 0 0 16 0 0 18 PS16
769 3756 M
8 22 0 0 16 0 0 18 PS16
793 3756 M
8 22 0 0 16 0 0 18 PS16
817 3756 M
8 22 0 0 16 0 0 18 PS16
841 3756 M
8 22 0 0 16 0 0 18 PS16
865 3756 M
8 22 0 0 16 0 0 18 PS16
889 3756 M
8 22 0 0 16 0 0 18 PS16
913 3756 M
8 22 0 0 16 0 0 18 PS16
937 3756 M
8 22 0 0 16 0 0 18 PS16
961 3756 M
8 22 0 0 16 0 0 18 PS16
985 3756 M
8 22 0 0 16 0 0 18 PS16
1009 3756 M
8 22 0 0 16 0 0 18 PS16
1033 3756 M
8 22 0 0 16 0 0 18 PS16
1057 3756 M
8 22 0 0 16 0 0 18 PS16
1081 3756 M
8 22 0 0 16 0 0 18 PS16
1105 3756 M
8 22 0 0 16 0 0 18 PS16
1129 3756 M
8 22 0 0 16 0 0 18 PS16
1153 3756 M
8 22 0 0 16 0 0 18 PS16
1177 3756 M
8 22 0 0 16 0 0 18 PS16
1201 3756 M
8 22 0 0 16 0 0 18 PS16
1225 3756 M
8 22 0 0 16 0 0 18 PS16
1249 3756 M
8 22 0 0 16 0 0 18 PS16
1273 3756 M
8 22 0 0 16 0 0 18 PS16
1297 3756 M
8 22 0 0 16 0 0 18 PS16
1321 3756 M
8 22 0 0 16 0 0 18 PS16
1345 3756 M
8 22 0 0 16 0 0 18 PS16
1369 3756 M
8 22 0 0 16 0 0 18 PS16
1393 3756 M
8 22 0 0 16 0 0 18 PS16
1417 3756 M
8 22 0 0 16 0 0 18 PS16
1 F
2072 3837(.)U
36 Z
706 3819(1)U
48 Z
742 3837(``Policy)U
912(Routing)S
1082(in)S
1135(Internet)S
1299(Protocols,'')S
1540(Version)S
1708(1.1,)S
1796(May)S
1900(19,)S
1976(1988)S
36 Z
724 3819(2)U
706 3900(1)U
(3)R
48 Z
3918(Clark)T
868(employed)S
1075(the)S
1152(term)S
1258(``Administrative)S
1595(Region'')S
1784(but)S
1864(we)S
1939(adopted)S
2109(the)S
2186(term)S
2292(``Administrative)S
2629(Domain'')S
2834(to)S
2890(avoid)S
3015(any)S
3103(im-)S
577 3975(plications)U
778(of)S
834(geographic)S
1062(locality.)S
760 4056(Clark)U
884(designated)S
1106(these)S
1222(devices)S
1383(``Policy)S
1555(Controllers'')S
1819(but)S
1897(we)S
1970(have)S
2077(adopted)S
2245(our)S
2326(current)S
2478(designation)S
2715(to)S
2769(avoid)S
2892(confusion)S
3098(that)S
577 4113(m)U
36 Z
706 4038(14)U
48 Z
614 4113(ight)U
704(from)S
813(use)S
893(of)S
949(the)S
1023(acronym)S
1206(``PC.'')S
60 Z
577 4413(L)U
(einer)R
2932([Page)S
3089(24])S
EP
%%Page: ? 27
BP
1 F
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
727 681(Clark)U
911(proposed)S
1199(that)S
1331(an)S
1423(initial)S
1615(packet)S
1827(include)S
2063(an)S
2155(IP)S
2243(option)S
2451(consisting)S
2767(of)S
2851(signed)S
3115 765(t)U
577 849(p)U
577 765(policy)U
781(route)S
953(data)S
1097(\(including)S
1417(billing)S
1629(and)S
1757(authorization)S
2161(information\),)S
2567(but)S
2683(that)S
2815(subsequen)S
613 849(ackets)U
817(contain)S
1053(only)S
1205(a)S
1261(short)S
1429(form)S
1593(of)S
1677(the)S
1789(policy)S
1993(route)S
2165(option)S
2373(with)S
2525(a)S
2581(``handle'')S
2893(from)S
3057(the)S
577 1017(t)U
577 933(option)U
785(in)S
865(the)S
977(original)S
1225(packet.)S
1479(The)S
1615(handle)S
1831(would)S
2035(be)S
2127(generated)S
2431(by)S
2527(the)S
2639(policy)S
2843(server)S
3043(in)S
597 1017(he)U
689(source)S
901(domain)S
1141(and)S
1269(would)S
1473(uniquely)S
1749(identify)S
1997(the)S
2109(current)S
2337(route)S
2509(\(based)S
2721(on)S
2817(the)S
3023 1101(s)U
577 1185(w)U
577 1101(combination)U
961(of)S
1045(the)S
1157(domain)S
1397(identi\256er)S
1681(and)S
1809(the)S
1921(route)S
2093(identi\256er\).)S
2443(The)S
2579(policy)S
2783(gateway)S
629 1185(ould)U
781(cache)S
969(the)S
1081(policy)S
1285(route)S
1457(using)S
1637(the)S
1749(handle)S
1965(as)S
2049(a)S
2105(search)S
2313(key)S
2441(and)S
2569(subsequent)S
2913(packets)S
577 1353(p)U
577 1269(would)U
781(be)S
873(validated)S
1161(by)S
1257(determining)S
1629(if)S
1697(the)S
1809(handle)S
2025(was)S
2161(present)S
2393(in)S
2473(the)S
2585(cache)S
2773(and)S
2901(by)S
613 1353(rocessing)U
909(the)S
1021(packets)S
1261(according)S
1569(to)S
1649(the)S
1761(policy)S
1965(route)S
2137(associated)S
2457(with)S
2609(the)S
2721(cache)S
2909(entry.)S
3123 1461(n)U
577 1560(p)U
727 1461(This)U
879(approach)S
1167(to)S
1247(individual)S
1563(packet)S
1775(validation)S
2087(differs)S
2299(from)S
2463(others)S
2663(which)S
2863(have)S
3023(bee)S
613 1560(roposed,)U
883(e.g.,)S
1029(Estrin's)S
1277(VISA)S
1469(schemes,)S
1809(in)S
1889(that)S
2021(is)S
2093(does)S
2249(not)S
2365(assume)S
2601(a)S
2657(crypto)S
2865(checksum)S
577 1644(b)U
54 Z
1731 1533(15)U
72 Z
613 1644(inding)U
821(authorization)S
1225(data)S
1369(to)S
1449(packet)S
1661(contents.)S
1967(Thus)S
2135(it)S
2199(is)S
2271(possible)S
2531(to)S
2611(copy)S
2775(a)S
2831(valid)S
3097 1728(h)U
577 1812(t)U
577 1728(header)U
793(from)S
957(a)S
1013(legitimate)S
1325(packet)S
1537(and)S
1665(prepend)S
1921(it)S
1985(to)S
2065(a)S
2121(packet)S
2333(content)S
2569(not)S
2685(associated)S
3005(wit)S
597 1812(he)U
689(valid)S
857(header.)S
1115(Clark)S
1299(argues)S
1511(that)S
1643(this)S
1771(is)S
1843(an)S
1935(acceptable)S
2263(vulnerability)S
2655(since)S
2827(the)S
2939(access)S
577 1980(n)U
577 1896(control)U
805(afforded)S
1073(here)S
1221(only)S
1373(applies)S
1601(to)S
1681(transmission)S
2069(and)S
2197(switching)S
2501(resource)S
2769(utilization,)S
613 1980(ot)U
693(information)S
1057(disclosure.)S
1415(The)S
1551(utility)S
1747(of)S
1831(``appropriating'')S
2339(valid)S
2507(packet)S
2719(headers)S
2963(is)S
3101 2064(t)U
577 2148(t)U
577 2064(limited)U
805(so)S
893(long)S
1045(as)S
1129(the)S
1241(policy)S
1445(gateways)S
1737(match)S
1937(source)S
2149(and)S
2277(destination)S
2617(addresses)S
2917(agains)S
597 2148(hose)U
753(held)S
901(in)S
981(the)S
1093(cache)S
1281(\(as)S
1389(speci\256ed)S
1669(in)S
1749(the)S
1861(signed,)S
2091(policy)S
2295(route)S
2467(option\).)S
2741(However,)S
3047(in)S
3091 2232(n)U
577 2316(o)U
577 2232(circumstances)U
1009(where)S
1209(use)S
1329(of)S
1413(resources)S
1709(results)S
1921(in)S
2001(actual)S
2197(bills,)S
2363(unauthorized)S
2763(transmissio)S
613 2316(f)U
661(packets)S
901(using)S
1081(copied,)S
1315(valid)S
1483(headers)S
1727(or)S
1811(forgery)S
2047(of)S
2131(valid)S
2299(headers)S
2543(could)S
2727(result)S
2911(in)S
577 2400(spurious)U
845(charges)S
1089(to)S
1169(legitimate)S
1481(users.)S
727 2508(In)U
811(his)S
919(paper,)S
1121(Clark)S
1305(proposes)S
1585(inclusion)S
1873(of)S
1957(a)S
2013(16-bit)S
2209(signature)S
2497(and)S
2625(a)S
2681(handle)S
3103 2592(e)U
577 2676(d)U
577 2592(composed)U
893(of)S
977(a)S
1033(16-bit)S
1229(domain)S
1469(identi\256er,)S
1771(and)S
1899(a)S
1955(16-bit)S
2151(route)S
2323(identi\256ed)S
2619(unique)S
2839(within)S
3047(th)S
613 2676(omain)U
817(in)S
897(the)S
1009(policy)S
1213(route)S
1385(option.)S
1635(It)S
1703(was)S
1839(not)S
1955(clear)S
2119(if)S
2187(the)S
2299(short)S
2467(form)S
2631(of)S
2715(this)S
2843(option)S
577 2844(b)U
577 2760(would)U
781(also)S
921(contain)S
1157(a)S
1213(signature,)S
1519(though)S
1743(most)S
1907(of)S
1991(the)S
2103(working)S
2367(group)S
2559(membership)S
613 2844(elieved)U
845(this)S
973(might)S
1165(have)S
1325(been)S
1485(implied.)S
1771(We)S
1895(observe)S
2143(that)S
2275(a)S
2331(16-bit)S
2527(signature)S
2815(is)S
2887(probably)S
3141 2928(r)U
577 3012(o)U
577 2928(insuf\256cient)U
925(to)S
1005(preclude)S
1277(forgery;)S
1533(a)S
1589(more)S
1761(appropriate)S
2113(size)S
2249(quantity)S
2509(would)S
2713(be)S
2805(on)S
2901(the)S
3013(orde)S
613 3012(f)U
661(128)S
793(or)S
877(256)S
1009(bits.)S
1179(It)S
1247(is)S
1319(critical)S
1543(that)S
1675(the)S
1787(policy)S
1991(route)S
2163(option)S
2371(be)S
2463(unforgeable)S
2831(and)S
2959(thus)S
577 3096(the)U
689(extra)S
857(overhead)S
1145(implied)S
1389(by)S
1485(the)S
1597(larger)S
1789(signature)S
2077(is)S
2149(justi\256ed.)S
727 3204(On)U
839(individual)S
1155(packets)S
1395(traversing)S
1707(an)S
1799(established)S
2143(route)S
2315(there)S
2483(is)S
2555(a)S
2611(diminished)S
2955(need)S
3073 3288(s)U
577 3372(c)U
577 3288(for)U
685(short)S
853(form)S
1017(option)S
1225(integrity)S
1493(and)S
1621(authenticity,)S
2003(except)S
2215(to)S
2295(prevent)S
2535(malicious,)S
2857(spuriou)S
609 3372(harges.)U
863(As)S
967(noted)S
1151(above,)S
1365(if)S
1433(policy)S
1637(gateways)S
1929(check)S
2121(the)S
2233(source)S
2445(and)S
2573(destination)S
2913(address)S
577 3540(f)U
577 3456(in)U
657(the)S
769(packet)S
981(against)S
1209(that)S
1341(recorded)S
1617(in)S
1697(the)S
1809(cache,)S
2015(there)S
2183(is)S
2255(relatively)S
2551(little)S
2707(to)S
2787(be)S
2879(gained)S
601 3540(rom)U
741(forging)S
977(a)S
1033(short)S
1201(form)S
1365(option.)S
1615(Since)S
1799(it)S
1863(is)S
1935(already)S
2171(possible)S
2431(to)S
2511(copy)S
2675(a)S
2731(legitimate)S
3083 3624(s)U
577 3723(p)U
577 3624(short)U
745(form)S
909(option)S
1117(from)S
1281(a)S
1337(valid)S
1505(packet,)S
1735(it)S
1799(isn't)S
1951(clear)S
2115(how)S
2263(much)S
2447(additional)S
2759(assurance)S
3063(i)S
613 3723(rovided)U
857(by)S
953(incorporating)S
1365(authenticity)S
1729(measures)S
2021(in)S
2101(short)S
2269(form)S
2433(options.)S
2741(Perhaps)S
2993(a)S
54 Z
2663 3696(16)U
72 Z
3117 3807(s)U
0 F
48 Z
577 3864 M
8 22 0 0 16 0 0 18 PS16
1 F
72 Z
577 3807(prudent)U
821(safeguard)S
1125(is)S
1197(for)S
1305(policy)S
1509(servers)S
1737(to)S
1817(adopt)S
2001(a)S
2057(process)S
2297(for)S
2405(selecting)S
2685(route)S
2857(identi\256er)S
0 F
48 Z
601 3864 M
8 22 0 0 16 0 0 18 PS16
625 3864 M
8 22 0 0 16 0 0 18 PS16
649 3864 M
8 22 0 0 16 0 0 18 PS16
673 3864 M
8 22 0 0 16 0 0 18 PS16
697 3864 M
8 22 0 0 16 0 0 18 PS16
721 3864 M
8 22 0 0 16 0 0 18 PS16
745 3864 M
8 22 0 0 16 0 0 18 PS16
769 3864 M
8 22 0 0 16 0 0 18 PS16
793 3864 M
8 22 0 0 16 0 0 18 PS16
817 3864 M
8 22 0 0 16 0 0 18 PS16
841 3864 M
8 22 0 0 16 0 0 18 PS16
865 3864 M
8 22 0 0 16 0 0 18 PS16
889 3864 M
8 22 0 0 16 0 0 18 PS16
913 3864 M
8 22 0 0 16 0 0 18 PS16
937 3864 M
8 22 0 0 16 0 0 18 PS16
961 3864 M
8 22 0 0 16 0 0 18 PS16
985 3864 M
8 22 0 0 16 0 0 18 PS16
1009 3864 M
8 22 0 0 16 0 0 18 PS16
1033 3864 M
8 22 0 0 16 0 0 18 PS16
1057 3864 M
8 22 0 0 16 0 0 18 PS16
1081 3864 M
8 22 0 0 16 0 0 18 PS16
1105 3864 M
8 22 0 0 16 0 0 18 PS16
1129 3864 M
8 22 0 0 16 0 0 18 PS16
1153 3864 M
8 22 0 0 16 0 0 18 PS16
1177 3864 M
8 22 0 0 16 0 0 18 PS16
1201 3864 M
8 22 0 0 16 0 0 18 PS16
1225 3864 M
8 22 0 0 16 0 0 18 PS16
1249 3864 M
8 22 0 0 16 0 0 18 PS16
1273 3864 M
8 22 0 0 16 0 0 18 PS16
1297 3864 M
8 22 0 0 16 0 0 18 PS16
1321 3864 M
8 22 0 0 16 0 0 18 PS16
1345 3864 M
8 22 0 0 16 0 0 18 PS16
1369 3864 M
8 22 0 0 16 0 0 18 PS16
1393 3864 M
8 22 0 0 16 0 0 18 PS16
1417 3864 M
8 22 0 0 16 0 0 18 PS16
1 F
742 3945(`)U
(`VISA)R
906(Scheme)S
1076(for)S
1151(Inter-Organizati)S
1458(on)S
1525(Network)S
1711(Security,'')S
1932(D.)S
1997(Estrin)S
2129(and)S
2216(G.)S
2281(Tsudik,)S
2444(Proceedings)S
2696(of)S
2754(the)S
2830(1987)S
2944(IEEE)S
3065(Sym-)S
577 4002(p)U
36 Z
706 3927(15)U
48 Z
601 4002(osium)U
734(on)S
798(Security)S
973(and)S
1058(Privacy.)S
742 4083(W)U
(e)R
827(also)S
923(note)S
1024(that)S
1114(the)S
1191(computationa)S
1450(l)S
1482(overhead)S
1676(of)S
1735(validating)S
1944(a)S
1983(crypto-seal)S
2213(\(or)S
2287(reasonable)S
2509(size\))S
2617(on)S
2683(every)S
2807(packet)S
2949(is)S
2999(probably)S
36 Z
706 4065(16)U
48 Z
786 4140(.)U
60 Z
577 4413(L)U
48 Z
577 4140(prohibitive)U
60 Z
614 4413(einer)U
2932([Page)S
3089(25])S
EP
%%Page: ? 28
BP
1 F
72 Z
577 681(s)U
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
605 681(o)U
665(as)S
749(to)S
829(minimize)S
1125(the)S
1237(likelihood)S
1553(that)S
1685(they)S
1833(can)S
1957(be)S
2049(guessed,)S
2319(e.g.,)S
2465(using)S
2645(a)S
2701(pseudorandom)S
3099 765(e)U
577 849(i)U
577 765(process.)U
859(We)S
983(do)S
1079(recommend)S
1443(that)S
1575(the)S
1687(policy)S
1891(route)S
2063(option)S
2271(be)S
2363(expanded)S
2663(to)S
2743(include)S
2979(som)S
597 849(ndication)U
889(of)S
973(lifetime,)S
1239(either)S
1427(measured)S
1727(in)S
1807(time)S
1959(or)S
2043(in)S
2123(number)S
2367(of)S
2451(packets)S
2691(or)S
2775(both.)S
2969(This)S
577 1017(u)U
577 933(limit)U
737(on)S
833(the)S
945(lifetime)S
1193(of)S
1277(a)S
1333(route)S
1505(further)S
1725(reduces)S
1969(its)S
2061(vulnerability)S
2453(to)S
2533(exploitation)S
2901(by)S
613 1017(nauthorized)U
977(subjects)S
1233(and)S
1361(a)S
1417(packet)S
1629(quota)S
1813(could)S
1997(provide)S
2241(an)S
2333(additional)S
2645(means)S
2853(for)S
577 1116(detecting)U
865(misuse.)S
54 Z
1089(17)T
3 F
72 Z
577 1272(4)U
(.4.3.)R
787(Clark's)S
1043(Architecture)S
1459(in)S
1543(Retrospect)S
1 F
727 1380(N)U
(ow)R
891(that)S
1023(we)S
1131(have)S
1291(reviewed)S
1579(the)S
1691(architecture)S
2055(presented)S
2355(in)S
2435(Clark's)S
2671(paper)S
2855(and)S
2983(made)S
577 1548(c)U
577 1464(some)U
753(local)S
917(observations)S
1305(and)S
1433(suggestions,)S
1811(it)S
1875(is)S
1947(useful)S
2147(to)S
2227(view)S
2391(the)S
2503(architecture)S
2867(in)S
2947(the)S
609 1548(ontext)U
813(of)S
897(our)S
1017(previous)S
1289(discussions.)S
1683(For)S
1807(example,)S
2093(the)S
2205(architecture)S
2569(described)S
2869(in)S
2949(this)S
577 1716(c)U
577 1632(paper)U
761(supports)S
1029(both)S
1181(identity-based)S
1613(and)S
1741(rule)S
1877(based,)S
2083(administratively-directed)S
2831(access)S
609 1716(ontrol)U
805(policies.)S
1095(It)S
1163(adopts)S
1375(a)S
1431(security)S
1683(model)S
1887(in)S
1967(which)S
2167(the)S
2279(objects)S
2507(are)S
2619(routes)S
2819(through)S
3067(the)S
577 1884(s)U
577 1800(Internet)U
825(\(which)S
1049(correspond)S
1393(to)S
1473(use)S
1593(of)S
1677(switching)S
1981(and)S
2109(transmission)S
2497(resources\))S
2817(and)S
2945(the)S
605 1884(ubjects)U
833(are)S
945(processes)S
1245(executing)S
1549(on)S
1645(behalf)S
1849(of)S
1933(users)S
2105(or)S
2189(groups)S
2409(of)S
2493(users)S
2665(and,)S
2811(hosts)S
2983(or)S
577 1968(groups)U
797(of)S
881(hosts)S
1053(\(perhaps)S
1325(entire)S
1513(domains\).)S
727 2076(Clark's)U
963(architecture)S
1327(embodies)S
1627(the)S
1739(connection-oriented)S
2339(\(single)S
2559(originator\))S
2891(access)S
3121 2160(s)U
577 2244(e)U
577 2160(control)U
805(model)S
1009(discussed)S
1309(in)S
1389(section)S
1617(4.3.1)S
1785(above)S
1981(and)S
2109(thus)S
2253(this)S
2381(class)S
2545(of)S
2629(communication)S
3101(i)S
609 2244(specially)U
889(well)S
1037(served)S
1249(by)S
1345(this)S
1473(architecture.)S
1879(Communication)S
2367(scenarios)S
2659(that)S
2791(deviate)S
3023(from)S
577 2412(e)U
577 2328(this)U
705(model)S
909(must)S
1073(be)S
1165(examined)S
1469(to)S
1549(determine)S
1861(how)S
2009(they)S
2157(can)S
2281(be)S
2373(accommodated.)S
2875(For)S
609 2412(xample,)U
863(electronic)S
1171(messaging)S
1499(would)S
1703(probably)S
1983(be)S
2075(handled)S
2327(by)S
2423(viewing)S
2679(the)S
2791(MTAs)S
3003(as)S
577 2580(o)U
577 2496(subjects)U
833(rather)S
1025(than)S
1173(trying)S
1369(to)S
1449(control)S
1677(access)S
1885(on)S
1981(the)S
2093(basis)S
2261(of)S
2345(individual)S
2661(message)S
613 2580(riginators,)U
931(as)S
1015(suggested)S
1323(in)S
1403(section)S
1631(4.3.3.)S
1841(Stream-oriented)S
2329(multicast)S
2617(communication)S
577 2664(could)U
761(be)S
853(accommodated)S
1313(as)S
1397(described)S
1697(in)S
1777(section)S
2005(4.3.5.)S
727 2772(Transaction-oriented)U
1351(communication,)S
1841(whether)S
2097(point-to-point)S
2521(or)S
2605(multicast,)S
2911(may)S
3059(not)S
577 2940(p)U
577 2856(be)U
669(served)S
881(very)S
1033(well)S
1181(by)S
1277(this)S
1405(architecture,)S
1787(i.e.,)S
1917(it)S
1981(may)S
2129(be)S
2221(dif\256cult)S
2473(to)S
2553(amortize)S
2829(the)S
2941(cost)S
3081(of)S
613 2940(olicy)U
781(route)S
953(options)S
1189(in)S
1269(these)S
1441(communication)S
1913(scenarios.)S
2247(However,)S
2553(if)S
2621(cache)S
2809(entries)S
3025(in)S
577 3108(p)U
577 3024(policy)U
781(gateways)S
1073(can)S
1197(include)S
1433(``wild)S
1633(card'')S
1829(entries)S
2045(for)S
2153(addresses,)S
2471(then)S
2619(it)S
2683(might)S
2875(be)S
613 3108(ossible)U
837(for)S
945(a)S
1001(policy)S
1205(server)S
1405(to)S
1485(seed)S
1637(routes)S
1837(for)S
1945(access)S
2153(to)S
2233(commonly)S
2565(accessed)S
2841(collections)S
577 3276(i)U
577 3192(of)U
661(servers,)S
907(etc.)S
1057(on)S
1153(behalf)S
1357(of)S
1441(all)S
1537(\(many?\))S
1801(of)S
1885(the)S
1997(hosts)S
2169(in)S
2249(its)S
2341(domain)S
2581(and)S
2709(pass)S
2857(out)S
2973(the)S
597 3276(denti\256ers)U
889(for)S
997(these)S
1169(routes)S
1369(to)S
1449(members)S
1737(of)S
1821(the)S
1933(domain.)S
2973 3384(f)U
577 3468(u)U
727 3384(The)U
863(remaining)S
1179(deviant)S
1415(case)S
1563(involves)S
1831(dual-initiator)S
2231(connections,)S
2617(a)S
2673(scenario)S
2937(o)S
613 3468(ndetermined)U
997(criticality.)S
1339(The)S
1475(source)S
1687(and)S
1815(destination)S
2155(hosts)S
2327(could)S
2511(discover)S
2779(that)S
2911(different)S
577 3636(u)U
577 3552(route)U
749(identi\256ers)S
1061(were)S
1225(assigned)S
1497(to)S
1577(a)S
1633(single)S
1829(transport)S
2109(layer)S
2277(connection)S
2617(and)S
2745(co-operate)S
3073(to)S
613 3636(se)U
697(only)S
849(one)S
977(of)S
1061(the)S
1173(routes)S
1373(\(using)S
1577(some)S
1753(unambiguous)S
2165(criteria)S
2393(such)S
2549(as)S
2633(comparing)S
2965(route)S
577 3804(H)U
577 3720(identi\256ers)U
889(as)S
973(unsigned)S
1257(integers)S
1509(and)S
1637(selecting)S
1917(the)S
2029(larger)S
2221(value)S
2401(route)S
2573(identi\256er\).)S
629 3804(owever,)U
883(this)S
1011(solution)S
1267(may)S
1415(be)S
1507(viewed)S
1739(as)S
1823(being)S
2007(outside)S
2239(of)S
2323(the)S
2435(architecture)S
2799(in)S
2879(that)S
3011(it)S
3059 3888(t)U
577 3972(f)U
577 3888(does)U
733(not)S
849(involve)S
1089(the)S
1201(policy)S
1405(gateways,)S
1715(policy)S
1919(servers,)S
2165(etc.)S
2315(Another)S
2575(aspect)S
2779(of)S
2863(suppor)S
601 3972(or)U
685(some)S
861(communication)S
1333(scenarios)S
1625(which)S
1825(generated)S
2129(some)S
2305(concern)S
2557(is)S
2629(also)S
2769(outside)S
3001(the)S
0 F
48 Z
577 4029 M
8 22 0 0 16 0 0 18 PS16
601 4029 M
8 22 0 0 16 0 0 18 PS16
625 4029 M
8 22 0 0 16 0 0 18 PS16
649 4029 M
8 22 0 0 16 0 0 18 PS16
673 4029 M
8 22 0 0 16 0 0 18 PS16
697 4029 M
