RFC 3723:Securing Block Storage Protocols over IP
RFC-Ref
Previous
|
Next
Frontpage
|
Contents
|
Keywords
Securing Block Storage Protocols over IP
1. Introduction
1.1. iSCSI Overview
1.2. iFCP Overview
1.3. FCIP Overview
1.4. IPsec Overview
1.5. Terminology
1.6. Requirements Language
2. Block Storage Protocol Security
2.1. Security Requirements
2.2. Resource Constraints
2.3. Security Protocol
2.3.1. Transforms
2.3.2. IPsec Modes
2.3.3. IKE
2.3.4. Security Policy Configuration
2.4. iSCSI Authentication
2.4.1. CHAP
2.4.2. SRP
2.5. SLPv2 Security
2.5.1. SLPv2 Security Protocol
2.5.2. Confidentiality of Service Information
2.5.3. SLPv2 Security Implications
2.6. iSNS Security
2.6.1. Use of iSNS to Discover Security Configuration of Peer Devices
2.6.2. Use of iSNS to Distribute iSCSI and iFCP Security Policies
2.6.3. iSNS Interaction with IKE and IPsec
2.6.4. iSNS Server Implementation Requirements
3. iSCSI Security Interoperability Guidelines
3.1. iSCSI Security Issues
3.2. iSCSI and IPsec Interaction
3.3. Initiating a New iSCSI Session
3.4. Graceful iSCSI Teardown
3.5. Non-graceful iSCSI Teardown
3.6. Application-Layer CRC
3.6.1. Simplification of Recovery Logic
3.6.2. Omission of iSCSI CRC
4. iFCP and FCIP Security Issues
4.1. iFCP and FCIP Authentication Requirements
4.2. iFCP Interaction with IPsec and IKE
4.3. FCIP Interaction with IPsec and IKE
5. Security Considerations
5.1. Transport Mode Versus Tunnel Mode
5.1.1. IPsec Tunnel Mode Addressing Considerations
5.2. NAT Traversal
5.3. IKE Issues
5.4. Rekeying Issues
5.5. Transform Issues
5.6. Fragmentation Issues
5.7. Security Checks
5.8. Authentication Issues
5.8.1. Machine Versus User Certificates
5.8.2. Pre-Shared Keys
5.8.3. IKE and Application-Layer Authentication
5.8.4. IP Block Storage Authorization
5.9. Use of AES in Counter Mode
6. IANA Considerations
6.1. Definition of Terms
6.2. Recommended Registration Policies
7. References
7.1. Normative References
7.2. Informative References
8. Acknowledgments
9. Appendix A - Well Known Groups for Use with SRP
10. Appendix B - Software Performance of IPsec Transforms
10.1. B.1. Authentication Transforms
10.2. B.2. Encryption and Authentication Transforms
11. Authors' Addresses
12. Full Copyright Statement
13. Intellectual Property
14. Acknowledgement
Previous
|
Next
Frontpage
|
Contents
|
Keywords
Web
RFC-Ref
RFC-Ref.org
Frontpage
Global Index
RFC
Sister Sites
Chess-Ref.org
Law-Ref.org
InChI.info
Zvon.org
