To: Tony Jeffree <100271.522@compuserve.com> Cc: Paul Langille , 802-1 From: John Hart/HQ/3Com Date: 25 Nov 95 12:04:27 EDT Subject: Re: Re: REVISION TO SDE I also concur with Tony that we shouldn't look at solutions before we finish defining the problem but I must admit I am confused by some of the earlier discussion. I just don't understand the conclusion that addressing both security requirements and VLAN tagging requirements makes it desirable to use 802.10 for both. My logic on this subject is as follows 1) If we decide that we need VLAN tagging, then we should define a 802.1 standard encapsulation method (e.g., a new LSAP) in a way that doesn't interfere with 802.10 or vice versa. 2) In the cases where there is both a VLAN tagging requirement and a 802.10 security requirement then, based on these requirements (e.g., switches are involved/not involved in the encryption), either a) 802.10 frames are used to encrypt 802.1 standard encapsulated frames or b) 802.1 standard encapsulated frames are used to carry 802.10 frames 3) In the cases where there is a VLAN tagging requirement and no 802.10 security requirement or vice versa, then the 802.1 or 802.10 standards are used independently and there is no chance of VLAN tagging violating current or subsequent 802.10 rules, etc. (i.e., we avoid all the issues/liabilities of using one mechanism to solve two different problems) Make sense? John