8 22 0 0 16 0 0 18 PS16
721 4029 M
8 22 0 0 16 0 0 18 PS16
745 4029 M
8 22 0 0 16 0 0 18 PS16
769 4029 M
8 22 0 0 16 0 0 18 PS16
793 4029 M
8 22 0 0 16 0 0 18 PS16
817 4029 M
8 22 0 0 16 0 0 18 PS16
841 4029 M
8 22 0 0 16 0 0 18 PS16
865 4029 M
8 22 0 0 16 0 0 18 PS16
889 4029 M
8 22 0 0 16 0 0 18 PS16
913 4029 M
8 22 0 0 16 0 0 18 PS16
937 4029 M
8 22 0 0 16 0 0 18 PS16
961 4029 M
8 22 0 0 16 0 0 18 PS16
985 4029 M
8 22 0 0 16 0 0 18 PS16
1009 4029 M
8 22 0 0 16 0 0 18 PS16
1033 4029 M
8 22 0 0 16 0 0 18 PS16
1057 4029 M
8 22 0 0 16 0 0 18 PS16
1081 4029 M
8 22 0 0 16 0 0 18 PS16
1105 4029 M
8 22 0 0 16 0 0 18 PS16
1129 4029 M
8 22 0 0 16 0 0 18 PS16
1153 4029 M
8 22 0 0 16 0 0 18 PS16
1177 4029 M
8 22 0 0 16 0 0 18 PS16
1201 4029 M
8 22 0 0 16 0 0 18 PS16
1225 4029 M
8 22 0 0 16 0 0 18 PS16
1249 4029 M
8 22 0 0 16 0 0 18 PS16
1273 4029 M
8 22 0 0 16 0 0 18 PS16
1297 4029 M
8 22 0 0 16 0 0 18 PS16
1321 4029 M
8 22 0 0 16 0 0 18 PS16
1345 4029 M
8 22 0 0 16 0 0 18 PS16
1369 4029 M
8 22 0 0 16 0 0 18 PS16
1393 4029 M
8 22 0 0 16 0 0 18 PS16
1417 4029 M
8 22 0 0 16 0 0 18 PS16
1 F
742 4110(If)U
796(a)S
839(packet)S
985(quota)S
1113(were)S
1228(imposed)S
1412(on)S
1482(a)S
1525(route)S
1645(and)S
1736(the)S
1816(route)S
1936(were)S
2051(used)S
2160(by)S
2229(an)S
2295(unauthorized)S
2565(subject,)S
2733(the)S
2812(authorized)S
3034(subject)S
577 4167(m)U
36 Z
706 4092(17)U
48 Z
614 4167(ight)U
704(detect)S
833(this)S
918(if)S
963(the)S
1037(route)S
1151(were)S
1260(to)S
1313(become)S
1477(invalid)S
1625(due)S
1710(to)S
1763(exhaustion)S
1986(of)S
2042(the)S
2116(packet)S
2256(quota.)S
60 Z
3149 4413(])U
577(Leiner)S
2932([Page)S
3089(26)S
EP
%%Page: ? 29
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
577 765(s)U
577 681(scope)U
765(of)S
849(the)S
961(architecture,)S
1343(i.e.,)S
1473(the)S
1585(need)S
1745(for)S
1853(proxy)S
2045(authorization.)S
2491(The)S
2627(possible)S
2887(need)S
3047(for)S
605 765(uch)U
733(a)S
789(facility)S
1017(was)S
1153(noted)S
1337(in)S
1417(conjunction)S
1781(with)S
1933(\256le)S
2049(server)S
2249(communication)S
2721(on)S
2817(behalf)S
3021(of)S
3059 849(e)U
577 933(i)U
577 849(users,)U
767(e.g.,)S
913(transfer)S
1157(of)S
1241(a)S
1297(\256le)S
1413(between)S
1677(two)S
1809(\256le)S
1925(servers.)S
2195(It)S
2263(appears)S
2507(that)S
2639(the)S
2751(architectur)S
597 933(n)U
657(Clark's)S
893(paper)S
1077(could)S
1261(support)S
1501(such)S
1657(communication)S
2129(authorization,)S
2551(but)S
2667(the)S
2779(means)S
2987(by)S
3089 1017(a)U
577 1101(s)U
577 1017(which)U
777(the)S
889(initiating)S
1173(policy)S
1377(server)S
1577(determines)S
1917(that)S
2049(the)S
2161(communication)S
2633(is)S
2705(on)S
2801(behalf)S
3005(of)S
605 1101(peci\256ed)U
857(user,)S
1019(rather)S
1211(than)S
1359(the)S
1471(\256le)S
1587(server)S
1787(itself,)S
1973(is)S
2045(a)S
2101(local)S
2265(matter)S
2473(not)S
2589(part)S
2725(of)S
2809(the)S
577 1185(architecture.)U
727 1293(In)U
811(section)S
1039(4.3.2,)S
1225(a)S
1281(concern)S
1533(was)S
1669(raised)S
1865(about)S
2049(supporting)S
2381(route)S
2553(establishment)S
2973(when)S
577 1461(i)U
577 1377(permission)U
917(for)S
1025(a)S
1081(route)S
1253(was)S
1389(dependent)S
1709(on)S
1805(authorization)S
2209(of)S
2293(the)S
2405(destination,)S
2763(not)S
2879(the)S
597 1461(nitiator.)U
871(In)S
955(Clark's)S
1191(architecture,)S
1573(this)S
1701(case)S
1849(would)S
2053(not)S
2169(be)S
2261(treated)S
2481(any)S
2609(differently)S
2937(since)S
3109(it)S
577 1629(d)U
577 1545(is)U
649(the)S
761(initiator's)S
1065(policy)S
1269(server)S
1469(which)S
1669(evaluates)S
1961(the)S
2073(access)S
2281(control)S
2509(policy)S
2713(and)S
2841(makes)S
3049(the)S
613 1629(ecision,)U
859(and)S
987(all)S
1083(the)S
1195(inputs)S
1395(required)S
1659(to)S
1739(make)S
1919(the)S
2031(decision)S
2295(are)S
2407(available)S
2691(to)S
2771(that)S
2903(policy)S
577 1797(i)U
577 1713(server.)U
819(For)S
943(the)S
1055(most)S
1219(part,)S
1373(the)S
1485(architecture)S
1849(assumes)S
2113(the)S
2225(policy)S
2429(gateways)S
2721(trust)S
2873(the)S
597 1797(nitiating)U
861(policy)S
1065(server)S
1265(to)S
1345(interpret)S
1613(the)S
1725(access)S
1933(control)S
2161(policies)S
2409(correctly)S
2689(at)S
2765(the)S
2877(time)S
3029(it)S
577 1965(I)U
577 1881(generates)U
873(the)S
985(sealed)S
1189(route)S
1361(option)S
1569(and)S
1697(supplies)S
1957(it)S
2021(to)S
2101(a)S
2157(subject)S
2385(in)S
2465(the)S
2577(local)S
2741(domain.)S
601 1965(ntermediate)U
965(policy)S
1169(gateways)S
1461(can)S
1585(review)S
1805(the)S
1917(data)S
2061(provided)S
2341(in)S
2421(the)S
2533(policy)S
2737(route)S
2909(to)S
3119 2049(n)U
577 2133(w)U
577 2049(con\256rm)U
825(the)S
937(decision,)S
1219(but)S
1335(the)S
1447(paper)S
1631(seems)S
1831(to)S
1911(suggest)S
2151(that)S
2283(this)S
2411(independent)S
2787(con\256rmatio)S
629 2133(ould)U
781(not)S
897(usually)S
1129(be)S
1221(carried)S
1445(out)S
1561(during)S
1773(route)S
1945(establishment,)S
2383(for)S
2491(reasons)S
2731(of)S
2815(ef\256ciency,)S
3 F
577 2373(4)U
1 F
577 2217(though)U
801(the)S
913(signature)S
1201(should)S
1417(be)S
1509(checked.)S
3 F
613 2373(.4.4.)U
787(Trust)S
983(Implications)S
1391(and)S
1531(Possible)S
1803(Remedies)S
1 F
3145 2481(l)U
577 2565(d)U
727 2481(In)U
811(Clark's)S
1047(architecture,)S
1429(the)S
1541(ability)S
1749(of)S
1833(policy)S
2037(gateways)S
2329(to)S
2409(validate)S
2661(an)S
2753(access)S
2961(contro)S
613 2565(ecision)U
841(is)S
913(limited)S
1141(because)S
1393(the)S
1505(authorization)S
1909(data)S
2053(included)S
2325(in)S
2405(the)S
2517(signed)S
2729(route)S
2901(option)S
3105 2649(y)U
577 2733(g)U
577 2649(does)U
733(not)S
849(incorporate)S
1201(any)S
1329(independent)S
1705(validation)S
2017(mechanisms.)S
2439(For)S
2563(example,)S
2849(the)S
2961(polic)S
613 2733(ateways)U
869(must)S
1033(trust)S
1185(the)S
1297(initiating)S
1581(policy)S
1785(server)S
1985(to)S
2065(have)S
2225(veri\256ed)S
2469(the)S
2581(user)S
2725(ID,)S
2843(agency)S
577 2901(a)U
577 2817(af\256liation,)U
899(etc.,)S
1043(because)S
1295(there)S
1463(is)S
1535(no)S
1631(means)S
1839(for)S
1947(the)S
2059(policy)S
2263(gateways)S
2555(to)S
2635(verify)S
2831(these)S
609 2901(ccess)U
785(control)S
1013(inputs)S
1213(directly.)S
1499(The)S
1635(route)S
1807(veri\256cation)S
2159(that)S
2291(can)S
2415(be)S
2507(performed)S
2831(by)S
2927(policy)S
577 3069(a)U
577 2985(gateways)U
869(is)S
941(based)S
1129(on)S
1225(checking)S
1509(the)S
1621(signature)S
1909(\(thus)S
2077(verifying)S
2365(the)S
2477(integrity)S
2745(and)S
609 3069(uthenticity)U
941(of)S
1025(the)S
1137(route\))S
1333(and)S
1461(on)S
1557(matching)S
1849(the)S
1961(supplied)S
2229(access)S
2437(control)S
2665(inputs)S
2865(against)S
577 3237(c)U
577 3153(the)U
689(policy)S
893(in)S
973(effect.)S
1203(Rather,)S
1437(the)S
1549(assumption)S
1901(is)S
1973(that)S
2105(access)S
2313(control)S
2541(policy)S
2745(terms)S
2929(and)S
609 3237(onditions)U
901(are)S
1013(distributed)S
1345(and)S
1473(that)S
1605(the)S
1717(data)S
1861(items)S
2041(against)S
2269(which)S
2469(the)S
2581(policy)S
2785(terms)S
2969(and)S
3141 3321(r)U
577 3405(s)U
577 3321(conditions)U
901(can)S
1025(be)S
1117(matched)S
1385(are)S
1497(all)S
1593(locally)S
1813(validated)S
2101(quantities,)S
2423(i.e.,)S
2553(they)S
2701(are)S
2813(vouched)S
3081(fo)S
605 3405(olely)U
773(by)S
869(the)S
981(initiating)S
1265(domain)S
1505(through)S
1753(its)S
1845(policy)S
2049(server.)S
2291(Thus)S
2459(the)S
2571(architecture)S
2935(relies)S
577 3573(a)U
577 3489(on)U
673(mutual)S
897(trust)S
1049(among)S
1269(domains,)S
1555(non-repudiable)S
2015(\(signed\))S
2275(policy)S
2479(routes,)S
2697(and)S
2825(post-hoc)S
609 3573(uditing)U
837(to)S
917(reconcile)S
1205(conformance.)S
727 3681(I)U
(f)R
799(this)S
927(level)S
1091(of)S
1175(mutual)S
1399(trust)S
1551(proves)S
1767(unacceptable)S
2167(in)S
2247(the)S
2359(NRI,)S
2525(it)S
2589(is)S
2661(worth)S
2853(exploring)S
577 3849(`)U
577 3765(how)U
725(one)S
853(might)S
1045(extend)S
1261(the)S
1373(architecture)S
1737(to)S
1817(incorporate)S
2169(independently)S
2601(veri\256able)S
601 3849(`credentials''.)U
1051(First)S
1207(we)S
1315(need)S
1475(to)S
1555(identify)S
1803(which)S
2003(credentials)S
2339(might)S
2531(need)S
2691(to)S
2771(be)S
577 4017(I)U
577 3933(independently)U
1009(veri\256able.)S
1347(One)S
1491(candidate)S
1791(is)S
1863(the)S
1975(AGENCY)S
2299(AFFILIATION)S
601 4017(NDICATOR.)U
1039(If)S
1111(a)S
1167(connection)S
1507(is)S
1579(initiated)S
1839(with)S
1991(a)S
2047(policy)S
2251(route)S
2423(that)S
2555(claims)S
2767(an)S
2859(af\256liation)S
577 4185(r)U
577 4101(for)U
685(which)S
885(the)S
997(initiating)S
1281(domain)S
1521(is)S
1593(not)S
1709(the)S
1821(certifying)S
2125(domain,)S
2383(then)S
2531(it)S
2595(might)S
2787(be)S
601 4185(easonable)U
909(to)S
989(require)S
1217(that)S
1349(the)S
1461(AGENCY)S
1785(AFFILIATION)S
2257(INDICATOR)S
2677(be)S
60 Z
3149 4413(])U
577(Leiner)S
2932([Page)S
3089(27)S
EP
%%Page: ? 30
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
577 681(independently)U
1009(veri\256able.)S
727 789(A)U
803(BILLING)S
1115(CODE)S
1335(might)S
1527(require)S
1755(independent)S
2131(veri\256cation)S
2483(if)S
2551(the)S
2663(code)S
2823(is)S
2895(one)S
3097 888(e)U
577(which)S
777(does)S
933(not)S
1049(somehow)S
1349(imply)S
1541(charges)S
1785(to)S
1865(the)S
1977(initiating)S
2261(domain.)S
2573(An)S
2685(analogy)S
2937(can)S
3061(b)S
54 Z
2495 861(18)U
72 Z
3135 972(r)U
577 1056(i)U
577 972(made)U
757(with)S
909(long)S
1061(distance)S
1321(telephone)S
1625(charging.)S
1943(A)S
2019(direct)S
2207(dialed)S
2407(call)S
2535(from)S
2699(a)S
2755(home)S
2939(numbe)S
597 1056(s)U
649(assumed)S
921(to)S
1001(be)S
1093(legitimate,)S
1423(whereas)S
1683(a)S
1739(similar)S
1963(call)S
2091(from)S
2255(a)S
2311(pay)S
2439(phone)S
2639(or)S
2723(hotel)S
2891(room)S
577 1224(l)U
577 1140(requires)U
833(an)S
925(independently)S
1357(veri\256able)S
1653(account)S
1901(number)S
2145(unless)S
2349(the)S
2461(charges)S
2705(are)S
2817(borne)S
597 1224(ocally)U
797(\(via)S
933(coins)S
1109(or)S
1193(billed)S
1381(to)S
1461(your)S
1617(room\).)S
1859(Thus)S
2027(BILLING)S
2339(CODEs)S
2587(also)S
2727(appear)S
2943(to)S
3023(be)S
577 1308(good)U
745(candidates)S
1073(for)S
1181(independent)S
1557(veri\256cation,)S
1927(at)S
2003(least)S
2159(in)S
2239(some)S
2415(circumstances.)S
727 1416(Finally,)U
973(the)S
1085(other)S
1257(major)S
1449(credential)S
1757(considered)S
2093(for)S
2201(inclusion)S
2489(in)S
2569(policy)S
2773(routes)S
2973(was)S
3129 1500(y)U
577 1584(t)U
577 1500(the)U
689(SUBJECT)S
1017(ID.)S
1159(Again,)S
1377(the)S
1489(circumstances)S
1921(in)S
2001(which)S
2201(independent)S
2577(veri\256cation)S
2929(is)S
3001(likel)S
597 1584(o)U
657(be)S
749(of)S
833(interest)S
1069(are)S
1181(those)S
1357(in)S
1437(which)S
1637(the)S
1749(subject's)S
2029(domain)S
2269(differs)S
2481(from)S
2645(the)S
2757(initiating)S
3063 1668(h)U
577 1752(v)U
577 1668(domain.)U
859(Since)S
1043(the)S
1155(SUBJECT)S
1483(ID)S
1583(already)S
1819(includes)S
2083(an)S
2175(indication)S
2487(of)S
2571(the)S
2683(domain)S
2923(whic)S
613 1752(ouches)U
837(for)S
945(the)S
1057(subject's)S
1337(identity,)S
1599(it)S
1663(is)S
1735(easy)S
1887(to)S
1967(determine)S
2279(if)S
2347(independent)S
2723(veri\256cation)S
3075(is)S
577 1920(a)U
577 1836(required.)U
883(Thus)S
1051(in)S
1131(all)S
1227(cases)S
1403(the)S
1515(motivation)S
1851(for)S
1959(an)S
2051(independent)S
2427(veri\256cation)S
2779(facility)S
609 1920(rises)U
765(only)S
917(when)S
1097(the)S
1209(certifying)S
1513(domain)S
1753(for)S
1861(a)S
1917(credential)S
2225(differs)S
2437(from)S
2601(the)S
2713(initiating)S
577 2004(domain)U
817(for)S
925(the)S
1037(connection.)S
727 2112(In)U
811(order)S
987(for)S
1095(a)S
1151(domain)S
1391(to)S
1471(certify)S
1683(a)S
1739(credential)S
2047(for)S
2155(independent)S
2531(veri\256cation,)S
2901(the)S
2196(t)T
577 2280(u)U
577 2196(resulting)U
853(data)S
997(should)S
1213(be)S
1305(bound)S
1509(to)S
1589(a)S
1645(subject)S
1873(\(or)S
1981(class)S
2145(of)S
2229(subjects\))S
2509(so)S
2597(as)S
2681(to)S
2761(render)S
2969(i)S
613 2280(seless)U
805(to)S
885(other)S
1057(subjects.)S
1355(This)S
1507(is)S
1579(easily)S
1771(accomplished)S
2191(by)S
2287(including)S
2583(the)S
2695(subjects)S
3083 2364(e)U
577 2448(t)U
577 2364(\(subject)U
829(class\))S
1017(to)S
1097(whom)S
1301(the)S
1413(credential)S
1721(is)S
1793(issued)S
1997(as)S
2081(part)S
2217(of)S
2301(the)S
2413(signed)S
2625(credential.)S
2975(Not)S
597 2448(hat)U
709(this)S
837(also)S
977(allows)S
1189(the)S
1301(issuer)S
1493(to)S
1573(distribute)S
1869(the)S
1981(credentials)S
2317(directly)S
2561(to)S
2641(subjects,)S
2915(not)S
3031(only)S
577 2616(B)U
577 2532(through)U
825(domains,)S
1111(if)S
1179(that)S
1311(proves)S
1527(useful.)S
1769(Thus)S
1937(a)S
1993(domain)S
2233(such)S
2389(as)S
2473(DOE)S
2645(might)S
2837(issue)S
3005(a)S
625 2616(ILLING)U
889(CODE)S
1109(and)S
1237(AGENCY)S
1561(AFFILIATION)S
2033(ID)S
2133(to)S
2213(a)S
2269(researcher)S
2589(at)S
2665(a)S
2721(university,)S
577 2784(l)U
577 2700(binding)U
821(it)S
885(to)S
965(his)S
1073(SUBJECT)S
1401(ID.)S
1543(The)S
1679(researcher)S
1999(could)S
2183(present)S
2415(the)S
2527(credentials)S
2863(to)S
2943(his)S
597 2784(ocal)U
741(policy)S
945(server)S
1145(for)S
1253(consideration)S
1665(in)S
1745(selecting)S
2025(routes)S
2225(and)S
2353(that)S
2485(policy)S
2689(server)S
2889(could)S
577 2868(include)U
813(the)S
925(credential)S
1233(along)S
1417(with)S
1569(the)S
1681(policy)S
1885(route)S
2057(option.)S
727 2976(Policy)U
935(gateways)S
1227(could)S
1411(verify)S
1607(that)S
1739(DOE)S
1911(had)S
2039(granted)S
2279(permission)S
2619(to)S
2699(use)S
2819(the)S
2905 3060(y)U
577 3144(v)U
577 3060(BILLING)U
889(CODE)S
1109(to)S
1189(this)S
1317(subject)S
1545(and)S
1673(that)S
1805(the)S
1917(subject)S
2145(was)S
2281(af\256liated)S
2561(with)S
2713(DoE)S
2869(b)S
613 3144(erifying)U
865(the)S
977(seal)S
1113(on)S
1209(the)S
1321(credential)S
1629(and)S
1757(matching)S
2049(the)S
2161(included)S
2433(SUBJECT)S
2761(ID)S
2861(against)S
3129 3228(o)U
577 3312(p)U
577 3228(that)U
709(in)S
789(the)S
901(policy)S
1105(route.)S
1319(As)S
1423(above,)S
1637(it)S
1701(might)S
1893(not)S
2009(be)S
2101(feasible)S
2349(for)S
2457(every)S
2641(policy)S
2845(gateway)S
3109(t)S
613 3312(erform)U
833(this)S
961(independent)S
1337(veri\256cation)S
1689(prior)S
1853(to)S
1933(processing)S
2265(packets)S
2505(for)S
2613(the)S
2725(connection,)S
3087 3396(d)U
577 3480(c)U
577 3396(but)U
693(the)S
805(option)S
1013(would)S
1217(exist)S
1377(and)S
1505(post)S
1649(hoc)S
1777(auditing)S
2037(is)S
2109(feasible.)S
2399(These)S
2595(credentials)S
2931(shoul)S
609 3480(ontain)U
813(a)S
869(validity)S
1113(date)S
1257(range)S
1441(to)S
1521(constrain)S
1809(their)S
1965(lifetime,)S
2231(and)S
2359(some)S
2535(form)S
2699(of)S
2783(hot)S
2899(list)S
3001 3564(y)U
577 3648(s)U
577 3564(would)U
781(also)S
921(need)S
1081(to)S
1161(be)S
1253(maintained)S
1597(by)S
1693(each)S
1849(issuing)S
2077(domain)S
2317(and)S
2445(distributed)S
2777(to)S
2857(polic)S
605 3648(ervers)U
805(and)S
933(gateways)S
1225(to)S
1305(revoke)S
1525(credentials,)S
1879(e.g.,)S
2025(upon)S
2193(termination)S
2549(of)S
2633(af\256liation.)S
3047 3756(e)U
577 3840(u)U
727 3756(This)U
879(technique)S
1183(would)S
1387(reduce)S
1603(the)S
1715(level)S
1879(of)S
1963(trust)S
2115(accorded)S
2399(the)S
2511(policy)S
2715(server)S
2915(at)S
2991(th)S
613 3840(niversity)U
889(since)S
1061(it)S
1125(could)S
1309(not)S
1425(forge)S
1601(the)S
1713(credential.)S
2063(This)S
2215(binding)S
2459(does)S
2615(not)S
2731(ensure)S
2943(that)S
3075(the)S
0 F
48 Z
577 3981 M
8 22 0 0 16 0 0 18 PS16
1 F
72 Z
577 3924(subject)U
805(and)S
933(the)S
1045(source)S
1257(address)S
1497(are)S
1609(correctly)S
1889(paired.)S
2135(However,)S
2441(if)S
2509(the)S
2621(SUBJECT)S
2949(ID)S
0 F
48 Z
601 3981 M
8 22 0 0 16 0 0 18 PS16
625 3981 M
8 22 0 0 16 0 0 18 PS16
649 3981 M
8 22 0 0 16 0 0 18 PS16
673 3981 M
8 22 0 0 16 0 0 18 PS16
697 3981 M
8 22 0 0 16 0 0 18 PS16
721 3981 M
8 22 0 0 16 0 0 18 PS16
745 3981 M
8 22 0 0 16 0 0 18 PS16
769 3981 M
8 22 0 0 16 0 0 18 PS16
793 3981 M
8 22 0 0 16 0 0 18 PS16
817 3981 M
8 22 0 0 16 0 0 18 PS16
841 3981 M
8 22 0 0 16 0 0 18 PS16
865 3981 M
8 22 0 0 16 0 0 18 PS16
889 3981 M
8 22 0 0 16 0 0 18 PS16
913 3981 M
8 22 0 0 16 0 0 18 PS16
937 3981 M
8 22 0 0 16 0 0 18 PS16
961 3981 M
8 22 0 0 16 0 0 18 PS16
985 3981 M
8 22 0 0 16 0 0 18 PS16
1009 3981 M
8 22 0 0 16 0 0 18 PS16
1033 3981 M
8 22 0 0 16 0 0 18 PS16
1057 3981 M
8 22 0 0 16 0 0 18 PS16
1081 3981 M
8 22 0 0 16 0 0 18 PS16
1105 3981 M
8 22 0 0 16 0 0 18 PS16
1129 3981 M
8 22 0 0 16 0 0 18 PS16
1153 3981 M
8 22 0 0 16 0 0 18 PS16
1177 3981 M
8 22 0 0 16 0 0 18 PS16
1201 3981 M
8 22 0 0 16 0 0 18 PS16
1225 3981 M
8 22 0 0 16 0 0 18 PS16
1249 3981 M
8 22 0 0 16 0 0 18 PS16
1273 3981 M
8 22 0 0 16 0 0 18 PS16
1297 3981 M
8 22 0 0 16 0 0 18 PS16
1321 3981 M
8 22 0 0 16 0 0 18 PS16
1345 3981 M
8 22 0 0 16 0 0 18 PS16
1369 3981 M
8 22 0 0 16 0 0 18 PS16
1393 3981 M
8 22 0 0 16 0 0 18 PS16
1417 3981 M
8 22 0 0 16 0 0 18 PS16
1 F
742 4062(C)U
(lark)R
866(suggested)S
1073(that)S
1162(such)S
1268(codes)S
1395(might)S
1524(incorporate)S
1759(an)S
1822(AD)S
1910(identi\256er)S
2100(which)S
2235(would)S
2373(explicitl)S
2528(y)S
2570(establish)S
2755(the)S
2830(requisite)S
3011(binding.)S
577 4119(H)U
36 Z
706 4044(18)U
48 Z
612 4119(owever,)U
787(he)S
854(was)S
951(concerned)S
1169(that)S
1262(a)S
1305(strict)S
1422(requirement)S
1674(for)S
1752(a)S
1795(billing)S
1941(code)S
2053(to)S
2112(be)S
2179(bound)S
2321(to)S
2380(the)S
2459(initiati)S
2582(ng)S
2651(AD)S
2742(would)S
2883(unduly)S
3037(restrict)S
60 Z
577 4413(L)U
48 Z
577 4176(mobile)U
725(users.)S
60 Z
614 4413(einer)U
2932([Page)S
