NANC 122

Enhanced Key Expiration Strategy

Origination Date :07/17/1997

Originator:AT&T

Description:

It has been requested that the key exchange strategy be revised for a more secure implementation. The strategy would be as follows:

NPAC would expire its key when:
• an abort from a service provider occurs on an active association.
• a key change is desired.

Service Providers would expire their key when:
• an abort from the NPAC occurs on an active association.
• an accessDenied error message is returned.
• a key change is desired.

This change request is related to the Release 1 change order NANC 112.

Final Resolution:

Func Backwards Compatible: NO

The group is unsure of the need to change the key exchange strategy at this time.

June 00 LNPAWG meeting, group consensus (during R5 discussion) is to move to cancel-pending. The group will discuss the “key change interval” tunable (table C-5, current value and need to change) during the July meeting.

Sept 00 LNPA WG meeting – group agreed to move this change order to Deleted. Also, the group consensus was that the key exchange strategy did not need to be changed at this time.

Related Release:

N/A

Status: Closed