Project of the Open Source Laboratory
The only published interface for IPsec currently specified is PF_KEY, defined in RFC2367. The problem with this interface is that it's underspecified. To cope with this deficiency, different implementations developed more or less incompatible extensions. Furthermore, TLS has advantage over IPsec beacuse better coupling between application and protocol implementation. The goal of this project is to specify enhanced, or a new, interface for IPsec and to publish it as a Internet draft.
Programming language: N/A