I-D Action: draft-zhang-ipsecme-anti-replay-01.txt
internet-drafts@ietf.org Fri, 10 June 2011 01:34 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: i-d-announce@ietfa.amsl.com
Delivered-To: i-d-announce@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5583211E813C for <i-d-announce@ietfa.amsl.com>; Thu, 9 Jun 2011 18:34:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.591
X-Spam-Level:
X-Spam-Status: No, score=-102.591 tagged_above=-999 required=5 tests=[AWL=0.008, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7wCqrqzzmoBa for <i-d-announce@ietfa.amsl.com>; Thu, 9 Jun 2011 18:34:41 -0700 (PDT)
Received: from ietfa.amsl.com (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DE0BC11E80A8 for <i-d-announce@ietf.org>; Thu, 9 Jun 2011 18:34:41 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Subject: I-D Action: draft-zhang-ipsecme-anti-replay-01.txt
X-Test-IDTracker: no
X-IETF-IDTracker: 3.55
Message-ID: <20110610013441.4487.19743.idtracker@ietfa.amsl.com>
Date: Thu, 09 Jun 2011 18:34:41 -0700
X-BeenThere: i-d-announce@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: internet-drafts@ietf.org
List-Id: Internet Draft Announcements only <i-d-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/i-d-announce>
List-Post: <mailto:i-d-announce@ietf.org>
List-Help: <mailto:i-d-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 10 Jun 2011 01:34:42 -0000
A New Internet-Draft is available from the on-line Internet-Drafts directories.
Title : IPsec anti-replay algorithm without bit-shifting
Author(s) : Xiangyang Zhang
Tina Tsou
Filename : draft-zhang-ipsecme-anti-replay-01.txt
Pages : 10
Date : 2011-06-09
This document presents a new method to do anti-replay check and
update, which becomes one alternative to the anti-replay
algorithm in RFC 4302 and RFC 4303. The new method will deem the
bit-shifting unnecessary. It will reduce the number of times
to slide the window. In addition, it makes bit-check and
bit-update easier as it does not depend on the low index of the
sliding window. It is especially beneficial when the window size
is much bigger than 64 bits, for example, 1024 bits.
IPsec employs one anti-replay sliding window protocol to secure
against an adversary that can insert the messages inside the
network tunnel. This method still inherits the sliding window
protocol, but use one or more redundant bytes to ease the update
of sliding window. The bit-shifting is deemed unnecessary with
updating the high and low index of the window, which is especially
efficient in case of the big window size. Thus the method reduces
the number of times to update the window.
In addition, the bit location is fixed for one sequence number,
thus makes the bit check and update easier and faster.
A URL for this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-zhang-ipsecme-anti-replay-01.txt
Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/
This Internet-Draft can be retrieved at:
ftp://ftp.ietf.org/internet-drafts/draft-zhang-ipsecme-anti-replay-01.txt
- I-D Action: draft-zhang-ipsecme-anti-replay-01.txt internet-drafts