3089(28])S
EP
%%Page: ? 31
BP
1 F
72 Z
577 681(i)U
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
597 681(ndicates)U
857(that)S
989(the)S
1101(initiating)S
1385(domain)S
1625(is)S
1697(the)S
1809(certifying)S
2113(domain)S
2353(for)S
2461(the)S
2573(subject,)S
2819(then)S
2967(one)S
3103 765(f)U
577 849(t)U
577 765(must)U
741(ultimately)S
1057(rely)S
1193(on)S
1289(that)S
1421(domain)S
1661(to)S
1741(correctly)S
2021(maintain)S
2297(subject-address)S
2765(bindings.)S
3079(I)S
597 849(he)U
689(subject)S
917(is)S
989(foreign)S
1221(to)S
1301(the)S
1413(initiating)S
1697(domain)S
1937(\(as)S
2045(might)S
2237(be)S
2329(the)S
2441(case)S
2589(for)S
2697(a)S
2753(mobile)S
2977(user\),)S
577 1017(s)U
577 933(the)U
689(incremental)S
1053(assurance)S
1357(offered)S
1589(by)S
1685(independently)S
2117(veri\256able)S
2413(credentials)S
2749(seems)S
2949(fairly)S
605 1017(mall.)U
799(It)S
867(is)S
939(not)S
1055(clear)S
1219(what)S
1383(form)S
1547(of)S
1631(credential)S
1939(binding)S
2183(would)S
2387(be)S
2479(useful)S
2679(for)S
2787(mobile)S
3035 1101(y)U
577 1185(a)U
577 1101(users.)U
791(The)S
927(``home)S
1159(domain'')S
1447(for)S
1555(a)S
1611(mobile)S
1835(user)S
1979(could)S
2163(certify)S
2375(that)S
2507(he)S
2599(was)S
2735(temporaril)S
609 1185(ssociated)U
897(with)S
1049(another)S
1289(\(speci\256ed\))S
1617(domain,)S
1875(thus)S
2019(lending)S
2259(credence)S
2539(to)S
2619(a)S
2675(claim)S
2859(by)S
2955(the)S
577 1353(g)U
577 1269(initiating)U
861(domain)S
1101(that)S
1233(the)S
1345(``foreign'')S
1673(user)S
1817(was)S
1953(in)S
2033(residence.)S
2371(If)S
2443(the)S
2555(logistics)S
2819(of)S
613 1353(enerating)U
905(and)S
1033(transferring)S
1393(some)S
1569(sort)S
1701(of)S
1785(travel)S
1973(credential)S
2281(\(``hall)S
2485(pass''?\))S
2737(could)S
2921(be)S
3013(made)S
577 1521(F)U
577 1437(acceptable)U
905(to)S
985(users,)S
1175(this)S
1303(might)S
1495(prove)S
1683(to)S
1763(be)S
1855(a)S
1911(viable)S
2111(means)S
2319(of)S
2403(addressing)S
2735(this)S
2863(problem.)S
617 1521(or)U
701(these)S
873(credentials,)S
1227(even)S
1387(more)S
1559(than)S
1707(most,)S
1889(validity)S
2133(dates)S
2305(should)S
2521(be)S
2613(included)S
2885(to)S
2965(limit)S
60 Z
577 4413(L)U
72 Z
577 1605(their)U
733(lifetime.)S
60 Z
614 4413(einer)U
2932([Page)S
3089(29])S
EP
%%Page: ? 32
BP
3 F
84 Z
577 681(5)U
1 F
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
3 F
84 Z
619 681(.)U
696(Resource)S
1055(Sharing)S
72 Z
1429 837(s)U
577(Working)S
877(Group)S
1105(2)S
1165(Member)S
1 F
697 945(David)U
897(Clark)S
1081(\(Chair\))S
1993(MIT)S
2093 1029(e)U
697 1113(B)U
697 1029(Guy)U
845(Almes)S
1993(Ric)S
745 1113(ob)U
841(Braden)S
1993(USC-ISI)S
697 1281(J)U
697 1197(Scott)U
869(Brim)S
1993(Cornell)S
725 1281(on)U
821(Crowcroft)S
1993(University)S
2321(College)S
2569(London)S
697 1449(S)U
697 1365(Deborah)U
969(Estrin)S
1993(USC)S
737 1449(teve)U
881(Goldstein)S
1993(Mitre)S
697 1617(B)U
697 1533(Phill)U
857(Gross)S
1993(NRI)S
745 1617(ill)U
829(Jones)S
1993(NASA/Ames)S
697 1785(A)U
697 1701(Dan)U
841(Nessett)S
1993(NMFECC)S
749 1785(ri)U
817(Ollikainen)S
1993(RIACS)S
697 1953(T)U
697 1869(Mike)U
873(St.)S
975(Johns)S
1993(DCA)S
741 1953(ony)U
873(Villasenor)S
1993(NASA)S
2213(HQ)S
3 F
577 2133(5.1.)U
733(Introduction)S
1 F
727 2241(This)U
879(working)S
1143(group)S
1335(was)S
1471(asked)S
1659(to)S
1739(consider)S
2007(the)S
2119(question)S
2387(of)S
2471(mechanism)S
2823(necessary)S
577 2325(to)U
657(insure)S
857(``fair'')S
1077(sharing)S
1313(of)S
1397(resources,)S
1711(in)S
1791(particular)S
2091(bandwidth.)S
727 2433(The)U
863(group)S
1055(proposed,)S
1361(as)S
1445(a)S
1501(starting)S
1741(position,)S
2015(that)S
2147(to)S
2227(permit)S
2439(sharing)S
2675(of)S
2759(resources,)S
3137 2517(t)U
577 2601(b)U
577 2517(such)U
733(as)S
817(networks)S
1105(or)S
1189(links,)S
1371(among)S
1591(agencies)S
1863(\(for)S
1995(example\),)S
2305(the)S
2417(following)S
2721(questions)S
3017(mus)S
613 2601(e)U
669(answered.)S
577 2709(-)U
757(What)S
937(sorts)S
1097(of)S
1181(service)S
1409(classes)S
1633(will)S
1769(be)S
1861(required?)S
2181(Which)S
2397(are)S
2509(possible?)S
577 2925(-)U
577 2817(-)U
757(How)S
921(must)S
1085(the)S
1197(users)S
1369(of)S
1453(the)S
1565(resources)S
1861(be)S
1953(categorized?)S
757 2925(What)U
937(sort)S
1069(of)S
1153(accounting)S
1493(for)S
1601(the)S
1713(resources)S
2009(are)S
2121(required?)S
577 3141(-)U
577 3033(-)U
757(What)S
937(levels)S
1129(of)S
1213(assurance)S
1517(are)S
1629(required?)S
757 3141(How)U
921(global)S
1125(is)S
1197(the)S
1309(impact)S
1529(of)S
1613(various)S
1849(sorts)S
2009(of)S
2093(service)S
2321(classes?)S
2725 3249(y)U
577(-)S
757(What)S
937(management)S
1329(tools)S
1493(are)S
1605(required)S
1869(to)S
1949(control)S
2177(multi-agency)S
2581(polic)S
757 3333(mechanisms?)U
727 3441(T)U
(wo)R
883(ideas)S
1055(are)S
1167(central)S
1387(to)S
1467(the)S
1579(discussion:)S
1923(service)S
2151(class)S
2315(and)S
2443(category.)S
3 F
577 3597(5.2.)U
733(Service)S
981(Class)S
1 F
727 3705(The)U
863(idea)S
1007(of)S
1091(service)S
1319(class)S
1483(is)S
1555(that)S
1687(in)S
1767(order)S
1943(to)S
2023(provide)S
2267(a)S
2323(controlled)S
2639(sharing)S
2875(of)S
2959(a)S
3149 3789(t)U
577 3873(r)U
577 3789(resource,)U
863(it)S
927(is)S
999(necessary)S
1303(to)S
1383(de\256ne)S
1583(how)S
1731(the)S
1843(sharing)S
2079(will)S
2215(be)S
2307(measured.)S
2649(The)S
2785(measuremen)S
601 3873(epresents)U
893(a)S
949(way)S
1093(of)S
1177(specifying)S
1501(a)S
1557(service)S
1785(class.)S
3069 3981(n)U
577 4065(t)U
727 3981(In)U
811(the)S
923(workshop,)S
1249(most)S
1413(service)S
1641(classes)S
1865(related)S
2085(to)S
2165(policy)S
2369(concerns)S
2649(were)S
2813(de\256ned)S
3049(i)S
597 4065(erms)U
761(of)S
845(relative)S
1085(bandwidth.)S
1455(The)S
1591(following)S
1895(examples)S
2191(were)S
2355(often)S
2527(proposed:)S
60 Z
3149 4413(])U
577(Leiner)S
2932([Page)S
3089(30)S
EP
%%Page: ? 33
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
577 681(-)U
757(A)S
833(link)S
969(is)S
1041(shared)S
1253(by)S
1349(two)S
1481(\(or)S
1589(more\))S
1785(service)S
2013(classes,)S
2255(each)S
2411(of)S
2495(which)S
2695(gets)S
2835(a)S
757 765(guaranteed)U
1097(fraction)S
1345(of)S
1429(the)S
1541(link)S
1677(capacity)S
1941(under)S
2129(overload.)S
2935 873(t)U
577(-)S
757(A)S
833(link)S
969(is)S
1041(shared)S
1253(by)S
1349(two)S
1481(\(or)S
1589(more\))S
1785(service)S
2013(classes,)S
2255(some)S
2431(of)S
2515(which)S
2715(may)S
2863(no)S
757 957(interfere)U
1025(with)S
1177(others.)S
1419(That)S
1575(is,)S
1665(they)S
1813(are)S
1925(excluded)S
2209(from)S
2373(the)S
2485(resource)S
2753(if)S
2821(demand)S
3073(is)S
727 1149(A)U
757 1041(excessive.)U
779 1149(n)U
839(example)S
1107(of)S
1191(a)S
1247(service)S
1475(policy)S
1679(requirement)S
2051(not)S
2167(directly)S
2411(related)S
2631(to)S
2711(bandwidth)S
3039(is)S
577 1317(o)U
577 1233(mutual)U
801(aid:)S
933(two)S
1065(agencies)S
1337(that)S
1469(agree)S
1649(to)S
1729(carry)S
1901(the)S
2013(other's)S
2237(traf\256c)S
2433(if)S
2501(the)S
2613(resources)S
2909(of)S
2993(the)S
613 1317(ne)U
705(is)S
777(down.)S
1003(Half)S
1155(of)S
1239(the)S
1351(mechanism)S
1703(necessary)S
2007(to)S
2087(support)S
2327(this)S
2455(is)S
2527(easy:)S
2699(one)S
2827(could)S
3063 1401(e)U
577 1485(c)U
577 1401(de\256ne)U
777(a)S
833(service)S
1061(class)S
1225(for)S
1333(traf\256c)S
1529(belonging)S
1841(to)S
1921(the)S
2033(other)S
2205(agency,)S
2451(and)S
2579(de\256ne)S
2779(the)S
2891(servic)S
609 1485(onstraint)U
885(for)S
993(that)S
1125(class.)S
1331(The)S
1467(hard)S
1619(part)S
1755(of)S
1839(the)S
1951(mechanism)S
2303(is)S
2375(to)S
2455(de\256ne)S
2655(how)S
2803(the)S
2915(switch)S
577 1653(p)U
577 1569(is)U
649(to)S
729(know)S
913(that)S
1045(the)S
1157(other)S
1329(resource)S
1597(is)S
1669(down,)S
1871(so)S
1959(that)S
2091(the)S
2203(usage)S
2391(by)S
2487(that)S
2619(class)S
2783(should)S
2999(be)S
613 1653(ermitted.)U
727 1761(I)U
(n)R
811(the)S
923(discussion)S
1247(of)S
1331(service)S
1559(classes,)S
1801(the)S
1913(following)S
2217(comments)S
2537(arose:)S
2999 1869(r)U
577(-)S
757(Outside)S
1005(the)S
1117(arena)S
1297(of)S
1381(policy)S
1585(control,)S
1831(there)S
1999(are)S
2111(much)S
2295(broader)S
2539(requirements)S
2939(fo)S
757 1953(service)U
985(classes,)S
1227(in)S
1307(order)S
1483(to)S
1563(support)S
1803(new)S
1947(sorts)S
2107(of)S
2191(applications.)S
2605(For)S
2729(example,)S
3015(some)S
757 2121(`)U
757 2037(applications)U
1129(require)S
1357(control)S
1585(of)S
1669(delay.)S
1891(This)S
2043(broader)S
2287(problem)S
2551(is)S
2623(usually)S
2855(called)S
3051(the)S
781 2121(`Type)U
977(of)S
1061(Service'')S
1349(or)S
1433(TOS)S
1593(problem)S
1857(\(also)S
2021(called)S
2217(quality)S
2441(of)S
2525(service)S
2753(or)S
2837(QOS)S
3005(in)S
3057 2205(d)U
757 2289(m)U
757 2205(ISO\).)U
963(In)S
1047(this)S
1175(respect,)S
1421(the)S
1533(mechanism)S
1885(required)S
2149(of)S
2233(the)S
2345(switch)S
2557(for)S
2665(specifying)S
2989(an)S
813 2289(easuring)U
1081(the)S
1193(services)S
1449(classes)S
1673(is)S
1745(just)S
1873(a)S
1929(subset)S
2133(of)S
2217(that)S
2349(required)S
2613(for)S
2721(support)S
2961(of)S
577 2481(-)U
757 2373(multiple)U
1021(classes)S
1245(of)S
1329(service)S
1557(to)S
1637(support)S
1877(applications.)S
757 2481(Some)U
945(\(non-policy\))S
1329(examples)S
1625(of)S
1709(service)S
1937(classes)S
2161(are)S
2273(very)S
2425(dif\256cult)S
2677(to)S
2757(support,)S
3015(e.g.,)S
757 2649(b)U
757 2565(those)U
933(for)S
1041(real-time)S
1325(speech,)S
1563(or)S
1647(variable)S
1903(rate)S
2035(encoders)S
2315(\(that)S
2471(can)S
2595(adjust)S
2791(to)S
2871(changing)S
793 2649(andwidth)U
1085(allocation,)S
1411(but)S
1527(must)S
1691(KNOW)S
1939(what)S
2103(rate)S
2235(they)S
2383(are)S
2495(being)S
2679(offered\).)S
2949 2757(e)U
577(-)S
757(We)S
881(believe)S
1113(it)S
1177(is)S
1249(not)S
1365(dif\256cult)S
1617(to)S
1697(provide)S
1941(commitment)S
2329(of)S
2413(resources)S
2709(to)S
2789(simpl)S
757 2841(service)U
985(classes.)S
1251(For)S
1375(example,)S
1661(a)S
1717(gateway)S
1981(could)S
2165(be)S
2257(constructed)S
2613(that)S
2745(would)S
2949(take)S
757 3009(r)U
757 2925(packets)U
997(in)S
1077(two)S
1209(service)S
1437(classes,)S
1679(and)S
1807(ensure)S
2019(that)S
2151(under)S
2339(overload)S
2615(each)S
2771(class)S
781 3009(eceived)U
1025(equal)S
1205(access)S
1413(to)S
1493(a)S
1549(link.)S
1727(The)S
1863(problems)S
2155(in)S
2235(doing)S
2423(this)S
2551(are)S
2663(to)S
2743(control)S
2971(the)S
3095 3093(,)U
757 3177(a)U
757 3093(overhead)U
1045(in)S
1125(the)S
1237(gateway,)S
1519(which)S
1719(would)S
1923(have)S
2083(an)S
2175(impact)S
2395(on)S
2491(high-speed)S
2831(networks)S
789 3177(nd)U
885(to)S
965(understand)S
1305(the)S
1417(global)S
1621(impact)S
1841(of)S
1925(such)S
2081(guarantees)S
2413(\(see)S
2553(below\).)S
3 F
577 3441(5)U
1 F
577 3285(-)U
757(The)S
893(de\256nition)S
1193(of)S
1277(service)S
1505(classes)S
1729(must)S
1893(be)S
1985(understood)S
2329(globally.)S
3 F
613 3441(.3.)U
733(User)S
901(Categories)S
1 F
727 3549(I)U
(n)R
811(order)S
987(to)S
1067(ensure)S
1279(that)S
1411(some)S
1587(user)S
1731(receives)S
1991(some)S
2167(service,)S
2413(it)S
2477(is)S
2549(necessary)S
2853(to)S
2933(identify)S
3129 3633(n)U
577 3717(s)U
577 3633(the)U
689(packets)S
929(associated)S
1249(with)S
1401(that)S
1533(user.)S
1719(This)S
1871(is)S
1943(a)S
1999(very)S
2151(hard)S
2303(problem,)S
2585(perhaps)S
2833(harder)S
3041(tha)S
605 3717(upporting)U
909(reasonable)S
1241(service)S
1469(classes.)S
727 3825(C)U
(urrent)R
971(IP)S
1059(packets)S
1299(do)S
1395(not)S
1511(have)S
1671(user)S
1815(names)S
2023(in)S
2103(them,)S
2289(just)S
2417(source)S
2629(and)S
2757(destination)S
3127 3909(,)U
577 3993(o)U
577 3909(Internet)U
825(addresses.)S
1167(But)S
1295(a)S
1351(single)S
1547(machine)S
1815(might)S
2007(support)S
2247(users)S
2419(with)S
2571(different)S
2843(privileges)S
613 3993(r)U
661(a)S
717(user)S
861(wanting)S
1117(to)S
1197(use)S
1317(different)S
1589(privileges)S
1897(at)S
1973(different)S
2245(times.)S
2673 4101(:)U
60 Z
577 4413(L)U
72 Z
727 4101(In)U
811(the)S
923(discussion)S
1247(of)S
1331(user)S
1475(categories,)S
1809(the)S
1921(following)S
2225(points)S
2425(came)S
2601(up)S
60 Z
614 4413(einer)U
2932([Page)S
3089(31])S
EP
%%Page: ? 34
BP
1 F
72 Z
577 681(-)U
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
757 681(To)U
861(support)S
1101(the)S
1213(sorts)S
1373(of)S
1457(requirements)S
1857(that)S
1989(were)S
2153(offered)S
2385(as)S
2469(examples)S
2765(\(e.g.,)S
2935(put)S
3051(all)S
3111 765(g)U
757 849(i)U
757 765(NASA)U
977(packets)S
1217(in)S
1297(service)S
1525(class)S
1689(X\),)S
1807(it)S
1871(will)S
2007(be)S
2099(necessary)S
2403(to)S
2483(have)S
2643(some)S
2819(explicit)S
3059(ta)S
777 849(n)U
837(the)S
949(packet)S
1161(to)S
1241(indicate)S
1493(the)S
1605(packet)S
1817(category.)S
2131(This)S
2283(is)S
2355(a)S
2411(new)S
2555(IP)S
2643(level)S
2807(mechanism.)S
577 957(-)U
757(The)S
893(level)S
1057(of)S
1141(``user)S
1333(granularity'')S
1721(is)S
1793(not)S
1909(clear.)S
2115(Would)S
2335(one)S
2463(tag)S
2575(for)S
2683(all)S
2779(of)S
2863(NASA)S
3083(be)S
757 1041(suf\256cient,)U
1067(for)S
1175(example?)S
577 1149(-)U
757(It)S
825(might)S
1017(be)S
1109(necessary)S
1413(for)S
1521(a)S
1577(packet)S
1789(to)S
1869(carry)S
2041(more)S
2213(than)S
2361(one)S
2489(tag,)S
2619(to)S
2699(permit)S
2911(a)S
2967(user)S
757 1317(a)U
757 1233(with)U
909(multiple)S
1173(privileges)S
1481(to)S
1561(use)S
1681(them)S
1849(at)S
1925(the)S
2037(same)S
2209(time.)S
2403(Perhaps)S
2655(tags)S
2795(could)S
2979(be)S
789 1317(pproximate,)U
1159(and)S
1287(could)S
1471(resolve)S
1703(in)S
1783(different)S
2055(manners)S
2323(in)S
2403(different)S
2675(parts)S
2839(of)S
2923(the)S
3035(net.)S
577 1533(-)U
577 1425(-)U
757(The)S
893(level)S
1057(of)S
1141(trust)S
1293(needed)S
1521(for)S
1629(the)S
1741(tag)S
1853(is)S
1925(unclear.)S
757 1533(If)U
829(a)S
885(tag)S
997(is)S
1069(abused,)S
1311(the)S
1423(use)S
1543(must)S
1707(be)S
1799(traced)S
1999(back)S
2159(to)S
2239(an)S
2331(accountable)S
2699(entity,)S
2905(which)S
577 1725(-)U
757 1617(ought)U
945(to)S
1025(be)S
1117(a)S
1173(human.)S
757 1725(A)U
833(very)S
985(hard)S
1137(problem)S
1401(is)S
1473(multicast:)S
1781(one)S
1909(packet)S
2121(going)S
2309(down)S
2493(several)S
2721(paths)S
2897(that)S
3 F
577 1965(5)U
1 F
757 1809(might)U
949(require)S
1177(different)S
1449(user)S
1593(privileges.)S
3 F
613 1965(.4.)U
733(Additional)S
1085(Discussion)S
1 F
727 2073(T)U
(he)R
863(following)S
1167(comments)S
1487(were)S
1651(made)S
1831(about)S
2015(the)S
2127(other)S
2299(points)S
2499(in)S
2579(the)S
2691(list)S
2803(above.)S
3 F
577 2229(5.4.1.)U
787(Accounting)S
1163(for)S
1279(usage:)S
1 F
727 2337(A)U
803(clear)S
967(requirement)S
1339(was)S
1475(that)S
1607(the)S
1719(usage)S
1907(of)S
1991(resources)S
2287(by)S
2383(different)S
2655(user)S
2799(categories)S
577 2505(s)U
577 2421(be)U
669(accounted.)S
1027(However,)S
1333(the)S
1445(details)S
1657(of)S
1741(the)S
1853(requirement)S
2225(were)S
2389(not)S
2505(clear.)S
2711(It)S
2779(does)S
2935(not)S
605 2505(eem)U
749(too)S
865(hard)S
1017(to)S
1097(provide)S
1341(a)S
1397(simple)S
1613(measure)S
1877(of)S
1961(total)S
2113(bytes)S
2289(or)S
2373(packets)S
2613(used)S
2769(by)S
2865(each)S
2999 2589(s)U
577 2673(i)U
577 2589(class.)U
783(As)S
887(noted)S
1071(above,)S
1285(the)S
1397(hard)S
1549(part)S
1685(is)S
1757(de\256ning)S
2017(the)S
2129(classes,)S
2371(and)S
2499(inserting)S
2775(the)S
2887(clas)S
597 2673(nformation)U
941(into)S
1077(the)S
1189(packet.)S
727 2781(I)U
(f)R
799(a)S
855(more)S
1027(dynamic)S
1299(accounting)S
1639(for)S
1747(usage)S
1935(is)S
2007(required,)S
2289(then)S
2437(a)S
2493(mechanism)S
2845(can)S
2995 2865(y)U
577 2949(m)U
577 2865(probably)U
857(be)S
949(de\256ned)S
1185(to)S
1265(account)S
1513(for)S
1621(usage)S
1809(by)S
1905(any)S
2033(pre-de\256ned)S
2385(measure,)S
2667(but)S
2783(arbitrar)S
633 2949(easures)U
869(will)S
1005(be)S
1097(real)S
1229(hard.)S
3 F
1395 3105(:)U
577(5.4.2.)S
787(Levels)S
1007(of)S
1091(assurance)S
1 F
727 3213(There)U
919(seem)S
1091(to)S
1171(be)S
1263(two)S
1395(obvious)S
1647(levels)S
1839(of)S
1923(assurance)S
2227(as)S
2311(to)S
2391(enforcement)S
2775(of)S
2859(service)S
577 3405(-)U
577 3297(classes)U
801(and)S
929(user)S
1073(categories.)S
757 3405(Separation)U
1089(of)S
1173(traf\256c)S
1369(into)S
1505(classes,)S
1747(and)S
1875(enforcing)S
2175(and)S
2303(accounting)S
2643(for)S
2751(the)S
2863(usage)S
3051(of)S
3095 3489(g)U
757 3573(t)U
757 3489(each)U
913(class,)S
1095(will)S
1231(be)S
1323(performed)S
1647(properly)S
1915(so)S
2003(long)S
2155(as)S
2239(the)S
2351(switch)S
2563(elements)S
2843(belongin)S
777 3573(o)U
837(each)S
993(agency)S
1221(operate)S
1457(properly.)S
577 3681(-)U
757(Proper)S
973(separation)S
1293(and)S
1421(accounting)S
1761(must)S
1925(occur)S
2109(even)S
2269(if)S
2337(the)S
2449(switches)S
2721(of)S
2805(one)S
2933(agency)S
727 3873(T)U
757 3765(are)U
869(mis-programmed)S
1389(or)S
1473(malicious.)S
771 3873(he)U
863(latter)S
1035(would)S
1239(be)S
1331(required)S
1595(\(probably\))S
1923(in)S
2003(a)S
2059(network)S
2319(operating)S
2615(in)S
2695(hostile)S
3115 3957(l)U
577 4041(o)U
577 3957(circumstances;)U
1029(it)S
1093(corresponds)S
1465(to)S
1545(mechanisms)S
1925(to)S
2005(prevent)S
2245(denial)S
2445(of)S
2529(service.)S
2799(It)S
2867(is)S
2939(a)S
2995(leve)S
613 4041(f)U
661(assurance)S
965(that)S
1097(is)S
1169(hard)S
1321(to)S
1401(achieve.)S
727 4149(T)U
(he)R
863(former)S
1083(level)S
1247(of)S
1331(assurance)S
1635(is)S
1707(much)S
1891(easier.)S
2125(It)S
2193(corresponds)S
2565(roughly)S
2813(to)S
2893(the)S
3105 4233(e)U
60 Z
577 4413(L)U
72 Z
577 4233(operation)U
873(of)S
957(the)S
1069(Internet)S
