Re: Encryption + expansion of ISAKMP packets/payloads

Daniel Harkins <dharkins@cisco.com> Fri, 12 September 1997 20:52 UTC

Received: (from majordom@localhost) by portal.ex.tis.com (8.8.2/8.8.2) id QAA10208 for ipsec-outgoing; Fri, 12 Sep 1997 16:52:42 -0400 (EDT)
Message-Id: <199709122101.OAA28163@dharkins-ss20>
X-Authentication-Warning: dharkins-ss20.cisco.com: Host localhost.cisco.com didn't use HELO protocol
To: ben@Ascend.COM
Cc: isakmp-oakley@cisco.com, ipsec@tis.com
Subject: Re: Encryption + expansion of ISAKMP packets/payloads
In-Reply-To: Your message of "Fri, 12 Sep 1997 16:06:20 EDT." <199709122006.QAA02651@carp.morningstar.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Date: Fri, 12 Sep 1997 14:01:20 -0700
From: Daniel Harkins <dharkins@cisco.com>
Sender: owner-ipsec@ex.tis.com
Precedence: bulk

Appendix B of ISAKMP/Oakley. Paragraphs beginning "In phase...."

> draft-ietf-ipsec-isakmp-08.txt (3.1) states:
> 
>  o  Length (4 octets) - Length of total message (header + payloads) in
>     octets.  Encryption can expand the size of an ISAKMP message.  This
>     issue is addressed in [IPDOI] and [IO-Res].
> 
> As far as I can tell, this is not addressed in the DOI or resolution
> documents.  Moreover, why isn't it addressed in the ISAKMP document,
> where it seems like it belongs?