Browse Prior Art Database

Common Open Policy Service (COPS) Over Transport Layer Security (TLS) (RFC4261)

IP.com Disclosure Number: IPCOM000132147D
Original Publication Date: 2005-Dec-01
Included in the Prior Art Database: 2005-Dec-03
Document File: 15 page(s) / 29K

Publishing Venue

Internet Society Requests For Comment (RFCs)

Related People

J. Walker: AUTHOR [+3]

Abstract

This document describes how to use Transport Layer Security (TLS) to secure Common Open Policy Service (COPS) connections over the Internet.

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 10% of the total text.

Network Working Group                                          J. Walker
Request for Comments: 4261                              A. Kulkarni, Ed.
Updates: 2748                                                Intel Corp.
Category: Standards Track                                  December 2005


                   Common Open Policy Service (COPS)
                  Over Transport Layer Security (TLS)

Status of This Memo

   This document specifies an Internet standards track protocol for the
   Internet community, and requests discussion and suggestions for
   improvements.  Please refer to the current edition of the "Internet
   Official Protocol Standards" (STD 1) for the standardization state
   and status of this protocol.  Distribution of this memo is unlimited.

Copyright Notice

   Copyright (C) The Internet Society (2005).

Abstract

   This document describes how to use Transport Layer Security (TLS) to
   secure Common Open Policy Service (COPS) connections over the
   Internet.

   This document also updates RFC 2748 by modifying the contents of the
   Client-Accept message.


Walker & Kulkarni           Standards Track                     [Page 1]
RFC 4261                     COPS Over TLS                 December 2005


Table Of Contents

   1. Introduction ....................................................2
   2. COPS Over TLS ...................................................3
   3. Separate Ports versus Upward Negotiation ........................3
   4. COPS/TLS Objects and Error codes ................................4
      4.1. The TLS Message Integrity Object (Integrity-TLS) ...........4
      4.2. Error Codes ................................................4
   5. COPS/TLS Secure Connection Initiation ...........................5
      5.1. PEP Initiated Security Negotiation .........................5
      5.2. PDP Initiated Security Negotiation .........................6
   6. Connection Closure ..............................................7
      6.1. PEP System Behavior ........................................7
      6.2. PDP System Behavior ........................................8
   7. Endpoint Identification and Access Control ......................8
      7.1. PEP Identity ...............................................9
      7.2. PDP Identity ...............................................9
   8. Cipher Suite Requirements ......................................10
   9. Backward Compatibility .........................................10
   10. IANA Considerations ...........................................10
   11. Security Considerations .......................................11
   12. Acknowl...