1317(today.)S
1543(If)S
1615(one)S
1743(set)S
1847(of)S
1931(gateways)S
2223(is)S
2295(not)S
2411(operating)S
2707(properly,)S
2993(ther)S
60 Z
614 4413(einer)U
2932([Page)S
3089(32])S
EP
%%Page: ? 35
BP
1 F
72 Z
577 681(m)U
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
633 681(ay)U
725(be)S
817(bad)S
945(global)S
1149(effects)S
1365(that)S
1497(the)S
1609(other)S
1781(gateways)S
2073(cannot)S
2289(prevent.)S
2571(The)S
2707(problem)S
2971(is)S
577 849(h)U
577 765(cured,)U
779(not)S
895(by)S
991(robust)S
1195(dynamic)S
1467(algorithms,)S
1817(but)S
1933(by)S
2029(detection)S
2317(and)S
2445(correction)S
2761(\(e.g.,)S
2931(by)S
613 849(umans\))U
849(of)S
933(the)S
1045(problem.)S
727 957(F)U
(or)R
851(many)S
1035(circumstances,)S
1485(e.g.,)S
1631(conformance)S
2031(to)S
2111(OMB)S
2299(regulations,)S
2661(the)S
2773(weaker)S
3005(form)S
3115 1041(n)U
577 1125(a)U
577 1041(of)U
661(assurance)S
965(is)S
1037(probably)S
1317(suf\256cient.)S
1651(But)S
1779(DARPA,)S
2065(for)S
2173(example,)S
2459(expressed)S
2767(an)S
2859(interest)S
3095(i)S
609 1125(s)U
661(robust)S
865(an)S
957(assurance)S
1261(as)S
1345(possible.)S
3 F
577 1281(5.4.3.)U
787(Global)S
1019(effects:)S
1 F
727 1389(The)U
863(problem)S
1127(of)S
1211(global)S
1415(effects)S
1631(of)S
1715(policy)S
1919(is)S
1991(a)S
2047(very)S
2199(serious)S
2427(issue,)S
2613(the)S
2725(impact)S
2945(of)S
577 1473(which)U
777(does)S
933(not)S
1049(appear)S
1265(to)S
1345(be)S
1437(suf\256ciently)S
1785(appreciated.)S
727 1581(Certain)U
963(resource)S
1231(constraints,)S
1585(most)S
1749(obviously)S
2057(non-interference)S
2557(\(a)S
2637(service)S
2865(class)S
3029(that)S
577 1749(c)U
577 1665(is)U
649(excluded)S
933(when)S
1113(a)S
1169(resource)S
1437(is)S
1509(overloaded\),)S
1895(cannot)S
2111(be)S
2203(implemented)S
2603(except)S
2815(in)S
2895(the)S
609 1749(ontext)U
813(of)S
897(a)S
953(global)S
1157(routing)S
1389(algorithm)S
1693(that)S
1825(knows)S
2037(about)S
2221(the)S
2333(constraint.)S
3115 1857(t)U
577 1941(f)U
727 1857(The)U
863(problem)S
1127(is)S
1199(the)S
1311(following.)S
1657(At)S
1753(the)S
1865(moment,)S
2143(the)S
2255(Internet)S
2503(supports)S
2771(the)S
2883(idea)S
3027(tha)S
601 1941(or)U
685(any)S
813(destination)S
1153(address,)S
1411(there)S
1579(is)S
1651(one)S
1779(route)S
1951(out)S
2067(of)S
2151(a)S
2207(switch.)S
2461(If)S
2533(we)S
2641(now)S
2789(support)S
3029(two)S
577 2109(g)U
577 2025(service)U
805(classes)S
1029(going)S
1217(to)S
1297(that)S
1429(destination,)S
1787(then)S
1935(each)S
2091(will)S
2227(be)S
2319(sent)S
2459(by)S
2555(the)S
2667(same)S
2839(route,)S
613 2109(iven)U
761(the)S
873(current)S
1101(routing)S
1333(algorithm.)S
1679(If)S
1751(one)S
1879(of)S
1963(these)S
2135(service)S
2363(classes)S
2587(is)S
2659(now)S
2807(blocked)S
577 2277(r)U
577 2193(from)U
741(a)S
797(congested)S
1109(resource,)S
1395(there)S
1563(is)S
1635(no)S
1731(mechanism)S
2083(to)S
2163(reroute)S
2391(that)S
2523(class)S
2687(to)S
2767(another)S
601 2277(esource.)U
887(The)S
1023(result)S
1207(is)S
1279(that)S
1411(the)S
1523(service)S
1751(class)S
1915(is)S
1987(totally)S
2195(disabled.)S
3109 2385(t)U
577 2469(c)U
727 2385(In)U
811(other)S
983(words,)S
1201(today)S
1385(if)S
1453(a)S
1509(gateway)S
1773(makes)S
1981(a)S
2037(local)S
2201(decision)S
2465(to)S
2545(discriminate)S
2925(agains)S
609 2469(ertain)U
797(users,)S
987(those)S
1163(users)S
1335(perceive)S
1603(a)S
1659(global)S
1863(disruption)S
2179(of)S
2263(their)S
2419(service.)S
3051 2577(.)U
577 2661(W)U
727 2577(The)U
863(problem)S
1127(of)S
1211(propagating)S
1579(and)S
1707(responding)S
2051(to)S
2131(local)S
2295(controls)S
2551(is)S
2623(not)S
2739(impossible)S
645 2661(hile)U
777(this)S
905(section)S
1133(stresses)S
1377(the)S
1489(need)S
1649(to)S
1729(understand)S
2069(the)S
2181(problem,)S
2463(we)S
2571(believe)S
2803(that)S
3035 2745(o)U
577 2829(t)U
577 2745(solutions)U
861(exist.)S
1063(It)S
1131(will)S
1267(be)S
1359(necessary,)S
1681(however,)S
1971(to)S
2051(contemplate)S
2427(a)S
2483(major)S
2675(adjustment)S
3015(t)S
597 2829(he)U
689(current)S
917(philosophy)S
1261(of)S
1345(Internet)S
1593(routing.)S
1867(In)S
1951(particular,)S
2269(most)S
2433(of)S
2517(the)S
2629(promising)S
577 2913(approaches)U
925(are)S
1037(based)S
1225(on)S
1321(some)S
1497(form)S
1661(of)S
1745(source)S
1957(routing.)S
727 3021(Above)U
943(it)S
1007(was)S
1143(asserted)S
1399(that)S
1531(it)S
1595(was)S
1731(not)S
1847(dif\256cult)S
2099(to)S
2179(build)S
2351(a)S
2407(gateway)S
2671(that)S
2803(would)S
3007(make)S
577 3189(g)U
577 3105(simple)U
793(resource)S
1061(guarantees.)S
1435(The)S
1571(dif\256culty)S
1859(is)S
1931(propagating)S
2299(the)S
2411(knowledge)S
2751(of)S
2835(that)S
2967(local)S
613 3189(uarantee.)U
923(There)S
1115(are)S
1227(some)S
1403(guarantees)S
1735(that)S
1867(could)S
2051(be)S
2143(enforced)S
2419(in)S
2499(today's)S
2735(Internet)S
3105 3273(l)U
577 3357(s)U
577 3273(without)U
821(the)S
933(necessity)S
1221(of)S
1305(global)S
1509(knowledge.)S
1891(For)S
2015(example,)S
2301(if)S
2369(a)S
2425(gateway)S
2689(provided)S
2969(equa)S
605 3357(haring)U
813(of)S
897(a)S
953(link)S
1089(under)S
1277(overload)S
1553(to)S
1633(each)S
1789(of)S
1873(two)S
2005(classes,)S
2247(then)S
2395(the)S
2507(global)S
2711(impact)S
2931(would)S
577 3525(c)U
577 3441(be)U
669(that)S
801(of)S
885(a)S
941(link)S
1077(whose)S
1285(capacity)S
1549(changed)S
1813(by)S
1909(50%.)S
2107(A)S
2183(\257uctuation)S
2515(of)S
2599(this)S
2727(magnitude)S
609 3525(ould)U
761(not)S
877(be)S
969(globally)S
1229(distinguished)S
1637(from)S
1801(other)S
1973(current)S
2201(forms)S
2393(of)S
2477(congestion.)S
2855(So)S
2955(there)S
3095 3609(h)U
577 3693(a)U
577 3609(are)U
689(some)S
865(local)S
1029(controls)S
1285(that)S
1417(can)S
1541(be)S
1633(applied)S
1869(safely)S
2065(in)S
2145(today's)S
2381(Internet,)S
2647(and)S
2775(others)S
2975(\(suc)S
609 3693(s)U
661(non-interference\))S
1185(that)S
1317(can)S
1441(only)S
1593(be)S
1685(contemplated)S
2097(in)S
2177(the)S
2289(context)S
2525(of)S
2609(a)S
2665(global)S
60 Z
577 4413(L)U
72 Z
577 3777(architecture.)U
60 Z
614 4413(einer)U
2932([Page)S
3089(33])S
EP
%%Page: ? 36
BP
3 F
72 Z
577 681(5)U
1 F
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
3 F
72 Z
613 681(.5.)U
733(Conclusions)S
1 F
727 789(T)U
(he)R
863(problem)S
1127(of)S
1211(making)S
1451(a)S
1507(local)S
1671(modi\256cation)S
2059(to)S
2139(a)S
2195(gateway)S
2459(to)S
2539(enforce)S
2779(a)S
2835(bandwidth)S
577 873(usage)U
765(limit)S
925(to)S
1005(a)S
1061(identi\256ed)S
1357(category)S
1629(of)S
1713(users)S
1885(seemed)S
2125(reasonable.)S
727 981(Associating)U
1091(a)S
1147(user)S
1291(category)S
1563(with)S
1715(a)S
1771(packet)S
1983(is)S
2055(very)S
2207(hard.)S
2401(The)S
2537(actual)S
2733(requirements)S
3131 1065(t)U
577 1149(t)U
577 1065(are)U
689(not)S
805(clear)S
969(\(are)S
1105(one)S
1233(or)S
1317(several)S
1545(categories)S
1861(required,)S
2143(what)S
2307(is)S
2379(the)S
2491(level)S
2655(of)S
2739(assurance)S
3043(tha)S
597 1149(he)U
689(speci\256ed)S
969(category)S
1241(is)S
1313(legitimate,)S
1643(and)S
1771(so)S
1859(on\).)S
2021(In)S
2105(addition,)S
2383(the)S
2495(mechanism)S
2847(is)S
2919(not)S
577 1233(obvious.)U
871(This)S
1023(matter)S
1231(is)S
1303(addressed)S
1611(in)S
1691(the)S
1803(report)S
1999(of)S
2083(working)S
2347(group)S
2539(1.)S
727 1341(The)U
863(problem)S
1127(of)S
1211(level)S
1375(of)S
1459(assurance)S
1763(is)S
1835(also)S
1975(very)S
2127(hard,)S
2297(again)S
2477(because)S
2729(the)S
2841(actual)S
577 1425(requirement)U
949(is)S
1021(not)S
1137(clear.)S
727 1533(Accounting)U
1087(for)S
1195(usage)S
1383(is)S
1455(probably)S
1735(not)S
1851(too)S
1967(hard.)S
2887 1641(o)U
577 1725(c)U
727 1641(The)U
863(hardest)S
1095(problem)S
1359(is)S
1431(rede\256ning)S
1747(the)S
1859(routing)S
2091(algorithms)S
2423(of)S
2507(the)S
2619(Internet)S
2867(t)S
609 1725(orrectly)U
857(propagate)S
1165(and)S
1293(respond)S
1545(to)S
1625(the)S
1737(impact)S
1957(of)S
2041(local)S
2205(policy)S
2409(controls.)S
577 1941(-)U
727 1833(There)U
919(are)S
1031(several)S
1259(hard)S
1411(and)S
1539(interesting)S
1867(research)S
2131(questions:)S
757 1941(How)U
921(do)S
1017(service)S
1245(guarantees)S
1577(compose?)S
2865 2049(y)U
577(-)S
757(Is)S
833(it)S
897(possible)S
1157(to)S
1237(build)S
1409(multi-region)S
1793(systems)S
2045(that)S
2177(are)S
2289(resistant)S
2553(to)S
2633(attack)S
2829(b)S
757 2133(malicious)U
1061(third-party)S
1393(regions?)S
577 2241(-)U
757(How)S
921(could)S
1105(user)S
1249(categories)S
1565(be)S
1657(managed?)S
1997(Are)S
2129(they)S
2277(multi-valued,)S
2687(hierarchical)S
3051(or)S
577 2433(-)U
757 2325(\257at?)U
757 2433(How)U
921(can)S
1045(fault)S
1201(isolation)S
1473(and)S
1601(service)S
1829(assurance)S
2133(be)S
2225(performed?)S
2833 2541(e)U
577(-)S
757(What)S
937(is)S
1009(the)S
1121(relation)S
1365(between)S
1629(statistical)S
1925(resource)S
2193(allocation)S
2501(and)S
2629(possibl)S
757 2625(guarantees)U
1089(of)S
1173(access?)S
727 2733(T)U
(o)R
831(avoid)S
1015(solving)S
1251(too)S
1367(general)S
1603(a)S
1659(problem,)S
1941(several)S
2169(questions)S
2465(should)S
2681(be)S
2773(asked)S
2961(of)S
3045(the)S
577 2925(-)U
577 2817(agencies.)U
757 2925(What)U
937(level)S
1101(of)S
1185(assurance)S
1489(is)S
1561(required?)S
2081 3033(?)U
3 F
577 3189(5)U
1 F
577 3033(-)U
757(What)S
937(sort)S
1069(of)S
1153(user)S
1297(categories)S
1613(will)S
1749(be)S
1841(required)S
3 F
613 3189(.6.)U
733(Recommendations)S
1 F
727 3297(T)U
(he)R
863(group)S
1055(proposed)S
1343(a)S
1399(number)S
1643(of)S
1727(experiments)S
2103(and)S
2231(changes)S
2487(that)S
2619(could)S
2803(be)S
3047 3381(e)U
577 3465(c)U
577 3381(undertaken)U
921(at)S
997(once,)S
1175(to)S
1255(better)S
1443(understand)S
1783(the)S
1895(problems)S
2187(of)S
2271(policy)S
2475(routing)S
2707(and)S
2835(resourc)S
609 3465(ontrol,)U
823(and)S
951(to)S
1031(provide)S
1275(operational)S
1623(facilities)S
1895(toward)S
2119(these)S
2291(goals.)S
3053 3573(e)U
577 3657(u)U
727 3573(These)U
923(goals)S
1099(are)S
1211(organized)S
1519(in)S
1599(three)S
1767(categories,)S
2101(things)S
2301(that)S
2433(could)S
2617(be)S
2709(done)S
2873(at)S
2949(onc)S
613 3657(sing)U
757(existing)S
1009(tools,)S
1191(projects)S
1443(with)S
1595(a)S
1651(short)S
1819(time)S
1971(frame,)S
2181(to)S
2261(provide)S
2505(better)S
2693(capabilities)S
3045(and)S
60 Z
577 4413(L)U
72 Z
577 3741(understanding)U
1009(quickly,)S
1267(and)S
1395(\256nally,)S
1621(projects)S
1873(that)S
2005(would)S
2209(require)S
2437(longer)S
2645(to)S
2725(complete.)S
60 Z
614 4413(einer)U
2932([Page)S
3089(34])S
EP
%%Page: ? 37
BP
3 F
72 Z
577 681(5)U
1 F
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
3 F
72 Z
613 681(.6.1.)U
787(Instant)S
1031(projects)S
577 837(Statspy)U
1 F
727 945(Although)U
1023(source)S
1235(and)S
1363(destination)S
1703(addresses)S
2003(are)S
2115(not)S
2231(a)S
2287(precise)S
2515(indicator)S
2795(of)S
2879(service)S
577 1113(u)U
577 1029(class,)U
759(they)S
907(do)S
1003(provide)S
1247(much)S
1431(useful)S
1631(information.)S
2037(The)S
2173(so-called)S
2 F
2457(statspy)S
1 F
2681(tool)S
2817(has)S
2937(been)S
613 1113(sed)U
733(in)S
813(the)S
925(past)S
1065(to)S
1145(collect)S
1361(a)S
1417(matrix)S
1629(of)S
1713(traf\256c)S
1909(sorted)S
2109(by)S
2205(source/destination)S
2753(address.)S
3035(This)S
577 1281(a)U
577 1197(information)U
941(could)S
1125(be)S
1217(collected)S
1501(for)S
1609(shared)S
1821(links)S
1985(today)S
2169(to)S
2249(provide)S
2493(a)S
2549(\256rst)S
2685(cut)S
2797(at)S
609 1281(ccounting)U
917(for)S
1025(the)S
1137(resource.)S
3 F
577 1437(Route)U
785(\256ltering)S
1 F
727 1545(Route)U
923(\256ltering)S
1175(provides)S
1447(a)S
1503(way)S
1647(to)S
1727(instruct)S
1967(a)S
2023(gateway)S
2287(to)S
2367(believe)S
2599(only)S
2751(part)S
2887(of)S
2971(an)S
3115 1629(c)U
577 1713(o)U
577 1629(incoming)U
873(routing)S
1105(packet,)S
1335(or)S
1419(to)S
1499(change)S
1727(parts)S
1891(of)S
1975(that)S
2107(incoming)S
2403(data,)S
2565(e.g.,)S
2711(the)S
2823(cost)S
2963(metri)S
613 1713(f)U
661(a)S
717(proposed)S
1005(path.)S
1195(This)S
1347(capability,)S
1673(available)S
1957(in)S
2037(most)S
2201(commercial)S
2565(gateways)S
2857(and)S
2985(in)S
3065(the)S
577 1881(w)U
577 1797(gated)U
757(software)S
1029(for)S
1137(Unix,)S
1323(provides)S
1595(a)S
1651(way)S
1795(to)S
1875(control)S
2103(which)S
2303(destinations)S
2671(are)S
2783(reached)S
3031(by)S
629 1881(hich)U
777(paths.)S
995(It)S
1063(cannot)S
1279(separate)S
1539(service)S
1767(classes,)S
2009(but)S
2125(can)S
2249(be)S
2341(used)S
2497(for)S
2605(very)S
2757(rough)S
3 F
577 2121(5)U
1 F
577 1965(divisions)U
861(of)S
945(traf\256c)S
1141(based)S
1329(on)S
1425(destination)S
1765(address.)S
3 F
613 2121(.6.2.)U
787(Short-term)S
1155(experiments)S
1 F
727 2229(T)U
(hese)R
923(are)S
1035(experiments)S
1411(that)S
1543(could)S
1727(be)S
1819(undertaken)S
2163(at)S
2239(once,)S
2417(with)S
2569(the)S
2681(expectation)S
3037(that)S
577 2397(r)U
577 2313(they)U
725(would)S
929(yield)S
1097(results)S
1309(in)S
1389(the)S
1501(short)S
1669(term.)S
1867(They)S
2039(are)S
2151(not)S
2267(thought)S
2511(to)S
2591(contain)S
2827(high-risk)S
601 2397(esearch)U
841(questions.)S
1179(They)S
1351(might)S
1543(provide)S
1787(some)S
1963(increase)S
2223(in)S
2303(operational)S
2651(capabilities)S
3003(in)S
3 F
577 2637(S)U
1 F
577 2481(one)U
705(to)S
785(two)S
917(years.)S
3 F
617 2637(imple)U
813(resource)S
1101(guarantee)S
1 F
727 2745(A)U
803(gateway)S
1067(could)S
1251(be)S
1343(programmed)S
1735(to)S
1815(sort)S
1947(incoming)S
2243(packets)S
2483(into)S
2619(two)S
2751(service)S
577 2913(a)U
577 2829(classes)U
801(\(based)S
1013(on)S
1109(some)S
1285(simple)S
1501(if)S
1569(unrealistic)S
1893(characteristic)S
2301(of)S
2385(the)S
2497(packet,)S
2727(such)S
2883(as)S
609 2913(ddresses)U
877(or)S
961(TOS)S
1121(\257ags\),)S
1323(and)S
1451(then)S
1599(divide)S
1803(the)S
1915(use)S
2035(of)S
2119(a)S
2175(link)S
2311(fairly)S
2491(between)S
2755(these)S
2927(classes.)S
577 3081(o)U
577 2997(That)U
733(is,)S
823(in)S
903(underloaded)S
1283(conditions,)S
1625(each)S
1781(could)S
1965(operate)S
2201(without)S
2445(constraint,)S
2771(but)S
2887(in)S
613 3081(verload)U
853(each)S
1009(class)S
1173(would)S
1377(have)S
1537(a)S
1593(fair)S
1717(share)S
1893(of)S
1977(the)S
2089(link.)S
3083 3189(,)U
577 3273(a)U
727 3189(This)U
879(would)S
1083(be)S
1175(a)S
1231(\256rst)S
1367(demonstration)S
1803(of)S
1887(allocation)S
2195(of)S
2279(resources)S
2575(to)S
2655(service)S
2883(classes)S
609 3273(nd)U
705(would)S
909(provide)S
1153(a)S
1209(practical)S
1481(way)S
1625(to)S
1705(share)S
1881(a)S
1937(link.)S
3 F
577 3429(Observe)U
857(tagged)S
1085(packets)S
1 F
727 3537(Above,)U
961(it)S
1025(was)S
1161(noted)S
1345(that)S
1477(the)S
2 F
1589(statspy)S
1 F
1813(program)S
2081(could)S
2265(be)S
2357(used)S
2513(to)S
2593(count)S
2777(packets)S
577 3705(w)U
577 3621(based)U
765(on)S
861(source)S
1073(and)S
1201(destination)S
1541(addresses.)S
1883(One)S
2027(could)S
2211(de\256ne)S
2411(a)S
2467(simple)S
2683(IP)S
2771(option,)S
629 3705(hich)U
777(carried)S
1001(a)S
1057(user)S
1201(identi\256cation,)S
1623(and)S
1751(then)S
1899(use)S
2019(the)S
2131(same)S
2 F
2303(statspy)S
1 F
2527(to)S
2607(count)S
2791(these)S
3063 3789(f)U
577 3873(w)U
577 3789(packets.)U
859(A)S
935(simple)S
1151(use)S
1271(of)S
1355(this)S
1483(option)S
1691(would)S
1895(be)S
1987(to)S
2067(tag)S
2179(the)S
2291(packet)S
2503(with)S
2655(an)S
2747(indicator)S
3027(o)S
629 3873(hich)U
777(agency)S
1005(had)S
1133(``sponsored'')S
1545(the)S
1657(packet.)S
727 3981(P)U
(utting)R
959(a)S
1015(new)S
1159(IP)S
1247(option)S
1455(into)S
1591(a)S
1647(packet)S
1859(is)S
1931(not)S
2047(hard;)S
2219(some)S
2395(systems)S
2647(like)S
2779(Unix)S
2947(4.3)S
3115 4065(r)U
577 4149(v)U
577 4065(BSD)U
741(provide)S
985(the)S
1097(hooks)S
1293(to)S
1373(do)S
1469(this)S
1597(today.)S
1823(A)S
1899(simple)S
2115(and)S
2243(general)S
2479(way)S
2623(to)S
2703(\256nd)S
2839(the)S
2951(prope)S
613 4149(alue)U
757(of)S
841(the)S
953(option)S
1161(\256eld)S
1313(would)S
1517(be)S
1609(to)S
1689(implement)S
2021(a)S
2077(very)S
2229(simple)S
2445(form)S
2609(of)S
2693(``Policy)S
3085 4233(t)U
60 Z
577 4413(L)U
72 Z
577 4233(Server'',)U
855(which)S
1055(could)S
1239(be)S
1331(a)S
1387(user)S
1531(process)S
1771(on)S
1867(a)S
1923(Unix)S
2091(system.)S
2357(One)S
2501(would)S
2705(send)S
2861(a)S
2917(packe)S
60 Z
614 4413(einer)U
2932([Page)S
3089(35])S
EP
%%Page: ? 38
BP
1 F
72 Z
577 681(t)U
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
597 681(o)U
657(the)S
769(server)S
969(with)S
1121(the)S
1233(source)S
1445(and)S
1573(destination)S
1913(addresses,)S
2231(the)S
2343(name)S
2523(of)S
2607(the)S
2719(sponsoring)S
3057 765(h)U
577 849(w)U
577 765(agency,)U
823(and)S
951(other)S
1123(credentials.)S
1501(In)S
1585(return,)S
1799(one)S
1927(would)S
2131(get)S
2243(the)S
2355(suitable)S
2603(IP)S
2691(option,)S
2917(whic)S
629 849(ould)U
781(just)S
909(be)S
1001(inserted)S
1253(into)S
1389(the)S
1501(packet.)S
727 957(T)U
(his)R
879(would)S
1083(provide)S
1327(a)S
1383(more)S
1555(accurate)S
1819(accounting)S
2159(of)S
2243(shared)S
2455(resources,)S
2769(and)S
2897(a)S
2953(\256rst)S
3 F
577 1197(F)U
1 F
577 1041(demonstration)U
1013(of)S
1097(the)S
1209(concept)S
1457(of)S
1541(the)S
1653(policy)S
1857(server.)S
3 F
621 1197(ast)U
733(encryption)S
1089(of)S
1173(the)S
1293(policy)S
1501(information)S
1 F
727 1305(I)U
(n)R
811(order)S
987(to)S
1067(ensure)S
1279(that)S
1411(policy)S
1615(routes,)S
1833(authentications)S
2293(and)S
2421(so)S
2509(on)S
2605(are)S
2717(not)S
2833(forged,)S
3063(it)S
3113 1389(A)U
577 1473(d)U
577 1389(will)U
713(be)S
805(necessary)S
1109(to)S
1189(seal)S
1325(them)S
1493(in)S
1573(some)S
1749(way.)S
1935(The)S
