In what looks like an effort to recruit other vendors, Cisco has published its TrustSec protocol in the form of an IETF Draft. Published here, TrustSec has been given the name the Source-Group Tag Exchange Protocol, or SXP. TrustSec is a security policy management framework that the Borg says lets security managers use plain …
Amusing reference to RFC3514, bravo. But RFC3514 uses a packet header in the Layer 3 packet, whereas Security Group Tags are inserted into the Layer 2 frame header.
Grinning devil's head to signify the evil intent of applications in RFC3514.
Layer 3 *is* the new Layer 2.
RFC3514 does actually seem to allow for this by being a bit vague and covering things like MIME types as well. I'm sure an evil bit can be set in this new funky rubbish scheme. They could always follow the requirements for IPv6 as a template ...