RE: [Ipsec] Key length attribute (was: Important changes in draft-hoffman-rfc3664bis; please review)
Tero Kivinen <kivinen@iki.fi> Fri, 14 October 2005 10:19 UTC
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1EQMfD-0007o7-7G; Fri, 14 Oct 2005 06:19:47 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1EQMfA-0007o2-PI for ipsec@megatron.ietf.org; Fri, 14 Oct 2005 06:19:45 -0400
Received: from ietf-mx.ietf.org (ietf-mx [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id GAA00052 for <ipsec@ietf.org>; Fri, 14 Oct 2005 06:19:40 -0400 (EDT)
Received: from fireball.acr.fi ([83.145.195.1] helo=mail.kivinen.iki.fi) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1EQMpr-0006q7-2P for ipsec@ietf.org; Fri, 14 Oct 2005 06:30:48 -0400
Received: from fireball.kivinen.iki.fi (localhost [IPv6:::1]) by mail.kivinen.iki.fi (8.13.4/8.12.10) with ESMTP id j9EAJcV3019498 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 14 Oct 2005 13:19:38 +0300 (EEST)
Received: (from kivinen@localhost) by fireball.kivinen.iki.fi (8.13.4/8.12.11) id j9EAJcgB009752; Fri, 14 Oct 2005 13:19:38 +0300 (EEST)
X-Authentication-Warning: fireball.kivinen.iki.fi: kivinen set sender to kivinen@iki.fi using -f
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Message-ID: <17231.34362.449609.883247@fireball.kivinen.iki.fi>
Date: Fri, 14 Oct 2005 13:19:38 +0300
From: Tero Kivinen <kivinen@iki.fi>
To: Pasi.Eronen@nokia.com
Subject: RE: [Ipsec] Key length attribute (was: Important changes in draft-hoffman-rfc3664bis; please review)
In-Reply-To: <B356D8F434D20B40A8CEDAEC305A1F24019A629A@esebe105.NOE.Nokia.com>
References: <B356D8F434D20B40A8CEDAEC305A1F24019A629A@esebe105.NOE.Nokia.com>
X-Mailer: VM 7.17 under Emacs 21.4.1
X-Edit-Time: 1 min
X-Total-Time: 1 min
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 68c8cc8a64a9d0402e43b8eee9fc4199
Content-Transfer-Encoding: 7bit
Cc: ipsec@ietf.org, danmcd@sun.com
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IP Security <ipsec.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
Sender: ipsec-bounces@ietf.org
Errors-To: ipsec-bounces@ietf.org
Pasi.Eronen@nokia.com writes: > There was actually some discussion about this issue before; see the > "AES Algorithm Negotiation in IKE" thread in Oct-Nov 2004. The end > result of that discussion was that CTR/CCM/GCM use the key length > attribute just like CBC, but they define different transform IDs for > different ICV lengths (instead of defining a separate "ICV length" > transform attribute). The reasoning there was that use the key length attribute if suitable, but do not add any new attributes. -- kivinen@safenet-inc.com _______________________________________________ Ipsec mailing list Ipsec@ietf.org https://www1.ietf.org/mailman/listinfo/ipsec
- [Ipsec] Key length attribute (was: Important chan… Pasi.Eronen
- Re: [Ipsec] Key length attribute (was: Important … Dan McDonald
- Re: [Ipsec] Key length attribute (was: Important … Paul Hoffman
- [Ipsec] Key length attribute (was: Important chan… Tero Kivinen
- RE: [Ipsec] Key length attribute (was: Important … Pasi.Eronen
- RE: [Ipsec] Key length attribute (was: Important … Tero Kivinen