2071(obvious)S
2323(technology)S
2667(is)S
2739(encryption.)S
613 1473(emonstration)U
1013(is)S
1085(needed)S
1313(of)S
1397(a)S
1453(sealing)S
1681(technique)S
1985(that)S
2117(runs)S
2265(at)S
2341(tolerable)S
2617(speeds.)S
2875(This)S
3 F
577 1713(D)U
1 F
577 1557(would)U
781(permit)S
993(the)S
1105(introduction)S
1481(of)S
1565(a)S
1621(high)S
1773(level)S
1937(of)S
2021(trust)S
2173(into)S
2309(the)S
2421(accounting.)S
3 F
629 1713(emonstration)U
1061(of)S
1145(``soft)S
1329(state'')S
1545(in)S
1629(gateway)S
1 F
727 1821(S)U
(everal)R
967(propositions)S
1347(for)S
1455(management)S
1847(of)S
1931(resources)S
2227(in)S
2307(gateways)S
2599(require)S
2827(that)S
2959(the)S
3079 1905(a)U
577 1989(o)U
577 1905(gateway)U
841(remember)S
1157(some)S
1333(aspect)S
1537(of)S
1621(the)S
1733(packet)S
1945(sequences)S
2261(passing)S
2501(through)S
2749(it.)S
2855(The)S
2991(ide)S
613 1989(f)U
661(``soft)S
841(state'')S
1045(has)S
1165(been)S
1325(proposed)S
1613(to)S
1693(capture)S
1929(the)S
2041(idea)S
2185(of)S
2269(cached)S
2493(information)S
2857(in)S
2937(the)S
577 2157(c)U
577 2073(gateway)U
841(which)S
1041(can)S
1165(be)S
1257(reconstituted)S
1653(if)S
1721(lost)S
1849(without)S
2093(terminating)S
2449(the)S
2561(higher)S
2769(level)S
609 2157(onnection.)U
727 2265(A)U
803(\256rst)S
939(project)S
1163(is)S
1235(to)S
1315(program)S
1583(a)S
1639(gateway)S
1903(to)S
1983(show)S
2159(that)S
2291(this)S
2419(sort)S
2551(of)S
2635(state)S
2791(can)S
2915(be)S
3013 2349(e)U
577 2433(c)U
577 2349(managed)U
861(effectively,)S
1211(with)S
1363(acceptable)S
1691(overhead.)S
2021(The)S
2157(information)S
2521(stored)S
2721(in)S
2801(the)S
2913(stat)S
609 2433(ould)U
761(initially)S
1009(be)S
1101(rather)S
1293(simple,)S
1527(for)S
1635(example)S
1903(the)S
2015(resource)S
2283(guarantees)S
2615(mentioned)S
2943(above,)S
3 F
577 2673(D)U
1 F
577 2517(or)U
661(logging)S
905(of)S
989(packet)S
1201(tags,)S
1359(or)S
1443(enforcement)S
1827(of)S
1911(source/destination)S
2459(access)S
2667(control.)S
3 F
629 2673(emonstration)U
1061(of)S
1145(policy)S
1353(routing)S
1605(with)S
1765(Loose)S
1969(Source)S
2205(Route)S
1 F
3041 2781(a)U
577 2865(\256)U
727 2781(Once)U
903(we)S
1011(have)S
1171(demonstrated)S
1583(the)S
1695(tagging)S
1935(of)S
2019(packets,)S
2277(we)S
2385(have)S
2545(all)S
2641(the)S
2753(pieces)S
2957(of)S
617 2865(rst)U
713(demonstration)S
1149(of)S
1233(policy)S
1437(routing.)S
1711(A)S
1787(Policy)S
1995(Server)S
2207(module)S
2447(can)S
2571(be)S
2663(programmed)S
3055(to)S
3113 2949(e)U
577 3033(S)U
577 2949(take)U
721(the)S
833(source/destination)S
1381(addresses,)S
1699(sponsor)S
1947(and)S
2075(so)S
2163(on,)S
2277(and)S
2405(receive)S
2637(in)S
2717(return)S
2913(a)S
2969(Loos)S
617 3033(ource)U
801(Route)S
997(IP)S
1085(option.)S
1335(This)S
1487(could)S
1671(be)S
1763(placed)S
1975(in)S
2055(the)S
2167(outgoing)S
2447(packet)S
2659(to)S
2739(achieve)S
3 F
577 3273(5)U
1 F
577 3117(controlled)U
893(routing)S
1125(of)S
1209(the)S
1321(packet.)S
3 F
613 3273(.6.3.)U
787(Longer-term)S
1207(experiments)S
1 F
727 3381(T)U
(he)R
863(following)S
1167(are)S
1279(experiments)S
1655(that)S
1787(have)S
1947(a)S
2003(longer)S
2211(term)S
2367(focus.)S
2589(They)S
2761(deal)S
2905(with)S
3135 3465(t)U
577 3549(s)U
577 3465(harder)U
785(problems,)S
1095(will)S
1231(take)S
1375(longer,)S
1601(and)S
1729(yield)S
1897(an)S
1989(increased)S
2285(functionality.)S
2719(They)S
2891(represen)S
605 3549(teps)U
745(that)S
877(can)S
1001(be)S
1093(undertaken)S
1437(now,)S
1603(and)S
1731(should)S
1947(be)S
2039(if)S
2107(increased)S
2403(functionality)S
2795(is)S
2867(to)S
2947(be)S
3 F
577 3789(D)U
1 F
577 3633(achieved)U
857(in)S
937(the)S
1049(next)S
1197(few)S
1329(years.)S
3 F
629 3789(e\256ne)U
797(and)S
937(support)S
1201(Policy)S
1413(Source)S
1649(Route)S
1857(option)S
1 F
3139 3897(.)U
577 3981(W)U
727 3897(Above)U
943(we)S
1051(described)S
1351(a)S
1407(simple)S
1623(demonstration)S
2059(based)S
2247(on)S
2343(the)S
2455(IP)S
2543(Loose)S
2743(Source)S
2967(Route)S
645 3981(hile)U
777(this)S
905(represents)S
1221(a)S
1277(useful)S
1477(\256rst)S
1613(demonstration,)S
2067(the)S
2179(LSR)S
2335(is)S
2407(not)S
2523(suited)S
2719(for)S
2827(real)S
2959(policy)S
577 4149(b)U
577 4065(routing,)U
827(because)S
1079(it)S
1143(binds)S
1323(the)S
1435(route)S
1607(to)S
1687(speci\256c)S
1931(gateways,)S
2241(which)S
2441(is)S
2513(too)S
2629(concrete,)S
2915(and)S
613 4149(ecause)U
829(it)S
893(has)S
1013(no)S
1109(\256elds)S
1289(to)S
1369(carry)S
1541(policy)S
1745(information.)S
60 Z
3149 4413(])U
577(Leiner)S
2932([Page)S
3089(36)S
EP
%%Page: ? 39
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
577 765(a)U
727 681(What)U
907(is)S
979(needed)S
1207(is)S
1279(a)S
1335(new)S
1479(IP)S
1567(option)S
1775(to)S
1855(de\256ne)S
2055(a)S
2111(Policy)S
2319(Source)S
2543(Route,)S
2757(a)S
2813(more)S
609 765(bstract)U
825(form)S
989(of)S
1073(source)S
1285(route)S
1457(containing)S
1785(policy)S
1989(information.)S
2395(There)S
2587(is)S
2659(general)S
3133 849(.)U
577 933(A)U
577 849(agreement)U
901(on)S
997(the)S
1109(need)S
1269(for)S
1377(this)S
1505(class)S
1669(of)S
1753(mechanism)S
2105(and)S
2233(the)S
2345(general)S
2581(form)S
2745(it)S
2809(would)S
3013(take)S
653 933(detailed)U
905(design)S
1117(is)S
1189(now)S
1337(needed.)S
3 F
577 1089(Tools)U
769(for)S
885(Synthesis)S
1197(of)S
1281(PSR)S
1 F
727 1197(The)U
863(Policy)S
1071(source)S
1283(route)S
1455(described)S
1755(above)S
1951(would)S
2155(be)S
2247(generated)S
2551(using)S
2731(information)S
577 1365(h)U
577 1281(exchanged)U
909(by)S
1005(the)S
1117(various)S
1353(Policy)S
1561(Servers)S
1801(and)S
1929(Policy)S
2137(Gateways.)S
2487(Algorithms)S
2839(for)S
2947(this)S
613 1365(ave)U
737(been)S
897(proposed;)S
1205(a)S
1261(concrete)S
1529(design)S
1741(should)S
1957(now)S
2105(be)S
2197(undertaken.)S
3 F
577 1521(De\256ne)U
797(protocols)S
1105(for)S
1221(control)S
1465(interaction)S
1 F
727 1629(To)U
831(provide)S
1075(the)S
1187(information)S
1551(for)S
1659(the)S
1771(routing)S
2003(algorithm,)S
2325(it)S
2389(will)S
2525(be)S
2617(necessary)S
2921(for)S
3125 1713(e)U
577 1797(e)U
577 1713(policy)U
781(gateways,)S
1091(policy)S
1295(servers)S
1523(and)S
1651(hosts)S
1823(to)S
1903(exchange)S
2199(information.)S
2605(Protocols)S
2901(for)S
3009(thes)S
609 1797(xchanges)U
901(must)S
1065(be)S
1157(designed.)S
3 F
1765 1953(s)U
577(Management)S
1005(Tools)S
1197(for)S
1313(Policy)S
1525(Control)S
1 F
727 2061(Current)U
971(experience)S
1307(teaches)S
1543(us)S
1631(that)S
1763(we)S
1871(must)S
2035(develop)S
2287(suitable)S
2535(management)S
2927(tools)S
3063 2145(f)U
577 2229(p)U
577 2145(for)U
685(a)S
741(mechanism)S
1093(at)S
1169(the)S
1281(time)S
1433(that)S
1565(we)S
1673(develop)S
1925(the)S
2037(mechanism)S
2389(itself.)S
2599(The)S
2735(problems)S
3027(o)S
613 2229(olicy)U
781(control)S
1009(are)S
1121(complex,)S
1411(and)S
1539(can)S
1663(be)S
1755(expected)S
2035(to)S
2115(lead)S
2259(to)S
2339(complex)S
2611(management)S
577 2397(m)U
577 2313(problems.)U
911(We)S
1035(must)S
1199(begin)S
1383(the)S
1495(design)S
1707(of)S
1791(a)S
1847(management)S
2239(architecture)S
2603(for)S
2711(policy)S
633 2397(echanisms.)U
3 F
577 2553(A)U
(nalysis)R
861(of)S
945(composability)S
1397(of)S
1481(local)S
1649(policies)S
1 F
727 2661(W)U
(e)R
851(assume)S
1087(that)S
1219(an)S
1311(administrator)S
1719(of)S
1803(a)S
1859(region)S
2067(will)S
2203(express)S
2443(policies)S
2691(re\257ecting)S
2987(the)S
577 2829(p)U
577 2745(local)U
741(concerns)S
1021(of)S
1105(that)S
1237(region.)S
1487(These)S
1683(various)S
1919(local)S
2083(policies)S
2331(must)S
2495(be)S
2587(composed)S
2903(to)S
613 2829(rovide)U
821(an)S
913(end)S
1041(to)S
1121(end)S
1249(service.)S
1519(It)S
1587(is)S
1659(necessary)S
1963(to)S
2043(ensure)S
2255(that)S
2387(the)S
2499(various)S
2735(local)S
2899(policies)S
577 2997(s)U
577 2913(do)U
673(indeed)S
889(combine)S
1161(to)S
1241(permit)S
1453(a)S
1509(reasonable)S
1841(global)S
2045(service.)S
2315(It)S
2383(would)S
2587(be)S
2679(nice)S
2823(to)S
2903(have)S
605 2997(ome)U
753(formal)S
969(understanding)S
1401(of)S
1485(what)S
1649(sorts)S
1809(of)S
1893(local)S
2057(policies)S
2305(can)S
2429(be)S
2521(composed,)S
2855(and)S
2983(some)S
3 F
577 3237(A)U
1 F
577 3081(tools)U
741(for)S
849(checking)S
1133(that)S
1265(the)S
1377(actual)S
1573(proposed)S
1861(local)S
2025(policies)S
2273(are)S
2385(reasonable.)S
3 F
629 3237(rchitecture)U
993(for)S
1109(signatures)S
1449(and)S
1589(sealing)S
1 F
727 3345(T)U
(o)R
831(ensure)S
1043(the)S
1155(needed)S
1383(level)S
1547(of)S
1631(assurance,)S
1953(an)S
2045(overall)S
2269(strategy)S
2521(must)S
2685(be)S
2777(devised)S
3021(to)S
577 3513(m)U
577 3429(de\256ne)U
777(the)S
889(trust)S
1041(that)S
1173(holds)S
1353(between)S
1617(the)S
1729(different)S
2001(components)S
2373(of)S
2457(the)S
2569(system,)S
2811(and)S
2939(the)S
633 3513(echanism)U
929(needed)S
1157(to)S
1237(insure)S
1437(the)S
1549(integrity)S
1817(of)S
1901(Policy)S
2109(Routes)S
2333(and)S
2461(related)S
2681(messages.)S
60 Z
3149 4413(])U
577(Leiner)S
2932([Page)S
3089(37)S
EP
%%Page: ? 40
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
3 F
72 Z
577 837(W)U
84 Z
577 681(6.)U
696(End-to-End)S
1150(Security)S
1476(Services)S
72 Z
649 837(orking)U
877(Group)S
1105(3)S
1165(Members)S
1 F
2109 945(T)U
697 1029(M)U
697 945(Dennis)U
925(Branstad)S
1205(\(Chair\))S
1993(NIS)S
761 1029(att)U
857(Bishop)S
1993(Dartmouth)S
697 1197(A)U
697 1113(Brian)U
881(Boesch)S
1993(DARPA)S
749 1197(nita)U
881(Holmgren)S
1993(Unisys)S
2265 1281(e)U
697 1365(J)U
697 1281(Barry)U
885(Howard)S
1993(Livermor)S
725 1365(ames)U
897(Morrill)S
1993(Sparta)S
2241 1449(C)U
697 1533(D)U
697 1449(Dan)U
841(Nessett)S
1993(NMFEC)S
749 1533(avid)U
897(Peters)S
1993(NASA)S
3 F
577 1797(6)U
1 F
697 1617(Steve)U
881(Wolff)S
1993(NSF)S
3 F
613 1797(.1.)U
733(Introduction)S
1 F
727 1905(T)U
(his)R
879(section)S
1107(deals)S
1279(with)S
1431(end-to-end)S
1767(security)S
2019(services)S
2275(for)S
2383(the)S
2495(National)S
2767(Research)S
3043 1989(,)U
577 2073(m)U
577 1989(Internet)U
825(\(NRI\).)S
1063(As)S
1167(described)S
1467(previously,)S
1813(the)S
1925(NRI)S
2073(consists)S
2325(of)S
2409(multiple,)S
2691(autonomous)S
633 2073(utually-suspicious,)U
1199(administrative)S
1635(domains.)S
1945(The)S
2081(NRI)S
2229(is)S
2301(an)S
2393(open)S
2557(environment)S
2945(with)S
3097(a)S
3123 2157(s)U
577 2241(a)U
577 2157(dynamic)U
849(security)S
1101(perimeter.)S
1443(Each)S
1611(domain)S
1851(may)S
1999(have)S
2159(its)S
2251(own)S
2399(security)S
2651(policy)S
2855(and)S
2983(offer)S
633 2241(unique)U
853(set)S
957(of)S
1041(security)S
1293(services)S
1549(to)S
1629(its)S
1721(own)S
1869(community.)S
2263(However,)S
2569(if)S
2637(secure)S
3131 2325(f)U
577 2409(h)U
577 2325(interoperation)U
1005(is)S
1077(desired)S
1309(across)S
1513(domains,)S
1799(these)S
1971(security)S
2223(policies)S
2471(must)S
2635(belong)S
2855(to)S
2935(a)S
2991(set)S
3095(o)S
613 2409(ierarchical,)U
959(consistent)S
1271(policies,)S
1537(and)S
1665(certain)S
1885(cross-domain)S
2297(agreements)S
2649(with)S
2801(respect)S
3029(to)S
577 2577(i)U
577 2493(security)U
829(are)S
941(needed.)S
1211(Working)S
1491(Group)S
1699(3)S
1759(focused)S
2007(on)S
2103(the)S
2215(nature)S
2419(and)S
2547(content)S
2783(of)S
2867(such)S
597 2577(nter-domain)U
973(cross-agreements.)S
727 2685(A)U
803(security)S
1055(architecture)S
1419(for)S
1527(the)S
1639(federally-funded)S
2143(research)S
2407(networks)S
2695(\(which)S
2919(make)S
3049 2769(y)U
577 2853(a)U
577 2769(up)U
673(the)S
785(NRI\))S
957(was)S
1093(proposed.)S
1423(The)S
1559(architecture)S
1923(consists)S
2175(of)S
2259(security)S
2511(sevices,)S
2761(where)S
2961(the)S
609 2853(re)U
689(needed,)S
935(example)S
1203(mechanisms,)S
1601(and)S
1729(the)S
1841(implied)S
2085(common)S
2361(technologies)S
2749(and)S
2877(common)S
577 2937(policies)U
825(necessary)S
1129(to)S
1209(support)S
1449(interoperation.)S
727 3045(First)U
883(we)S
991(offer)S
1155(the)S
1267(strawman)S
1571(architecture.)S
1977(Next,)S
2159(we)S
2267(introduce)S
2563(the)S
2675(concept)S
2923(of)S
3007(a)S
3037 3129(n)U
577 3213(d)U
577 3129(``security)U
877(domain'';)S
1185(we)S
1293(discuss)S
1525(multi-administrative)S
2137(higher-level)S
2509(security)S
2761(services)S
3017(i)S
613 3213(etail;)U
781(then,)S
947(using)S
1127(the)S
1239(workshop)S
1547(model)S
1751(\(of)S
1859(phase)S
2047(0-3)S
2167(technologies\),)S
2597(suggest)S
2837(a)S
2893(phased)S
3 F
577 3453(6)U
1 F
577 3297(approach)U
865(to)S
945(making)S
1185(the)S
1297(architecture)S
1661(a)S
1717(reality.)S
3 F
613 3453(.2.)U
733(Multi-administrative)S
1401(Security)S
1681(Architecture)S
1 F
3095 3561(t)U
577 3645(a)U
727 3561(We)U
851(de\256ne)S
1051(security)S
1303(to)S
1383(include,)S
1637(not)S
1753(only)S
1905(protection)S
2221(from)S
2385(unwanted)S
2689(disclosure,)S
3023(bu)S
609 3645(lso,)U
735(protection)S
1051(from)S
1215(unwanted)S
1519(modi\256cation)S
1907(and)S
2035(prevention)S
2367(of)S
2451(denial-of-service.)S
3005(This)S
577 3813(t)U
577 3729(working)U
841(group)S
1033(suggests)S
1301(that)S
1433(a)S
1489(small)S
1669(number)S
1913(of)S
1997(security)S
2249(services)S
2505(are)S
2617(necessary,)S
2939(and)S
597 3813(hat)U
709(these)S
881(security)S
1133(services)S
1389(need)S
1549(to)S
1629(be)S
1721(repeated)S
1989(at)S
2065(various)S
2301(layers)S
2497(in)S
2577(the)S
2689(protocol)S
2953(and)S
3051 3897(s)U
577 3981(s)U
577 3897(system)U
801(architecture.)S
1207(The)S
1343(following)S
1647(chart)S
1815(illustrates)S
2119(some)S
2295(candidate)S
2595(security)S
2847(service)S
605 3981(uch)U
733(as:)S
837(con\256dentiality,)S
1295(integrity,)S
1581(authentication,)S
2031(access)S
2239(control)S
2467(and)S
2595(service)S
2823(assurance;)S
577 4149(s)U
577 4065(suggests)U
845(placement)S
1165(in)S
1245(the)S
1357(architecture)S
1721(such)S
1877(as:)S
1981(user-level,)S
2307(host-level,)S
2633(gateway;)S
2917(and)S
605 4149(uggests)U
845(common)S
1121(technologies)S
1509(and)S
1637(common)S
1913(policies)S
2161(that)S
2293(are)S
2405(needed)S
2633(to)S
2713(support)S
2953(these)S
60 Z
577 4413(L)U
72 Z
577 4233(security)U
829(services)S
1085(across)S
1289(domains.)S
60 Z
614 4413(einer)U
2932([Page)S
3089(38])S
EP
%%Page: ? 41
BP
1 F
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
5 F
72 Z
624 609(_)U
637(_____________________________________________________________________)S
624 705(_)U
3 F
842 693(Security)U
1122(Services)S
1398(in)S
1482(a)S
1542(Multi-Administrative)S
2226(Domain)S
2494(Environment)S
5 F
637 705(_____________________________________________________________________)U
2 F
815 873(S)U
817 789(Security)U
1444(Example)S
2041(Common)S
2672(Common)S
851 873(ervices)U
1390(Mechanisms)S
1979(Technologies)S
2686(Policies)S
5 F
3085 885(_)U
624(_)S
637(____________________________________________________________________)S
1 F
60 Z
660 969(Origin)U
837(Authenticat)S
1119(ion)S
660 1053(-)U
(user/process)R
1319(secure-ID)S
1576(card)S
1930(Key)S
2050(Distribution)S
2520(global)S
2691(ID)S
2808 1137(s)U
660 1221(-)U
660 1137(-host)U
1319(certi\256cat)S
1531(es)S
1930(\(common)S
2181(protocols)S
2540(convention)S
680 1221(gateway)U
1319(certi\256cat)S
1531(es)S
1930(and)S
2037(standards\))S
2362 1305(s)U
660 1389(-)U
660 1305(-realtim)U
852(e/deferre)S
1067(d)S
1319(challenge)S
1551(/response)S
1930(Directory)S
2181(Service)S
700 1389(certi\256cat)U
912(es)S
1339(\(object)S
1527(registration\))S
660 1557(O)U
(rigin)R
837(Access)S
1027(Control)S
660 1641(-)U
(user)R
1319(login)S
1930(can)S
2034(we)S
2124(use)S
2224(policy)S
2520(global)S
2691(ID)S
2808 1725(s)U
660 1809(-)U
660 1725(-host)U
1319(visa)S
1950(servers?)S
2540(convention)S
680 1809(gateway)U
1319(policy)S
1490(routing)S
660 1977(O)U
(bject)R
841(Integrity)S
660 2061(-)U
(msg)R
1319(MACs)S
660 2145(-)U
(\256le)R
1319(MACs)S
1930(common)S
2161(format)S
2342(for)S
2520(global)S
2691(ID)S
2808 2229(s)U
660 2313(-)U
660 2229(-datagram)U
1319(MACs)S
1950(integrity)S
2175(labels)S
2540(convention)S
680 2313(connection)U
1319(MACs)S
660 2397(-)U
(\256eld)R
1319(MACs)S
660 2565(O)U
(bject)R
841(Con\256dentialit)S
1173(y)S
1930(Encryption-)S
2520(Key)S
2640(Distribution)S
1339 2649(protected)U
1584(wire)S
1930(\(common)S
2181(protocols)S
2540(agreeme)S
2745(nt)S
1930 2733(and)U
2037(standards\))S
3055 2901(k)U
660(Service)S
861(Assurance)S
1930(Byzantine)S
2195(Robust)S
2520(Multi-domain)S
2875(Networ)S
1339 2985(routing)U
1950(Management)S
2540(agreeme)S
2745(nt)S
5 F
72 Z
3085 2997(_)U
0 F
624 681 M
12 102 3 0 32 0 0 3 PS32
624 753 M
12 102 3 0 32 0 0 3 PS32
624 825 M
12 102 3 0 32 0 0 3 PS32
624 897 M
12 102 3 0 32 0 0 3 PS32
624 969 M
12 102 3 0 32 0 0 3 PS32
624 1041 M
12 102 3 0 32 0 0 3 PS32
624 1113 M
12 102 3 0 32 0 0 3 PS32
624 1185 M
12 102 3 0 32 0 0 3 PS32
624 1257 M
12 102 3 0 32 0 0 3 PS32
624 1329 M
12 102 3 0 32 0 0 3 PS32
624 1401 M
12 102 3 0 32 0 0 3 PS32
624 1473 M
12 102 3 0 32 0 0 3 PS32
624 1545 M
12 102 3 0 32 0 0 3 PS32
624 1617 M
12 102 3 0 32 0 0 3 PS32
624 1689 M
12 102 3 0 32 0 0 3 PS32
624 1761 M
12 102 3 0 32 0 0 3 PS32
624 1833 M
12 102 3 0 32 0 0 3 PS32
624 1905 M
12 102 3 0 32 0 0 3 PS32
624 1977 M
12 102 3 0 32 0 0 3 PS32
624 2049 M
12 102 3 0 32 0 0 3 PS32
624 2121 M
12 102 3 0 32 0 0 3 PS32
624 2193 M
12 102 3 0 32 0 0 3 PS32
624 2265 M
12 102 3 0 32 0 0 3 PS32
624 2337 M
12 102 3 0 32 0 0 3 PS32
624 2409 M
12 102 3 0 32 0 0 3 PS32
624 2481 M
12 102 3 0 32 0 0 3 PS32
624 2553 M
12 102 3 0 32 0 0 3 PS32
624 2625 M
12 102 3 0 32 0 0 3 PS32
624 2697 M
12 102 3 0 32 0 0 3 PS32
624 2769 M
12 102 3 0 32 0 0 3 PS32
624 2841 M
12 102 3 0 32 0 0 3 PS32
624 2913 M
12 102 3 0 32 0 0 3 PS32
624 2985 M
12 102 3 0 32 0 0 3 PS32
624 2997 M
12 102 3 0 32 0 0 3 PS32
5 F
624(_)S
637(____________________________________________________________________)S
