Re: [dtn-security] Re(2): Ciphersuite

"Sushil Chaudhari" <schaudhari@mzeal.com> Thu, 16 July 2009 18:09 UTC

Received: from mzeal.com (mzeal.com [199.237.228.71]) by maillists.intel-research.net (8.13.8/8.13.8) with ESMTP id n6GI9aUR017614 for <dtn-security@maillists.intel-research.net>; Thu, 16 Jul 2009 11:09:37 -0700
Received: (qmail 89961 invoked by uid 25671); 16 Jul 2009 18:07:55 -0000
Message-ID: <20090716180755.89960.qmail@mzeal.com>
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Content-Type: text/plain; charset="UTF-8"; format="flowed"
MIME-Version: 1.0
X-Mailer: MIME::Lite 3.0104 (F2.72; T1.15; A1.47; B3.01; Q3.01)
Date: Thu, 16 Jul 2009 18:07:55 +0000
From: "Sushil Chaudhari" <schaudhari@mzeal.com>
To: plovell@mac.com, schaudhari@mzeal.com, dtn-security@maillists.intel-research.net
Subject: Re: [dtn-security] Re(2): Ciphersuite
X-BeenThere: dtn-security@maillists.intel-research.net
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: DTN Security Discussion <dtn-security.maillists.intel-research.net>
List-Unsubscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=unsubscribe>
List-Archive: <http://maillists.intel-research.net/pipermail/dtn-security>
List-Post: <mailto:dtn-security@maillists.intel-research.net>
List-Help: <mailto:dtn-security-request@maillists.intel-research.net?subject=help>
List-Subscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=subscribe>
X-List-Received-Date: Thu, 16 Jul 2009 18:09:37 -0000

Hi,

It looks as PC3 ciphersuite actually implemented for AES GCM mode. If I read RFC4106 correctly, it does provide confidentiality, data origin and data integrity authentication…

Apparently, it does fulfill the purpose of all 3 security blocks.

Am I read something incorrectly?