Re: [Cfrg] Re: Changing the key deriveration
Paul Hoffman / VPNC <paul.hoffman@vpnc.org> Mon, 23 February 2004 21:34 UTC
Received: from optimus.ietf.org (optimus.ietf.org [132.151.1.19]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id QAA21066 for <cfrg-archive@odin.ietf.org>; Mon, 23 Feb 2004 16:34:59 -0500 (EST)
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1AvNih-0003XU-RH for cfrg-archive@odin.ietf.org; Mon, 23 Feb 2004 16:34:32 -0500
Received: (from exim@localhost) by www1.ietf.org (8.12.8/8.12.8/Submit) id i1NLYVMC013603 for cfrg-archive@odin.ietf.org; Mon, 23 Feb 2004 16:34:31 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1AvNih-0003XK-Jo for cfrg-web-archive@optimus.ietf.org; Mon, 23 Feb 2004 16:34:31 -0500
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id QAA21020 for <cfrg-web-archive@ietf.org>; Mon, 23 Feb 2004 16:34:27 -0500 (EST)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 1AvNif-0005qr-00 for cfrg-web-archive@ietf.org; Mon, 23 Feb 2004 16:34:29 -0500
Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1AvNho-0005lt-00 for cfrg-web-archive@ietf.org; Mon, 23 Feb 2004 16:33:37 -0500
Received: from optimus.ietf.org ([132.151.1.19]) by ietf-mx with esmtp (Exim 4.12) id 1AvNh4-0005iB-00 for cfrg-web-archive@ietf.org; Mon, 23 Feb 2004 16:32:50 -0500
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1AvNgH-0003P7-9E; Mon, 23 Feb 2004 16:32:01 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1AuMbw-00012p-8L for cfrg@optimus.ietf.org; Fri, 20 Feb 2004 21:11:20 -0500
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id VAA28052 for <cfrg@ietf.org>; Fri, 20 Feb 2004 21:11:16 -0500 (EST)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 1AuMbt-00016a-00 for cfrg@ietf.org; Fri, 20 Feb 2004 21:11:17 -0500
Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1AuMb0-00014O-00 for cfrg@ietf.org; Fri, 20 Feb 2004 21:10:23 -0500
Received: from above.proper.com ([208.184.76.39]) by ietf-mx with esmtp (Exim 4.12) id 1AuMao-00011d-00 for cfrg@ietf.org; Fri, 20 Feb 2004 21:10:10 -0500
Received: from [63.202.92.153] (adsl-63-202-92-153.dsl.snfc21.pacbell.net [63.202.92.153]) (authenticated bits=0) by above.proper.com (8.12.11/8.12.8) with ESMTP id i1L29sjj044558; Fri, 20 Feb 2004 18:09:54 -0800 (PST) (envelope-from paul.hoffman@vpnc.org)
Mime-Version: 1.0
X-Sender: phoffvpnc@mail.vpnc.org
Message-Id: <p06020427bc5c6de73978@[63.202.92.153]>
In-Reply-To: <Pine.GSO.4.44_heb2.09.0402170435310.18015-100000@ee.technion.ac.il>
References: <Pine.GSO.4.44_heb2.09.0402170435310.18015-100000@ee.technion.ac.il>
Date: Fri, 20 Feb 2004 18:09:58 -0800
To: cfrg@ietf.org, ipsec@lists.tislabs.com, Charlie Kaufman <ckaufman@microsoft.com>
From: Paul Hoffman / VPNC <paul.hoffman@vpnc.org>
Subject: Re: [Cfrg] Re: Changing the key deriveration
Cc: Hugo Krawczyk <hugo@ee.technion.ac.il>, "The Purple Streak, Hilarie Orman" <ho@alum.mit.edu>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Sender: cfrg-admin@ietf.org
Errors-To: cfrg-admin@ietf.org
X-BeenThere: cfrg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@ietf.org?subject=unsubscribe>
List-Id: Crypto Forum Research Group <cfrg.ietf.org>
List-Post: <mailto:cfrg@ietf.org>
List-Help: <mailto:cfrg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@ietf.org?subject=subscribe>
X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org
X-Spam-Status: No, hits=-1.9 required=5.0 tests=AWL autolearn=no version=2.60
At 9:57 PM +0200 2/17/04, Hugo Krawczyk wrote: >Anyway, replacing SK_ai and SK_ar in the above text (as well as in 2.15, >first paragraph) with SK_d does resolve the problem of using two >algorithms (prf and integrity) with the same key, and it is much better >than what is done now. There have been no more comments on this, and the ADs are still waiting for a final draft of this document so they can move all three IKEv2 documents to IETF last call. Charlie: are you OK with this solution? If so, can you get the new draft out soon, such as when the Internet Drafts window opens? --Paul Hoffman, Director --VPN Consortium _______________________________________________ Cfrg mailing list Cfrg@ietf.org https://www1.ietf.org/mailman/listinfo/cfrg
- [Cfrg] Re: Changing the key deriveration Hugo Krawczyk
- Re: [Cfrg] Re: Changing the key deriveration Greg Rose
- Re: [Cfrg] Re: Changing the key deriveration The Purple Streak, Hilarie Orman
- Re: [Cfrg] Re: Changing the key deriveration Hugo Krawczyk
- Re: [Cfrg] Re: Changing the key deriveration Paul Hoffman / VPNC
- Re: [Cfrg] Re: Changing the key deriveration canetti
- Re: [Cfrg] Re: Changing the key deriveration Theodore Ts'o
- Re: [Cfrg] Re: Changing the key deriveration David A. McGrew