0 F
3121 2997 M
12 102 3 0 32 0 0 3 PS32
3121 2985 M
12 102 3 0 32 0 0 3 PS32
3121 2913 M
12 102 3 0 32 0 0 3 PS32
3121 2841 M
12 102 3 0 32 0 0 3 PS32
3121 2769 M
12 102 3 0 32 0 0 3 PS32
3121 2697 M
12 102 3 0 32 0 0 3 PS32
3121 2625 M
12 102 3 0 32 0 0 3 PS32
3121 2553 M
12 102 3 0 32 0 0 3 PS32
3121 2481 M
12 102 3 0 32 0 0 3 PS32
3121 2409 M
12 102 3 0 32 0 0 3 PS32
3121 2337 M
12 102 3 0 32 0 0 3 PS32
3121 2265 M
12 102 3 0 32 0 0 3 PS32
3121 2193 M
12 102 3 0 32 0 0 3 PS32
3121 2121 M
12 102 3 0 32 0 0 3 PS32
3121 2049 M
12 102 3 0 32 0 0 3 PS32
3121 1977 M
12 102 3 0 32 0 0 3 PS32
3121 1905 M
12 102 3 0 32 0 0 3 PS32
3121 1833 M
12 102 3 0 32 0 0 3 PS32
3121 1761 M
12 102 3 0 32 0 0 3 PS32
3121 1689 M
12 102 3 0 32 0 0 3 PS32
3121 1617 M
12 102 3 0 32 0 0 3 PS32
3121 1545 M
12 102 3 0 32 0 0 3 PS32
3121 1473 M
12 102 3 0 32 0 0 3 PS32
3121 1401 M
12 102 3 0 32 0 0 3 PS32
3121 1329 M
12 102 3 0 32 0 0 3 PS32
3121 1257 M
12 102 3 0 32 0 0 3 PS32
3121 1185 M
12 102 3 0 32 0 0 3 PS32
3121 1113 M
12 102 3 0 32 0 0 3 PS32
3121 1041 M
12 102 3 0 32 0 0 3 PS32
3121 969 M
12 102 3 0 32 0 0 3 PS32
3121 897 M
12 102 3 0 32 0 0 3 PS32
3121 825 M
12 102 3 0 32 0 0 3 PS32
3121 753 M
12 102 3 0 32 0 0 3 PS32
3121 681 M
12 102 3 0 32 0 0 3 PS32
1 F
577 3213(S)U
727 3129(The)U
863(International)S
1255(Organization)S
1655(of)S
1739(Standards)S
2047(has)S
2167(recently)S
2423(adopted)S
2675(an)S
2767(International)S
617 3213(tandard)U
857(Security)S
1121(Architecture)S
1505(\(IS)S
1617(7498/2\))S
1865(that)S
1997(speci\256es)S
2269(\256ve)S
2401(security)S
2653(services)S
2909(in)S
2989(the)S
3063 3297(a)U
577 3381(s)U
577 3297(Open)U
757(Systems)S
1021(Interconnection)S
1497(model)S
1701(of)S
1785(computer)S
2081(networks.)S
2411(The)S
2547(\256ve)S
2679(services)S
2935(and)S
605 3381(hort)U
745(de\256nition)S
1045(of)S
1129(each)S
1285(are:)S
577 3489(-)U
757(Authentication:)S
1253(verifying)S
1541(the)S
1653(identity)S
1897(of)S
1981(communicating)S
2453(entities)S
2685(\(e.g.,)S
2855(computer,)S
577 3681(-)U
757 3573(software)U
1029(programs\))S
1349(in)S
1429(a)S
1485(network;)S
757 3681(Access)U
985(Control:)S
1273(restricting)S
1589(access)S
1797(to)S
1877(the)S
1989(information)S
2353(and)S
2481(proccessing)S
577 3873(-)U
757 3765(capabilities)U
1109(of)S
1193(a)S
1249(network)S
1509(to)S
1589(authorized)S
1917(entities;)S
757 3873(Con\256dentiality:)U
1257(preventing)S
1589(the)S
1701(unauthorized)S
2101(disclosure)S
2417(of)S
2501(information;)S
577 4089(-)U
577 3981(-)U
757(Integrity:)S
1073(detecting)S
1361(the)S
1473(unauthorized)S
1873(modi\256cation)S
2261(of)S
2345(information;)S
757 4089(Non-repudiation:)U
1301(preventing)S
1633(the)S
1745(denial)S
1945(of)S
2029(transmitting)S
2401(or)S
2485(receiving)S
2777(certain)S
60 Z
577 4413(L)U
72 Z
757 4173(information.)U
60 Z
614 4413(einer)U
2932([Page)S
3089(39])S
EP
%%Page: ? 42
BP
1 F
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
727 681(A)U
803(security)S
1055(label)S
1219(is)S
1291(security)S
1543(relevant)S
1799(information)S
2163(that)S
2295(is)S
2367(attached)S
2631(to)S
2711(other)S
2905 765(.)U
577 849(D)U
577 765(information)U
941(to)S
1021(assist)S
1201(in)S
1281(providing)S
1585(the)S
1697(above)S
1893(named)S
2109(security)S
2361(services.)S
2659(The)S
2795(U.S)S
629 849(epartment)U
941(of)S
1025(Defense)S
1285(\(DOD\))S
1513(has)S
1633(speci\256ed)S
1913(the)S
2025(format)S
2241(of)S
2325(a)S
2381(security)S
2633(label)S
2797(to)S
2877(be)S
2969(used)S
577 1017(p)U
577 933(at)U
653(the)S
765(Internet)S
1013(Protocol)S
1281(\(IP\))S
1417(layer)S
1585(of)S
1669(the)S
1781(DOD)S
1961(suite)S
2121(of)S
2205(protocols.)S
2539(This)S
2691(label)S
2855(is)S
2927(used)S
613 1017(rimarily)U
869(to)S
949(state)S
1105(the)S
1217(classi\256cation)S
1617(of)S
1701(the)S
1813(information)S
2177(in)S
2257(an)S
2349(IP)S
2437(packet.)S
2691(The)S
2827(security)S
3121 1101(k)U
577 1185(\()U
577 1101(mechanisms)U
957(then)S
1105(use)S
1225(the)S
1337(label)S
1501(to)S
1581(control)S
1809(the)S
1921(routing)S
2153(of)S
2237(the)S
2349(packet)S
2561(through)S
2809(the)S
2921(networ)S
601 1185(based)U
789(on)S
885(the)S
997(security)S
1249(of)S
1333(alternate)S
1605(routes\))S
1829(and)S
1957(the)S
2069(con\256dentiality)S
2509(protection)S
2825(to)S
2905(be)S
3 F
577 1425(6)U
1 F
577 1269(provided)U
857(to)S
937(the)S
1049(packet.)S
3 F
613 1425(.2.1.)U
787(Security)S
1067(Domains)S
1 F
727 1533(S)U
(ecurity)R
991(needs)S
1179(to)S
1259(be)S
1351(considered)S
1687(from)S
1851(an)S
1943(end-to-end)S
2279(perspective.)S
2673(Secure)S
3005 1617(A)U
577 1701(h)U
577 1617(interactions)U
937(across)S
1141(administrative)S
1577(domains,)S
1863(a)S
1919(security)S
2171(perimeter)S
2471(must)S
2635(be)S
2727(de\256ned.)S
613 1701(ierarchical)U
941(set)S
1045(of)S
1129(``security)S
1429(domains'')S
1745(could)S
1929(be)S
2021(established)S
2365(for)S
2473(the)S
2585(research)S
2849(internet.)S
577 1869(s)U
577 1785(A)U
653(global)S
857(security)S
1109(domain)S
1349(could)S
1533(then)S
1681(have)S
1841(a)S
1897(security)S
2149(policy)S
2353(and)S
2481(a)S
2537(set)S
2641(of)S
2725(security)S
605 1869(ervices)U
833(that)S
965(would)S
1169(be)S
1261(enforced)S
1537(and)S
1665(supported)S
1973(throughout)S
2313(the)S
2425(internet.)S
2711(Each)S
2879(sub-)S
577 2037(b)U
577 1953(security)U
829(domain)S
1069(could)S
1253(then)S
1401(have)S
1561(additional)S
1873(security)S
2125(services.)S
2423(Security)S
2687(interfaces)S
613 2037(etween)U
841(security)S
1093(domains)S
1361(would)S
1565(then)S
1713(be)S
1805(de\256ned.)S
2083(Rules)S
2271(for)S
2379(data)S
2523(to)S
2603(cross)S
2775(these)S
2997 2121(.)U
3 F
577 2229(6)U
1 F
577 2121(interfaces)U
881(would)S
1085(need)S
1245(to)S
1325(be)S
1417(established)S
1761(and)S
1889(enforced)S
2165(by)S
2261(``interdomain)S
2681(gateways'')S
3 F
613 2229(.3.)U
733(Higher-Level)S
1165(End-to-End)S
1553(Services)S
1 F
727 2337(I)U
(n)R
811(this)S
939(section,)S
1185(we)S
1293(discuss)S
1525(services)S
1781(in)S
1861(terms)S
2045(of)S
2129(``administrative)S
2613(domains)S
5 F
(")R
1 F
(,)R
2929(which)S
3097 2421(f)U
577 2505(p)U
577 2421(are)U
689(collections)S
1025(of)S
1109(machines)S
1405(and)S
1533(supporting)S
1865(hardware)S
2157(\(nets,)S
2339(etc.\))S
2489(controlled)S
2805(by)S
2901(a)S
2957(set)S
3061(o)S
613 2505(eople)U
793(who)S
941(have)S
1101(the)S
1213(\(recognized)S
1577(or)S
1661(assumed\))S
1957(power)S
2161(to)S
2241(choose)S
2465(what)S
2629(services)S
2885(that)S
3017(set)S
577 2673(a)U
577 2589(of)U
661(entities)S
893(will)S
1029(offer)S
1193(to)S
1273(other)S
1445(entities.)S
1719(We)S
1843(assume)S
2079(that)S
2211(entities)S
2443(in)S
2523(different)S
609 2673(dministrative)U
1013(domains)S
1281(are)S
1393(mutually)S
1673(suspicious)S
1997(but)S
2113(wish)S
2273(to)S
2353(provide)S
2597(some)S
2773(set)S
2877(of)S
3051 2757(n)U
577 2841(p)U
577 2757(services)U
833(to)S
913(each)S
1069(other.)S
1283(Note)S
1447(that)S
1579(the)S
1691(managers)S
1991(of)S
2075(each)S
2231(domain)S
2471(will)S
2607(de\256ne)S
2807(their)S
2963(ow)S
613 2841(olicies)U
825(towards)S
1077(the)S
1189(provision)S
1485(of)S
1569(services,)S
1843(so)S
1931(the)S
2043(entities)S
2275(must)S
2439(interact)S
2679(in)S
2759(light)S
2915(of)S
2999(the)S
577 3009(r)U
577 2925(relevant)U
833(policies.)S
1123(These)S
1319(policies)S
1567(must)S
1731(be)S
1823(consistent;)S
2155(however,)S
2445(this)S
2573(is)S
2645(not)S
2761(a)S
2817(great)S
601 3009(estriction,)U
911(since)S
1083(the)S
1195(policies)S
1443(will)S
1579(either)S
1767(be)S
1859(imposed)S
2127(by)S
2223(an)S
2315(authority)S
2599(encompassing)S
3031(both)S
577 3177(a)U
577 3093(administrative)U
1013(domains)S
1281(or)S
1365(\(more)S
1561(likely\))S
1773(by)S
1869(bi-)S
1973(or)S
2057(multi-)S
2257(lateral)S
2461(agreements)S
2813(or)S
609 3177(dherence)U
893(to)S
973(a)S
1029(mutually)S
1309(agreed)S
1525(upon)S
1693(standard.)S
3083 3285(,)U
577 3369(p)U
727 3285(We)U
851(describe)S
1115(a)S
1171(set)S
1275(of)S
1359(supportive)S
1687(services)S
1943(designed)S
2223(to)S
2303(provide)S
2547(the)S
2659(basis)S
2827(for)S
2935(other)S
613 3369(roductive)U
909(services)S
1165(visible)S
1381(to)S
1461(the)S
1573(users;)S
1765(we)S
1873(also)S
2013(suggest)S
2253(some)S
2429(useful)S
2629(productive)S
3053 3453(o)U
577 3537(t)U
577 3453(services.)U
875(The)S
1011(distinction)S
1339(between)S
1603(the)S
1715(two)S
1847(is)S
1919(crucial;)S
2159(supportive)S
2487(services,)S
2761(invisible)S
3033(t)S
597 3537(he)U
689(user,)S
851(are)S
963(essentially)S
1291(a)S
1347(set)S
1451(of)S
1535(library)S
1751(routines)S
2007(designed)S
2287(to)S
2367(provide)S
2611(security)S
2863(and)S
3063 3621(s)U
577 3705(m)U
577 3621(integrity)U
845(functions)S
1137(in)S
1217(a)S
1273(manner)S
1513(dictated)S
1765(by)S
1861(the)S
1973(administrative)S
2409(domain.)S
2691(Two)S
2847(domain)S
633 3705(ust)U
741(decree)S
953(some)S
1129(format)S
1345(for)S
1453(the)S
1565(interchange)S
1925(of)S
2009(information)S
2373(such)S
2529(as)S
2613(user)S
2757(IDs)S
2885(or)S
2969(\256le)S
3119 3789(e)U
577 3873(F)U
577 3789(checksums,)U
935(but)S
1051(\(for)S
1183(example\))S
1475(the)S
1587(NASA)S
1807(administrative)S
2243(domain)S
2483(may)S
2631(require)S
2859(use)S
2979(of)S
3063(th)S
617 3873(ile)U
713(Transfer)S
981(Protocol)S
1249(\(FTP\))S
1445(be)S
1537(allowed)S
1789(only)S
1941(to)S
2021(authenticated)S
2429(individual)S
2745(users,)S
3089 3957(d)U
577 4041(h)U
577 3957(whereas)U
837(the)S
949(Dartmouth)S
1285(administrative)S
1721(domain)S
1961(may)S
2109(allow)S
2293(any)S
2421(user)S
2565(from)S
2729(an)S
2821(authorize)S
613 4041(ost)U
721(to)S
801(access)S
1009(\256les)S
1153(using)S
1333(FTP.)S
1523(In)S
1607(this)S
1735(case,)S
1901(the)S
2013(supportive)S
2341(services)S
2597(\(authentication)S
3053(of)S
577 4209(w)U
577 4125(the)U
689(source)S
901(of)S
985(the)S
1097(FTP)S
1245(request\))S
1501(for)S
1609(NASA)S
1829(must)S
1993(support)S
2233(per-user)S
2493(authentication,)S
629 4209(hereas)U
837(Dartmouth)S
1173(need)S
1333(only)S
1485(support)S
1725(per-host)S
1985(authentication;)S
2437(however,)S
2727(if)S
2795(NASA)S
60 Z
3149 4413(])U
577(Leiner)S
2932([Page)S
3089(40)S
EP
%%Page: ? 43
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
577 765(a)U
577 681(allows)U
789(FTP)S
937(access)S
1145(by)S
1241(users)S
1413(in)S
1493(the)S
1605(Dartmouth)S
1941(administrative)S
2377(domain,)S
2635(some)S
609 765(ccommodation)U
1061(must)S
1225(be)S
1317(made)S
1497(by)S
1593(policy)S
1797(\(either)S
2009(by)S
2105(NASA,)S
2343(to)S
2423(accept)S
2631(per-host)S
3077 849(e)U
577 933(p)U
577 849(authorization)U
981(when)S
1161(users)S
1333(from)S
1497(entities)S
1729(at)S
1805(Dartmouth)S
2141(FTP,)S
2307(or)S
2391(by)S
2487(Dartmouth,)S
2841(to)S
2921(enabl)S
613 933(er-user)U
837(authentication)S
1269(when)S
1449(dealing)S
1685(with)S
1837(FTP)S
1985(requests)S
2245(to)S
2325(entities)S
2557(in)S
2637(the)S
2749(NASA)S
3091 1017(s)U
577 1101(w)U
577 1017(administrative)U
1013(domain\).)S
1319(Productive)S
1655(services)S
1911(simply)S
2131(request)S
2363(of)S
2447(the)S
2559(supportive)S
2887(service)S
629 1101(hether)U
833(some)S
1009(condition)S
1305(is)S
1377(met)S
1509(\(is)S
1605(the)S
1717(user)S
1861(allowed)S
2113(to)S
2193(use)S
2313(the)S
2425(service,)S
2671(has)S
2791(the)S
2903(\256le)S
3019(been)S
577 1185(altered)U
797(in)S
877(transit,)S
1099(etc.\))S
1249(and)S
1377(proceed)S
1629(on)S
1725(that)S
1857(basis.)S
727 1293(We)U
851(describe)S
1115(the)S
1227(supportive)S
1555(and)S
1683(productive)S
2015(services)S
2271(separately.)S
3 F
577 1449(6.3.1.)U
787(Supportive)S
1151(Services)S
1 F
727 1557(Supportive)U
1067(services)S
1323(supply)S
1539(the)S
1651(basis)S
1819(for)S
1927(an)S
2019(entity)S
2207(in)S
2287(one)S
2415(administrative)S
2851(domain)S
3119 1641(o)U
577 1725(t)U
577 1641(accessing)U
877(the)S
989(services)S
1245(supplied)S
1513(by)S
1609(another)S
1849(entity)S
2037(in)S
2117(another)S
2357(administrative)S
2793(domain.)S
3075(T)S
597 1725(his)U
705(end,)S
851(they)S
999(provide)S
1243(access)S
1451(control,)S
1697(authentication,)S
2147(integrity,)S
2433(and)S
2561(con\256dentiality)S
577 1809(checking.)U
727 1917(The)U
863(\256rst)S
999(class)S
1163(of)S
1247(supportive)S
1575(services)S
1831(is)S
1903(origin)S
2099(authentication.)S
2573(There)S
2765(are)S
2877(several)S
577 2085(m)U
577 2001(subclasses.)U
943(A)S
1019(policy)S
1223(may)S
1371(require)S
1599(per-process)S
1955(\(i.e.,)S
2109(per-user\))S
2393(authentication,)S
2843(using)S
633 2085(echanisms)U
957(such)S
1113(as)S
1197(SecureID\(tm\))S
1617(cards;)S
1813(this)S
1941(will)S
2077(require)S
2305(some)S
2481(common)S
2757(technology)S
577 2253(a)U
577 2169(for)U
685(key)S
813(distribution)S
1169(among)S
1389(the)S
1501(co-operating)S
1889(domains.)S
2199(A)S
2275(policy)S
2479(may)S
2627(require)S
609 2253(uthentication)U
1009(at)S
1085(the)S
1197(host)S
1341(or)S
1425(gateway)S
1689(level,)S
1871(using)S
2051(certi\256cates;)S
2407(here;)S
2575(a)S
2631(set)S
2735(of)S
2819(directory)S
577 2421(t)U
577 2337(services)U
833(such)S
989(as)S
1073(an)S
1165(object)S
1365(registry)S
1609(must)S
1773(be)S
1865(common)S
2141(to)S
2221(co-operating)S
2609(domains.)S
2919(Note)S
597 2421(hat)U
709(there)S
877(are)S
989(really)S
1177(two)S
1309(\257avors)S
1529(of)S
1613(authentication)S
2045(here,)S
2211(real-time)S
2495(authentication)S
2927(in)S
3089 2505(e)U
577 2589(p)U
577 2505(which)U
777(the)S
889(origin)S
1085(must)S
1249(identify)S
1497(itself)S
1665(immediately)S
2049(\(possibly)S
2337(using)S
2517(a)S
2573(challenge/respons)S
613 2589(rotocol\),)U
883(and)S
1011(deferred)S
1275(authentication,)S
1725(in)S
1805(which)S
2005(the)S
2117(origin)S
2313(need)S
2473(only)S
2625(identify)S
2873(itself)S
3041(at)S
3083 2673(f)U
577 2757(t)U
577 2673(some)U
753(time,)S
923(the)S
1035(identi\256cation)S
1439(being)S
1623(preserved)S
1927(using)S
2107(certi\256cates.)S
2485(Finally,)S
2731(regardless)S
3047(o)S
597 2757(he)U
689(type)S
837(of)S
921(origin)S
1117(authentication)S
1549(done,)S
1731(all)S
1827(administrative)S
2263(domains)S
2531(must)S
2695(have)S
2855(some)S
577 2841(global)U
781(object)S
981(identi\256cation)S
1385(convention)S
1729(that)S
1861(all)S
1957(domains)S
2225(respect.)S
727 2949(The)U
863(second)S
1087(class)S
1251(of)S
1335(supportive)S
1663(services)S
1919(provides)S
2191(access)S
2399(control)S
2627(based)S
2815(on)S
2911(origin.)S
577 3117(o)U
577 3033(For)U
701(example,)S
987(access)S
1195(to)S
1275(a)S
1331(user)S
1475(account)S
1723(might)S
1915(depend)S
2147(on)S
2243(the)S
2355(identity)S
2599(of)S
2683(the)S
2795(requester;)S
613 3117(n)U
673(4.2BSD)S
927(UNIX)S
1131(systems,)S
1401(access)S
1609(is)S
1681(controlled)S
1997(by)S
2093(the)S
2205(.rhosts)S
2419(\256le)S
2535(in)S
2615(the)S
2727(target)S
2915(account,)S
577 3285(T)U
577 3201(with)U
729(each)S
885(line)S
1017(of)S
1101(that)S
1233(\256le)S
1349(specifying)S
1673(a)S
1729(user/host)S
2013(pair)S
2149(authorized)S
2477(to)S
2557(access)S
2765(the)S
2877(account.)S
621 3285(he)U
713(system)S
937(assumes)S
1201(authentication)S
1633(has)S
1753(already)S
1989(been)S
2149(done,)S
2331(and)S
2459(controls)S
2715(access)S
2923(strictly)S
3109 3369(s)U
577 3453(s)U
577 3369(based)U
765(on)S
861(the)S
973(user/host)S
1257(names)S
1465(of)S
1549(the)S
1661(requestor.)S
1995(Similarly,)S
2305(if)S
2373(one)S
2501(host)S
2645(needed)S
2873(to)S
2953(acces)S
605 3453(ervices)U
833(on)S
929(another,)S
1187(it)S
1251(might)S
1443(present)S
1675(a)S
1731(VISA)S
1923(or)S
2007(a)S
2063(service-speci\256c)S
2535(certi\256cate)S
2843(entitling)S
3107(it)S
577 3621(s)U
577 3537(to)U
657(use)S
777(that)S
909(service.)S
1179(A)S
1255(policy)S
1459(might)S
1651(allow)S
1835(or)S
1919(deny)S
2083(access)S
2291(to)S
2371(networks)S
2659(based)S
2847(on)S
2943(the)S
605 3621(ource)U
789(or)S
873(destination)S
1213(of)S
1297(a)S
1353(packet)S
1565(\(policy)S
1793(routing\).)S
2091(In)S
2175(any)S
2303(case,)S
2469(as)S
2553(with)S
2705(the)S
2817(\256rst)S
2953(class,)S
3123 3705(e)U
577 3789(t)U
577 3705(this)U
705(class)S
869(of)S
953(supportive)S
1281(services)S
1537(requires)S
1793(a)S
1849(global)S
2053(object)S
2253(identi\256cation)S
2657(convention.)S
3043(Th)S
597 3789(echnology)U
921(which)S
1121(must)S
1285(be)S
1377(shared)S
1589(by)S
1685(administrative)S
2121(domains)S
2389(co-operating)S
2777(to)S
2857(provide)S
577 3873(these)U
749(services)S
1005(is)S
1077(not)S
1193(clear;)S
1377(perhaps)S
1625(policy)S
1829(servers)S
2057(would)S
2261(suf\256ce.)S
727 3981(The)U
863(third)S
1023(class)S
1187(of)S
1271(supportive)S
1599(services)S
1855(provides)S
2127(object)S
2327(integrity.)S
2637(A)S
2713(policy)S
2917(might)S
577 4149(v)U
577 4065(require)U
805(that)S
937(the)S
1049(integrity)S
1317(of)S
1401(any)S
1529(\(or)S
1637(all\))S
1757(of)S
1841(messages,)S
2155(\256les,)S
2317(datagrams,)S
2655(\256elds,)S
2853(etc.,)S
2997(be)S
613 4149(eri\256able,)U
891(possibly)S
1155(using)S
1335(MACs)S
1551(or)S
1635(other)S
1807(integrity)S
2075(checking)S
2359(mechanisms.)S
2781(In)S
2865(this)S
2993(case,)S
60 Z
577 4413(L)U
72 Z
577 4233(administrative)U
1013(domains)S
1281(enforcing)S
1581(this)S
1709(policy)S
1913(must)S
2077(agree)S
2257(on)S
2353(a)S
2409(common)S
2685(format)S
2901(for)S
60 Z
614 4413(einer)U
2932([Page)S
3089(41])S
EP
%%Page: ? 44
BP
1 F
72 Z
577 681(i)U
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
597 681(ntegrity)U
845(labels)S
1037(as)S
1121(well)S
1269(as)S
1353(a)S
1409(common)S
1685(set)S
1789(of)S
1873(mechanisms.)S
2885 789(r)U
577 873(e)U
727 789(The)U
863(fourth)S
1063(class)S
1227(of)S
1311(supportive)S
1639(services)S
1895(provides)S
2167(object)S
2367(con\256dentiality,)S
2825(fo)S
609 873(xample)U
845(by)S
941(encrypting)S
1273(\256les)S
1417(or)S
1501(protecting)S
1817(the)S
1929(network)S
2189(wires.)S
2411(If)S
2483(cryptography)S
2891(is)S
2963(used,)S
3129 957(n)U
577 1041(o)U
577 957(some)U
753(key)S
881(distribution)S
1237(mechanism)S
1589(must)S
1753(be)S
1845(agreed)S
2061(upon)S
2229(in)S
2309(order)S
2485(that)S
2617(keys)S
2773(for)S
2881(objects)S
3109(i)S
613 1041(ne)U
705(administrative)S
1141(domain)S
1381(be)S
1473(available)S
1757(to)S
1837(authorized)S
2165(clients)S
2377(in)S
2457(another.)S
2739(The)S
3033 1125(d)U
577 1209(s)U
577 1125(administrative)U
1013(domains)S
1281(must)S
1445(also)S
1585(agree)S
1765(on)S
1861(the)S
1973(encryption)S
2305(algorithms)S
2637(to)S
2717(be)S
2809(used)S
2965(an)S
605 1209(ome)U
753(common)S
1029(technology)S
1373(for)S
1481(making)S
1721(keys)S
1877(available)S
2161(is)S
2233(necessary.)S
3099 1317(a)U
577 1401(s)U
727 1317(The)U
863(\256fth)S
1007(class,)S
1189(non-repudiation,)S
1691(will)S
1827(simply)S
2047(ensure)S
2259(that)S
2391(a)S
2447(requestor)S
2739(\(or)S
2847(user\))S
3015(of)S
605 1401(ervice)U
805(cannot)S
1021(deny)S
1185(that)S
1317(that)S
1449(user)S
1593(made)S
1773(the)S
1885(request)S
2117(\(use\))S
2285(of)S
2369(the)S
2481(service.)S
2751(Again,)S
2969(the)S
3073 1485(s)U
577 1569(s)U
577 1485(administrative)U
1013(domains)S
1281(must)S
1445(agree)S
1625(on)S
1721(what)S
1885(types)S
2061(of)S
2145(requests)S
2405(are)S
2517(to)S
2597(be)S
2689(subject)S
2917(to)S
2997(thi)S
605 1569(ervice,)U
823(and)S
951(on)S
1047(the)S
1159(mechanism)S
1511(to)S
1591(be)S
1683(used)S
1839(for)S
1947(inter-domain)S
2343(non-repudiations.)S
2897(Further,)S
577 1737(a)U
577 1653(the)U
689(granularity)S
1029(of)S
1113(the)S
1225(non-repudiation)S
1709(records)S
1945(must)S
2109(be)S
2201(decided;)S
2469(this)S
2597(impinges)S
2885(on)S
609 1737(ccounting.)U
959(For)S
1083(example,)S
1369(NASA)S
1589(may)S
1737(bill)S
1857(on)S
1953(a)S
2009(per-project)S
2349(basis,)S
2535(so)S
2623(if)S
2691(a)S
2747(request)S
2979(came)S
577 1905(t)U
577 1821(from)U
741(Dartmouth)S
1077(and)S
1205(the)S
1317(non-repudiation)S
1801(mechanism)S
2153(ensured)S
2401(non-repudiation)S
2885(only)S
3037(in)S
597 1905(hat)U
709(the)S
821(request)S
1053(came)S
1229(from)S
1393(Dartmouth,)S
1747(the)S
1859(mechanism)S
2211(would)S
2415(be)S
2507(insuf\256cient)S
2855(for)S
3067 1989(t)U
577 2073(o)U
577 1989(NASA's)U
849(purpose;)S
1121(again,)S
1319(this)S
1447(must)S
1611(be)S
1703(settled)S
1915(by)S
2011(inter-domain)S
2407(multi-lateral)S
2787(agreemen)S
613 2073(r)U
661(decree)S
873(from)S
1037(a)S
1093(higher)S
1301(authority.)S
727 2181(I)U
(n)R
811(terms)S
995(of)S
1079(the)S
1191(four)S
1335(phases)S
1551(used)S
1707(to)S
1787(characterize)S
2159(the)S
2271(evolution)S
2567(of)S
2651(capability,)S
2977(at)S
3037 2265(\))U
577 2349(a)U
577 2265(phase)U
765(0)S
825(is)S
897(process)S
1137(\(user\))S
1329(authentication)S
1761(with)S
1913(passwords;)S
2257(at)S
2333(phase)S
2521(1)S
2581(is)S
2653(process)S
2893(\(user)S
609 2349(uthentication)U
1009(using)S
1189(other)S
1361(technologies)S
1749(such)S
1905(as)S
1989(challenge/response)S
2561(protocols;)S
2873(at)S
2949(phase)S
577 2517(i)U
577 2433(2)U
637(are)S
749(authentication)S
1181(using)S
1361(certi\256cates,)S
1715(integrity)S
1983(checking)S
2267(mechanisms)S
2647(such)S
2803(as)S
2887(MACs,)S
597 2517(ntegrity)U
845(labeling,)S
1119(methods)S
1387(for)S
1495(non-repudiation,)S
1997(and)S
2125(issues)S
2321(of)S
2405(key)S
2533(distribution)S
2889(and)S
577 2685(c)U
577 2601(management.)U
1011(Phase)S
1203(3)S
1263(issues)S
1459(include)S
1695(the)S
1807(use)S
1927(of)S
2011(VISAs)S
2231(for)S
2339(policy)S
2543(routine)S
2771(and)S
609 2685(erti\256cation)U
945(across)S
1149(peer)S
1297(administrative)S
1733(domains.)S
3 F
577 2841(6.3.2.)U
787(Productive)S
1147(Services)S
1 F
727 2949(Differing)U
1019(administrative)S
1455(domains)S
1723(provide)S
1967(varied)S
2171(services,)S
2445(but)S
2561(most)S
2725(will)S
2861(want)S
3025(to)S
577 3117(s)U
577 3033(allow)U
761(entities)S
993(at)S
1069(other)S
1241(administrative)S
1677(domains)S
1945(to)S
2025(use)S
2145(one)S
2273(or)S
2357(more)S
2529(of)S
2613(the)S
2725(following)S
605 3117(ervices)U
833(on)S
929(one)S
1057(or)S
1141(more)S
1313(entities)S
1545(in)S
1625(the)S
1737(local)S
1901(domain.)S
2183(This)S
2335(list)S
2447(is)S
2519(by)S
2615(no)S
2711(means)S
3117 3201(e)U
577 3285(s)U
577 3201(exhaustive;)U
929(we)S
1037(have)S
1197(simply)S
1417(discussed)S
1717(the)S
1829(more)S
2001(common)S
2277(currently-provided)S
2841(productiv)S
605 3285(ervices.)U
875(Undoubtedly,)S
1293(equally)S
1529(or)S
1613(more)S
1785(important)S
2089(ones)S
2245(will)S
2381(arise)S
2541(in)S
2621(the)S
2733(future,)S
2947(or)S
577 3369(inter-domain)U
973(policies)S
1221(and)S
1349(agreements)S
1701(will)S
1837(require)S
2065(new)S
2209(ones.)S
727 3477(Remote)U
975(job)S
1091(execution)S
1395(will)S
1531(be)S
1623(essential)S
1895(within)S
2103(domains)S
2371(and)S
2499(given)S
2683(the)S
2795(advances)S
3083(in)S
577 3645(i)U
577 3561(the)U
689(use)S
809(of)S
893(collaborative)S
1293(support)S
1533(services)S
1789(and)S
1917(distributed)S
2249(computations,)S
2679(important)S
2983(in)S
597 3645(nter-domain)U
973(support.)S
1255(Currently,)S
1573(mail)S
1725(transfer)S
1969(by)S
2065(far)S
2169(dominates)S
2489(this)S
2617(area,)S
2779(with)S
2931(\256le)S
577 3813(r)U
577 3729(transfers)U
849(coming)S
1089(a)S
1145(close)S
1317(second.)S
1583(Both)S
1747(raise)S
1907(issues)S
2103(of)S
2187(inter-domain)S
2583(use)S
2703(of)S
2787(remote)S
601 3813(esources)U
873(such)S
1029(as)S
1113(disk)S
1257(space)S
1441(and)S
1569(CPU)S
1733(time,)S
1903(as)S
1987(well)S
2135(as)S
2219(con\256dentiality)S
2659(and)S
2787(integrity)S
577 3981(a)U
577 3897(issues)U
773(\(can)S
921(only)S
1073(those)S
1249(authorized)S
1577(to)S
1657(read)S
1805(the)S
1917(\256le/mail)S
2181(do)S
2277(so?)S
2397(can)S
2521(the)S
2633(\256le/mail)S
2897(be)S
609 3981(ltered?\))U
877(Further,)S
1131(authentication)S
1563(of)S
1647(the)S
1759(sender/author)S
2175(\(was)S
2335(the)S
2447(letter)S
2619(telling)S
2827(me)S
2939(I)S
2987(got)S
577 4149(a)U
577 4065(my)U
693(raise)S
853(a)S
909(forgery?\))S
1201(and)S
1329(access)S
1537(control)S
1765(will)S
1901(also)S
2041(be)S
2133(essential.)S
2447(Some)S
2635(of)S
2719(these)S
2891(issues)S
609 4149(re)U
689(being)S
873(addressed)S
1181(by)S
1277(Steve)S
1461(Kent's)S
1677(privacy)S
1917(task)S
2057(force)S
2229(\(see)S
2369(RFC)S
2529(1113\),)S
2739(which)S
2939(has)S
60 Z
577 4413(L)U
72 Z
577 4233(been)U
737(examining)S
1065(secure)S
1273(and)S
1401(private)S
1625(electronic)S
1933(mail)S
2085(for)S
2193(some)S
2369(time.)S
2563(Finally,)S
2809(non-)S
60 Z
614 4413(einer)U
2932([Page)S
3089(42])S
EP
%%Page: ? 45
BP
1 F
72 Z
577 681(r)U
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
601 681(epudiation)U
929(of)S
1013(mail)S
1165(is)S
1237(important)S
1541(when)S
1721(electronic)S
2029(mail)S
2181(is)S
2253(used)S
2409(to)S
2489(make)S
2669(agreements)S
3021(or)S
577 849(E)U
577 765(convey)U
809(sensitive)S
1085(information)S
1449(that)S
1581(the)S
1693(sender)S
1905(may)S
2053(wish)S
2213(to)S
2293(deny)S
2457(having)S
2677(sent.)S
621 849(xtensions)U
917(to)S
997(more)S
1169(sophisticated)S
1569(forms)S
1761(of)S
1845(collaborative)S
2245(support,)S
2503(such)S
2659(as)S
2743(multi-media)S
577 1017(\()U
577 933(mail)U
729(or)S
813(electronic)S
1121(``whiteboards)S
5 F
(")R
1 F
(,)R
1593(will)S
1729(require)S
1957(the)S
2069(same)S
2241(level)S
2405(of)S
2489(supportive)S
2817(services.)S
601 1017(Note)U
765(that)S
897(the)S
1009(``support)S
5 F
(")R
1 F
1327(service)S
1555(is)S
1627(a)S
1683(production,)S
2037(rather)S
2229(than)S
2377(a)S
2433(``supportive'')S
2857(service.)S
577 1101(This)U
729(terminology)S
1105(is)S
1177(confusing,)S
1503(to)S
1583(say)S
1703(the)S
1815(least,)S
1989(but)S
2105(it)S
2169(is)S
2241(also)S
2381(standard.\))S
727 1209(Remote)U
975(access)S
1183(of)S
1267(computers)S
1591(\(e.g.,)S
1761(via)S
1873(Telnet\))S
2105(and)S
2233(distributed)S
2565(computations,)S
2995(the)S
3115 1293(t)U
577 1377(i)U
577 1293(other)U
749(forms)S
941(of)S
1025(remote)S
1249(job)S
1365(execution,)S
1687(will)S
1823(all)S
1919(require)S
2147(similar)S
2371(supportive)S
2699(services)S
2955(--)S
3027(tha)S
597 1377(s,)U
667(authentication,)S
1117(access)S
1325(control,)S
1571(integrity,)S
1857(and)S
1985(con\256dentiality.)S
2467(In)S
2551(all)S
2647(remote)S
2871(job)S
3065 1461(s)U
577 1545(m)U
577 1461(execution)U
881(schemes,)S
1167(if)S
1235(the)S
1347(execution)S
1651(is)S
1723(done)S
1887(inter-domain,)S
2301(the)S
2413(administrative)S
2849(domain)S
633 1545(ust)U
741(use)S
861(a)S
917(mutually)S
1197(agreed)S
1413(upon)S
1581(set)S
1685(of)S
1769(control)S
1997(protocols;)S
2309(this)S
2437(may)S
2585(be)S
2677(established)S
3067 1629(t)U
577 1713(o)U
577 1629(either)U
765(by)S
861(multi-lateral)S
1241(agreements)S
1593(or)S
1677(by)S
1773(some)S
1949(superior)S
2209(authority)S
2493(\(for)S
2625(example,)S
2911(an)S
3003(ac)S
613 1713(f)U
661(Congress)S
953(dictating)S
1229(a)S
1285(protocol)S
1549(to)S
1629(administratively-independent)S
2497(agencies.\))S
2879 1821(y)U
577 1905(s)U
727 1821(Remote)U
975(access)S
1183(comes)S
1391(in)S
1471(many)S
1655(forms;)S
1867(some)S
2043(computers)S
2367(will)S
2503(simply)S
2723(suppl)S
605 1905(ervices)U
833(such)S
989(as)S
1073(directory)S
1357(services)S
1613(and)S
1741(not)S
1857(allow)S
2041(other)S
2213(forms)S
2405(of)S
2489(remote)S
2713(access.)S
2963(These)S
577 2073(b)U
577 1989(services)U
833(will)S
969(require)S
1197(the)S
1309(usual)S
1485(supportive)S
1813(services,)S
2087(but)S
2203(will)S
2339(also)S
2479(require)S
2707(that)S
2839(the)S
2951(client)S
613 2073(e)U
669(able)S
813(to)S
893(authenticate)S
1265(the)S
1377(server)S
1577(so)S
1665(the)S
1777(client)S
1961(can)S
2085(be)S
2177(sure)S
2321(it)S
2385(is)S
2457(connected)S
2773(to)S
2853(the)S
2973 2157(e)U
577 2241(i)U
577 2157(intended)U
849(directory)S
1133(and)S
1261(the)S
1373(server)S
1573(can)S
1697(be)S
1789(sure)S
1933(the)S
2045(client)S
2229(is)S
2301(authorized)S
2629(to)S
2709(access)S
2917(th)S
597 2241(nformation.)U
983(Note)S
1147(that)S
1279(this)S
1407(need)S
1567(not)S
1683(be)S
1775(necessary)S
2079(for)S
2187(non-directory)S
2603(services,)S
2877(since)S
3049(if)S
577 2409(c)U
577 2325(access)U
785(is)S
857(made)S
1037(through)S
1285(a)S
1341(directory)S
1625(server)S
1825(and)S
1953(a)S
2009(session)S
2241(key)S
2369(is)S
2441(obtained,)S
2731(should)S
2947(the)S
609 2409(lient)U
761(then)S
909(access)S
1117(a)S
1173(bogus)S
1369(\(non-directory\))S
1833(server)S
2033(using)S
2213(the)S
2325(session)S
2557(key)S
2685(the)S
2797(bogus)S
2993(server)S
577 2577(b)U
577 2493(will)U
713(not)S
829(be)S
921(able)S
1065(to)S
1145(respond.)S
1439(Similarly,)S
1749(user)S
1893(authentication)S
2325(as)S
2409(a)S
2465(productive)S
2797(service)S
3025(will)S
613 2577(e)U
669(essential)S
941(when)S
1121(dealing)S
1357(with)S
1509(certi\256cates)S
1845(designed)S
2125(to)S
2205(be)S
2297(used)S
2453(in)S
2533(a)S
2589(productive)S
2921(service.)S
577 2745(a)U
577 2661(For)U
701(example,)S
987(the)S
1099(use)S
1219(of)S
1303(laptop)S
1507(computers)S
1831(will)S
1967(require)S
2195(the)S
2307(availability)S
2655(of)S
2739(user)S
609 2745(uthentication)U
1009(at)S
1085(this)S
1213(level.)S
727 2853(A)U
(nother)R
987(resource)S
1255(requiring)S
1543(distributed)S
1875(use)S
1995(of)S
2079(computers)S
2403(would)S
2607(be)S
2699(a)S
2755(``national'')S
577 3021(\256)U
577 2937(\256le)U
693(system,)S
935(allowing)S
1211(remote)S
1435(hosts)S
1607(throughout)S
1947(the)S
2059(country)S
2303(to)S
2383(access)S
2591(a)S
2647(shared)S
2859(set)S
2963(of)S
617 3021(les;)U
741(it)S
805(will)S
941(require)S
1169(not)S
1285(only)S
1437(mechanisms)S
1817(for)S
1925(the)S
2037(usual)S
2213(supportive)S
2541(services)S
2797(but)S
2913(also)S
3053(a)S
577 3189(w)U
577 3105(common)U
853(interface)S
1129(protocol)S
1393(and)S
1521(a)S
1577(common)S
1853(\256le)S
1969(exchange)S
2265(protocol)S
2529(to)S
2609(allow)S
2793(systems)S
629 3189(ith)U
729(very)S
881(different)S
1153(\256le)S
1269(accessing)S
1569(semantics)S
1877(to)S
1957(use)S
2077(the)S
2189(national)S
2445(\256le)S
2561(system.)S
3123 3297(,)U
577 3381(a)U
727 3297(Due)U
871(to)S
951(Of\256ce)S
1155(of)S
1239(Management)S
1639(and)S
1767(Budget)S
1999(\(OMB\))S
2235(constraints)S
2571(at)S
2647(the)S
2759(federal)S
2983(level)S
609 3381(nd)U
705(bookkeeping)S
1101(concerns)S
1381(in)S
1461(other)S
1633(agencies,)S
1923(businesses,)S
2269(and)S
2397(institutions,)S
2759(accounting)S
3085 3465(r)U
577 3549(e)U
577 3465(for)U
685(resources)S
981(used)S
1137(in)S
1217(and)S
1345(by)S
1441(other)S
1613(administrative)S
2049(domains)S
2317(will)S
2453(be)S
2545(required;)S
2829(since)S
3001(\(fo)S
609 3549(xample\))U
869(the)S
981(Dartmouth)S
1317(administrative)S
1753(domain)S
1993(will)S
2129(not)S
2245(trust)S
2397(the)S
2509(NASA)S
2729(administrative)S
577 3717(N)U
577 3633(domain)U
817(to)S
897(account)S
1145(for)S
1253(the)S
1365(use)S
1485(of)S
1569(electronic)S
1877(mail)S
2029(sent)S
2169(from)S
2333(Dartmouth)S
2669(to)S
2749(NASA,)S
2987(both)S
629 3717(ASA)U
797(and)S
925(Dartmouth)S
1261(would)S
1465(undoubtedly)S
1849(track)S
2017(such)S
2173(mail)S
2325(and)S
2453(check)S
2645(the)S
2757(relevant)S
3013(bills.)S
577 3801(Non-repudiation)U
1077(of)S
1161(use)S
1281(of)S
1365(service)S
1593(is)S
1665(at)S
1741(this)S
1869(point)S
2041(essential.)S
727 3909(Key)U
871(distribution)S
1227(in)S
1307(support)S
1547(of)S
1631(secure)S
1839(mail,)S
2009(authentication)S
2441(mechanisms,)S
2839(and)S
2967(other)S
577 4077(d)U
577 3993(services)U
833(will)S
969(require)S
1197(protocols)S
1489(and)S
1617(standards)S
1913(agreed)S
2129(to)S
2209(by)S
2305(different)S
2577(administrative)S
613 4077(omains.)U
887(Such)S
1055(services)S
1311(may)S
1459(be)S
1551(integrated)S
1863(with)S
2015(directory)S
2299(servers)S
2527(but)S
2643(this)S
2771(is)S
2843(a)S
2899(matter)S
3107(of)S
60 Z
577 4413(L)U
72 Z
577 4161(policy.)U
60 Z
614 4413(einer)U
2932([Page)S
3089(43])S
EP
%%Page: ? 46
BP
1 F
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
727 681(Finally,)U
973(as)S
1057(different)S
1329(administrative)S
1765(domains)S
2033(communicate,)S
2463(network)S
2723(management)S
3127 765(g)U
577 849(i)U
577 765(and)U
705(control)S
933(information)S
1297(will)S
1433(have)S
1593(to)S
1673(be)S
1765(passed)S
1981(between)S
2245(administrative)S
2681(domains,)S
2967(raisin)S
597 849(ssues)U
773(of)S
857(object)S
1057(integrity,)S
1343(con\256dentiality,)S
1801(and)S
1929(access)S
2137(control.)S
3009 957(t)U
577 1041(p)U
727 957(In)U
811(terms)S
995(of)S
1079(the)S
1191(four)S
1335(phases)S
1551(used)S
1707(to)S
1787(characterize)S
2159(the)S
2271(evolution)S
2567(of)S
2651(capability,)S
2977(a)S
613 1041(hase)U
765(0)S
825(is)S
897(mail)S
1049(relaying,)S
1327(transfer,)S
1589(and)S
1717(name)S
1897(domains.)S
2207(Phase)S
2399(1)S
2459(technologies)S
2847(are)S
2937 1125(d)U
577 1209(a)U
577 1125(authentication)U
1009(technologies)S
1397(such)S
1553(as)S
1637(secure-ID,)S
1963(challenge/)S
2283(response)S
2559(protocols,)S
2869(an)S
609 1209(uthentication)U
1009(servers)S
1237(such)S
1393(as)S
1477(Kerberos.)S
1807(On)S
1919(the)S
2031(border)S
2243(between)S
2507(phases)S
2723(1)S
2783(and)S
2911(2)S
2971(are)S
3115 1293(e)U
577 1377(m)U
577 1293(the)U
689(distributed)S
1021(white)S
1205(pages)S
1393(for)S
1501(the)S
1613(entire)S
1801(Internet.)S
2091(Phase)S
2283(2)S
2343(mechanisms)S
2723(such)S
2879(as)S
2963(secur)S
633 1377(ail)U
729(and)S
857(key)S
985(distribution)S
1341(and)S
1469(management)S
1861(mechanisms)S
2241(are)S
2353(currently)S
2637(under)S
3065 1461(,)U
577 1545(a)U
577 1461(development)U
973(by)S
1069(the)S
1181(IAB)S
1329(Task)S
1493(Force)S
1681(on)S
1777(Privacy;)S
2041(other)S
2213(phase)S
2401(2)S
2461(items)S
2641(are)S
2753(certi\256cates)S
609 1545(nd)U
705(security)S
957(of)S
1041(distributed)S
1373(directory)S
1657(servers)S
1885(\(white)S
2093(pages\).)S
2347(Distributed)S
2695(computation)S
3123 1629(e)U
577 1713(3)U
577 1629(protocols)U
869(and)S
997(controls)S
1253(for)S
1361(a)S
1417(national)S
1673(\256le)S
1789(system,)S
2031(and)S
2159(accounting)S
2499(mechanisms)S
2879(are)S
2991(phas)S
613 1713(.)U
679(Also)S
839(phase)S
1027(3)S
1087(are)S
1199(``\256rewalls'')S
1567(for)S
1675(end-to-end)S
2011(services,)S
2285(so)S
2373(that)S
2505(if)S
2573(the)S
2685(services)S
2941(fail)S
577 1881(s)U
577 1797(over)U
729(a)S
785(portion)S
1017(of)S
1101(the)S
1213(Internet)S
1461(the)S
1573(rest)S
1701(of)S
1785(the)S
1897(Internet)S
2145(may)S
2293(continue)S
2565(to)S
2645(rely)S
2781(on)S
2877(the)S
605 1881(ervice)U
805(being)S
989(correct)S
1213(and)S
1341(functional)S
1657(\(this)S
1809(would)S
2013(limit)S
2173(the)S
2285(damage)S
2533(of)S
2617(incidents)S
2901(like)S
3033(the)S
577 2049(b)U
577 1965(Internet)U
825(worm)S
1017(of)S
1101(November)S
1429(1988\))S
1621(and)S
1749(also)S
1889(the)S
2001(integrity)S
2269(of)S
2353(data)S
2497(across)S
2701(international)S
613 2049(orders,)U
835(since)S
1007(most)S
1171(nations)S
1403(restrict)S
1627(the)S
1739(transborder)S
2091(use)S
2211(of)S
2295(cryptographic)S
2719(algorithms)S
3051(that)S
577 2217(o)U
577 2133(can)U
701(be)S
793(used)S
949(for)S
1057(secrecy,)S
1315(which)S
1515(is)S
1587(true)S
1723(of)S
1807(the)S
1919(base)S
2071(algorithms)S
2403(used)S
2559(in)S
2639(the)S
2751(computation)S
613 2217(f)U
661(cryptographic)S
1085(checksums)S
1425(for)S
1533(integrity.)S
1843(Hence)S
2051(a)S
2107(solution)S
2363(requires)S
2619(the)S
2731(development)S
577 2385(s)U
577 2301(of)U
661(a)S
717(cryptographic)S
1141(algorithm)S
1445(that)S
1577(can)S
1701(be)S
1793(used)S
1949(for)S
2057(integrity)S
2325(and)S
2453(authenticity,)S
2835(but)S
2951(not)S
605 2385(ecrecy.)U
859(One)S
1003(possibility)S
1327(is)S
1399(to)S
1479(use)S
1599(zero-sum)S
1891(knowledge)S
2231(mechanisms)S
2611(to)S
2691(have)S
2851(a)S
2907(third)S
3041 2469(4)U
577 2553(\()U
577 2469(party)U
749(assure)S
953(integrity)S
1221(without)S
1465(secrecy,)S
1723(might)S
1915(be)S
2007(feasible.)S
2297(Such)S
2465(a)S
2521(solution)S
2777(is)S
2849(Phase)S
601 2553(very)U
753(long)S
905(range)S
1089(research\).)S
3 F
577 2709(6.4.)U
733(Projects)S
1 F
727 2817(The)U
863(above)S
1059(suggests)S
1327(several)S
1555(projects)S
1807(that)S
1939(the)S
2051(FRICC)S
2283(or)S
2367(some)S
2543(constituent)S
2883(agency)S
577 3009(-)U
577 2901(should)U
793(pursue:)S
757 3009(End-to-end)U
1105(private)S
1329(mail)S
1481(is)S
1553(currently)S
1837(in)S
1917(the)S
2029(experimental)S
2429(phase;)S
2637(encryption)S
2969(is)S
3031 3093(.)U
757 3177(T)U
757 3093(done)U
921(using)S
1101(the)S
1213(DES,)S
1391(and)S
1519(authentication)S
1951(involves)S
2219(certi\256cates)S
2555(built)S
2711(using)S
2891(RSA)S
801 3177(he)U
893(mechanism)S
1245(allows)S
1457(both)S
1609(privacy)S
1849(and)S
1977(integrity)S
2245(of)S
2329(sent)S
2469(mail.)S
2867 3285(,)U
577(-)S
757(A)S
833(national)S
1089(\256le)S
1205(system)S
1429(will)S
1565(raise)S
1725(issues)S
1921(of)S
2005(access)S
2213(control,)S
2459(authentication)S
757 3369(con\256dentiality,)U
1215(and)S
1343(integrity.)S
577 3477(-)U
757(Directory)S
1057(services)S
1313(should)S
1529(provide)S
1773(white)S
1957(pages)S
2145(for)S
2253(mail)S
2405(and)S
2533(multi-)S
2733(domain)S
2973(object)S
757 3645(l)U
757 3561(registration;)U
1129(issues)S
1325(to)S
1405(be)S
1497(addressed)S
1805(include)S
2041(registration)S
2393(of)S
2477(services,)S
2751(distributed)S
777 3645(ist)U
869(service,)S
1115(and)S
1243(authenticity.)S
577 3753(-)U
757(Finally,)S
1003(questions)S
1299(of)S
1383(multi-domain)S
1799(network)S
2059(monitoring)S
2403(and)S
2531(control)S
2759(are)S
2871(at)S
2947(the)S
3021 3837(,)U
757 3921(a)U
757 3837(heart)U
925(of)S
1009(interconnected)S
1457(network)S
1717(operations)S
2041(and)S
2169(raise)S
2329(issues)S
2525(of)S
2609(access)S
2817(control)S
789 3921(uthentication,)U
1207(and)S
1335(integrity.)S
727 4029(S)U
(ome)R
915(common)S
1191(or)S
1275(interoperable)S
1679(approach)S
1967(to)S
2047(authentication,)S
2497(integrity,)S
2783(and)S
2911(access)S
3121 4113(s)U
577 4197(m)U
577 4113(control,)U
823(as)S
907(well)S
1055(as)S
1139(the)S
1251(tools)S
1415(and)S
1543(services)S
1799(to)S
1879(be)S
1971(provided,)S
2269(is)S
2341(necessary;)S
2665(note)S
2813(the)S
2925(policie)S
633 4197(ay)U
725(differ)S
909(across)S
1113(administrative)S
1549(domains,)S
1835(but)S
1951(the)S
2063(mechanisms)S
2443(must)S
2607(be)S
2699(able)S
2843(to)S
60 Z
3149 4413(])U
577(Leiner)S
2932([Page)S
3089(44)S
EP
%%Page: ? 47
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
577 765(p)U
577 681(communicate)U
989(with)S
1141(one)S
1269(another.)S
1551(They)S
1723(need)S
1883(not)S
1999(rely)S
2135(on)S
2231(each)S
2387(other,)S
2577(however;)S
2869(that)S
3001(is)S
3073(a)S
613 765(olicy)U
781(issue.)S
991(Whether)S
1263(or)S
1347(not)S
1463(these)S
1635(inter-domain)S
2031(mechanisms)S
2411(can)S
2535(be)S
2627(built)S
2783(with)S
2915 849(e)U
577 933(p)U
577 849(common)U
853(facilities,)S
1143(the)S
1255(speci\256c)S
1499(protocol)S
1763(base)S
1915(\(such)S
2095(as)S
2179(OSI)S
2319(or)S
2403(TCP/IP\))S
2667(that)S
2799(thes)S
613 933(rojects)U
829(are)S
941(to)S
1021(be)S
1113(conducted,)S
1451(how)S
1599(results)S
1811(are)S
1923(to)S
2003(be)S
2095(transferred)S
2431(into)S
2567(GOSIP)S
2799(and)S
2927(a)S
3067 1017(,)U
577 1101(a)U
577 1017(European)U
877(context,)S
1131(the)S
1243(role)S
1379(of)S
1463(vendors)S
1715(as)S
1799(opposed)S
2063(to)S
2143(researchers,)S
2509(and)S
2637(the)S
2749(IETF,)S
2943(IAB)S
609 1101(nd)U
705(other)S
877(such)S
1033(organizations,)S
1463(and)S
1591(which)S
1791(agency)S
2019(or)S
2103(agencies)S
2375(shall)S
2535(take)S
2679(the)S
2791(lead,)S
2953(are)S
3065(all)S
577 1185(issues)U
773(that)S
905(can)S
1029(be)S
1121(resolved)S
1389(in)S
1469(the)S
1581(longer)S
1789(range.)S
727 1293(Notes:)U
939(Reference)S
1255(for)S
1363(the)S
1475(use)S
1595(of)S
1679(productive)S
2011(and)S
2139(supportive)S
2467(services)S
2723(is)S
2795(the)S
2907(ECMA)S
577 1461(S)U
577 1377(\(European)U
901(Computer)S
1213(Manufacturers)S
1657(Assoociation\))S
2081(Security)S
2345(in)S
2425(Open)S
2605(Systems,)S
2887(A)S
617 1461(ecurity)U
841(Framework)S
1197(document,)S
1523(ECMA)S
1755(TR/46,)S
1981(July)S
2125(1988.)S
60 Z
3149 4413(])U
577(Leiner)S
2932([Page)S
3089(45)S
EP
%%Page: ? 48
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
3 F
84 Z
577 681(7.)U
696(Workshop)S
1103(Attendees)S
1 F
72 Z
697 789(Guy)U
845(Almes)S
1993(Rice)S
2269 873(h)U
697 957(B)U
697 873(Matt)U
857(Bishop)S
1993(Dartmout)S
745 957(rian)U
881(Boesch)S
1993(DARPA)S
2321 1041(s)U
697 1125(D)U
697 1041(Bill)U
829(Bostwick)S
1993(Los)S
2125(Alamo)S
749 1125(ennis)U
925(Branstad)S
1993(NIST)S
2133 1209(t)U
697 1293(S)U
697 1209(Hans-Werner)U
1109(Braun)S
1993(Meri)S
737 1293(cott)U
869(Brim)S
1993(Cornell)S
697 1461(V)U
697 1377(Ross)U
861(Callon)S
1993(DEC)S
749 1461(int)U
849(Cerf)S
1993(NRI)S
697 1629(M)U
697 1545(David)U
897(Clark)S
1993(MIT)S
761 1629(ike)U
873(Corrigan)S
1993(DoD)S
2093 1713(L)U
697 1797(R)U
697 1713(Jon)U
821(Crowcroft)S
1993(UC)S
745 1797(ichard)U
949(desJardins)S
1993(CTA)S
2085 1881(C)U
697 1965(S)U
697 1881(Deborah)U
969(Estrin)S
1993(US)S
737 1965(teve)U
881(Goldstein)S
1993(Mitre)S
697 2133(T)U
697 2049(Phill)U
857(Gross)S
1993(NRI)S
741 2133(ony)U
873(Hain)S
1993(Livermore)S
697 2301(J)U
697 2217(Jim)U
825(Hart)S
1993(NASA)S
725 2301(ack)U
849(Haverty)S
1993(BBN)S
697 2469(A)U
697 2385(Dan)U
841(Hitchcock)S
1993(DoE)S
749 2469(nita)U
881(Holmgren)S
1993(Unisys)S
2265 2553(e)U
697 2637(B)U
697 2553(Barry)U
885(Howard)S
1993(Livermor)S
745 2637(ill)U
829(Jones)S
1993(NASA)S
697 2805(L)U
697 2721(Steve)U
881(Kent)S
1993(BBN)S
741 2805(arry)U
881(Landweber)S
1993(Wisconsin)S
2265 2889(e)U
697 2973(B)U
697 2889(Jim)U
825(Leighton)S
1993(Livermor)S
745 2973(arry)U
885(Leiner)S
1993(RIACS)S
697 3141(S)U
697 3057(Dan)U
841(Lynch)S
1993(ACE)S
737 3141(andy)U
901(Merola)S
1993(Lawrence)S
2301(Berkeley)S
2585(Labs)S
697 3309(R)U
697 3225(James)U
897(Morrill)S
1993(Sparta)S
745 3309(uss)U
861(Mundy)S
1993(DCA)S
2265 3393(e)U
697 3477(A)U
697 3393(Dan)U
841(Nessett)S
1993(Livermor)S
749 3477(ri)U
817(Ollikainen)S
1993(RIACS)S
697 3645(N)U
697 3561(David)U
897(Peters)S
1993(NASA)S
749 3645(achum)U
965(Shacham)S
1993(SRI)S
2165 3729(S)U
697 3813(M)U
697 3729(Henry)U
901(Sowizral)S
1993(RIAC)S
761 3813(ike)U
873(St.)S
975(Johns)S
1993(DCA)S
2121 3897(e)U
697 3981(T)U
697 3897(Paul)U
849(Tsuchiya)S
1993(Mitr)S
741 3981(ony)U
873(Villasenor)S
1993(NASA)S
697 4149(J)U
697 4065(Steve)U
881(Walker)S
1993(TIS)S
725 4149(il)U
789(Westcott)S
1993(BBN)S
60 Z
577 4413(L)U
72 Z
697 4233(Steve)U
881(Wolff)S
1993(NSF)S
60 Z
614 4413(einer)U
2932([Page)S
3089(46])S
EP
%%Page: ? 49
BP
1 F
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
697 681(Lixia)U
873(Zhang)S
1993(MIT)S
60 Z
3149 4413(])U
577(Leiner)S
2932([Page)S
3089(47)S
EP
%%Page: ? 50
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
577 789(A)U
3 F
84 Z
577 681(8.)U
696(Glossary)S
1 F
72 Z
629 789(R)U
1297(Autonomous)S
1693(Region)S
2261 897(l)U
577 1005(D)U
577 897(CLNP)U
1297(Connectionless)S
1761(Network)S
2037(Protoco)S
629 1005(ARPA)U
1297(Defense)S
1557(Advanced)S
1873(Research)S
2161(Projects)S
2417(Agency)S
577 1221(D)U
577 1113(DES)U
1297(Data)S
1457(Encryption)S
1801(Standard)S
629 1221(oE)U
1297(Department)S
1661(of)S
1745(Energy)S
2657 1329(n)U
577 1437(F)U
577 1329(ECMA)U
1297(European)S
1597(Computer)S
1909(Manufacturers)S
2353(Associatio)S
617 1437(RICC)U
1297(Federal)S
1537(Research)S
1825(Internet)S
2073(Coordinating)S
2477(Committee)S
577 1653(I)U
577 1545(GOSIP)U
1297(Government)S
1681(OSI)S
1821(Protocol)S
601 1653(ETF)U
1297(Internet)S
1545(Engineering)S
1921(Task)S
2085(Force)S
577 1869(I)U
577 1761(IP)U
1297(Internet)S
1545(Protocol)S
601 1869(SO)U
1297(International)S
1689(Standards)S
1997(Organization)S
577 2085(M)U
577 1977(LAN)U
1297(Local)S
1485(Area)S
1649(Network)S
641 2085(TA)U
1297(Mail)S
1457(Transfer)S
1725(Agent)S
2665 2193(n)U
577 2301(N)U
577 2193(NASA)U
1297(National)S
1569(Aeronautics)S
1941(and)S
2069(Space)S
2265(Administratio)S
629 2301(RI)U
1297(National)S
1569(Research)S
1857(Internet)S
2109 2409(n)U
577 2517(O)U
577 2409(NSF)U
1297(National)S
1569(Science)S
1817(Foundatio)S
629 2517(MB)U
1297(Of\256ce)S
1501(of)S
1585(Management)S
1985(and)S
2113(Budget)S
2885 2625(y)U
577 2733(P)U
577 2625(OSTP)U
1297(White)S
1497(House)S
1705(Of\256ce)S
1909(of)S
1993(Science)S
2241(and)S
2369(Technology)S
2737(Polic)S
617 2733(S)U
1297(Policy)S
1505(Server)S
577 2949(R)U
577 2841(PT)U
1297(Policy)S
1505(Term)S
625 2949(SA)U
1297(Rivest)S
1505(Shamir)S
1737(Algorithm)S
2085 3057(r)U
577 3165(T)U
577 3057(TAC)U
1297(Terminal)S
1585(Access)S
1813(Controlle)S
621 3165(OS)U
1297(Type)S
1469(of)S
1553(Service)S
1805 3273(e)U
60 Z
577 4413(L)U
72 Z
577 3273(QOS)U
1297(Quality)S
1537(of)S
1621(Servic)S
60 Z
614 4413(einer)U
2932([Page)S
3089(48])S
EP
%%Page: ? 51
BP
1 F
72 Z
577 681(S)U
60 Z
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
617 681(ecurity)U
841(Considerations)S
577 1017(A)U
793 849(None.)U
629 1017(uthor's)U
857(Address)S
1145 1185(r)U
793 1269(R)U
793 1185(Barry)U
981(Leine)S
841 1269(esearch)U
1081(Institute)S
1341(for)S
1449(Advanced)S
1765(Computer)S
2077(Science)S
793 1437(A)U
793 1353(National)U
1065(Aeronautics)S
1437(and)S
1565(Space)S
1761(Administration)S
845 1437(mes)U
985(Research)S
1273(Center)S
793 1605(M)U
793 1521(Mail)U
953(Stop)S
1109(230-5)S
857 1605(offett)U
1037(Field,)S
1227(CA)S
1351(94035)S
793 1941(E)U
793 1773(Phone:)U
1017(\(415\))S
1197(694-5402)S
837 1941(Mail:)U
1017(LEINER)S
5 F
(@)R
1 F
(RIACS.EDU)R
60 Z
577 4413(L)U
(einer)R
2932([Page)S
3089(49])S
EP
%%Page: ? 52
BP
1 F
60 Z
577(L)S
577 450(RFC)U
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
614 4413(einer)U
2932([Page)S
3089(50])S
EP
%%Page: ? 53
BP
1 F
72 Z
1499 177(TABLE)U
1755(OF)S
1871(CONTENTS)S
3029 345(Page)U
577 627(2)U
577 528(1.)U
679(Introduction)S
1063(.........................................................................................................)S
3133(1)S
613 627(.)U
679(Workshop)S
1003(Summary)S
1315(...........................................................................................)S
3133(3)S
3133 726(9)U
577 825(3)U
577 726(3.)U
679(Working)S
959(Group)S
1167(on)S
1263(Interconnection)S
1739(Policies)S
1999(.....................................................)S
613 825(.1.)U
733(Existing)S
997(Policies,)S
1267(Summarized)S
1657(........................................................................)S
3097(10)S
3133 924(1)U
577 1023(4)U
577 924(3.2.)U
733(Re\256ned)S
981(Policy)S
1189(Statements)S
1531(...............................................................................)S
3097(1)S
613 1023(.)U
679(Access)S
907(Control)S
1151(for)S
1259(Network)S
1535(Switching)S
1851(and)S
1979(Transmission)S
2391(Resources)S
2719(.............)S
3097(14)S
3133 1122(4)U
577 1221(4)U
577 1122(4.1.)U
733(Introduction)S
1117(......................................................................................................)S
3097(1)S
613 1221(.2.)U
733(Access)S
961(Control)S
1205(Policy)S
1413(Issues)S
1621(..........................................................................)S
3097(15)S
3133 1320(5)U
577 1419(4)U
577 1320(4.2.1.)U
787(Policies)S
1039(and)S
1167(Models)S
1423(.....................................................................................)S
3097(1)S
613 1419(.2.2.)U
787(Policy)S
995(Inputs)S
1207(.................................................................................................)S
3097(16)S
3133 1518(8)U
577 1617(4)U
577 1518(4.3.)U
733(Communication)S
1221(Scenarios)S
1531(...............................................................................)S
3097(1)S
613 1617(.3.1.)U
787(Connection-Oriented)S
1419(Communication)S
1909(..........................................................)S
3097(18)S
3133 1716(9)U
577 1815(4)U
577 1716(4.3.2.)U
787(Variations)S
1111(on)S
1207(Connection-Oriented)S
1839(Scenarios)S
2143(.............................................)S
3097(1)S
613 1815(.3.3.)U
787(Electronic)S
1107(Messaging)S
1459(...................................................................................)S
3097(20)S
3133 1914(1)U
577 2013(4)U
577 1914(4.3.4.)U
787(Transaction-Oriented)S
1427(Communication)S
1927(.........................................................)S
3097(2)S
613 2013(.3.5.)U
787(Multicast)S
1083(Communication)S
1585(............................................................................)S
3097(21)S
3133 2112(2)U
577 2211(4)U
577 2112(4.4.)U
733(Access)S
961(Control)S
1205(Architectures)S
1621(..........................................................................)S
3097(2)S
613 2211(.4.1.)U
787(Analogies)S
1103(with)S
1255(Operating)S
1567(System)S
1803(Security)S
2071(.................................................)S
3097(22)S
3133 2310(3)U
577 2409(4)U
577 2310(4.4.2.)U
787(Clark's)S
1023(Policy)S
1231(Routing)S
1487(Model)S
1699(and)S
1827(Access)S
2055(Control)S
2305(....................................)S
3097(2)S
613 2409(.4.3.)U
787(Clark's)S
1023(Architecture)S
1407(in)S
1487(Retrospect)S
1819(...............................................................)S
3097(26)S
3133 2508(7)U
577 2607(5)U
577 2508(4.4.4.)U
787(Trust)S
963(Implications)S
1347(and)S
1475(Possible)S
1739(Remedies)S
2053(..................................................)S
3097(2)S
613 2607(.)U
679(Resource)S
971(Sharing)S
1225(................................................................................................)S
3097(30)S
3133 2706(0)U
577 2805(5)U
577 2706(5.1.)U
733(Introduction)S
1117(......................................................................................................)S
3097(3)S
613 2805(.2.)U
733(Service)S
973(Class)S
1153(....................................................................................................)S
3097(30)S
3133 2904(1)U
577 3003(5)U
577 2904(5.3.)U
733(User)S
893(Categories)S
1225(................................................................................................)S
3097(3)S
613 3003(.4.)U
733(Additional)S
1065(Discussion)S
1405(......................................................................................)S
3097(32)S
3133 3102(2)U
577 3201(5)U
577 3102(5.4.1.)U
787(Accounting)S
1147(for)S
1255(usage:)S
1477(..................................................................................)S
3097(3)S
613 3201(.4.2.)U
787(Levels)S
1003(of)S
1087(assurance:)S
1423(.....................................................................................)S
3097(32)S
3133 3300(3)U
577 3399(5)U
577 3300(5.4.3.)U
787(Global)S
1007(effects:)S
1243(...............................................................................................)S
3097(3)S
613 3399(.5.)U
733(Conclusions)S
1117(......................................................................................................)S
3097(34)S
3133 3498(4)U
577 3597(5)U
577 3498(5.6.)U
733(Recommendations)S
1297(............................................................................................)S
3097(3)S
613 3597(.6.1.)U
787(Instant)S
1007(projects)S
1261(..............................................................................................)S
3097(35)S
3133 3696(5)U
577 3795(5)U
577 3696(5.6.2.)U
787(Short-term)S
1123(experiments)S
1513(................................................................................)S
3097(3)S
613 3795(.6.3.)U
787(Longer-term)S
1175(experiments)S
1567(.............................................................................)S
3097(36)S
3133 3894(8)U
577 3993(6)U
577 3894(6.)U
679(End-to-End)S
1039(Security)S
1303(Services)S
1585(............................................................................)S
3097(3)S
613 3993(.1.)U
733(Introduction)S
1117(......................................................................................................)S
3097(38)S
3133 4092(8)U
577 4191(6)U
577 4092(6.2.)U
733(Multi-administrative)S
1353(Security)S
1617(Architecture)S
2017(....................................................)S
3097(3)S
613 4191(.2.1.)U
787(Security)S
1051(Domains)S
1351(.........................................................................................)S
3097(40)S
60 Z
3149 4413(])U
577(Leiner)S
2975([Page)S
3132(i)S
EP
%%Page: ? 54
BP
1 F
60 Z
577 450(R)U
(FC)R
710(1124)S
1485(Network)S
1715(Interconnec)S
2000(tion)S
2114(Issues)S
2771(September)S
3049(1989)S
72 Z
577 780(6)U
577 681(6.3.)U
733(Higher-Level)S
1145(End-to-End)S
1505(Services)S
1783(.................................................................)S
3097(40)S
613 780(.3.1.)U
787(Supportive)S
1127(Services)S
1405(......................................................................................)S
3097(41)S
3133 879(2)U
577 978(6)U
577 879(6.3.2.)U
787(Productive)S
1123(Services)S
1405(......................................................................................)S
3097(4)S
613 978(.4.)U
733(Projects)S
991(.............................................................................................................)S
3097(44)S
3133 1077(6)U
577 1176(8)U
577 1077(7.)U
679(Workshop)S
1003(Attendees)S
1315(...........................................................................................)S
3097(4)S
613 1176(.)U
679(Glossary)S
973(..............................................................................................................)S
3097(48)S
60 Z
3149 4413(])U
577(Leiner)S
2958([Page)S
3115(ii)S
EP
%%Trailer
pscatsave end restore
%%Pages: 54