Re: new IKE draft

Lewis McCarthy <lmccarth@cs.umass.edu> Tue, 17 March 1998 00:12 UTC

Received: (from majordom@localhost) by portal.ex.tis.com (8.8.2/8.8.2) id TAA10730 for ipsec-outgoing; Mon, 16 Mar 1998 19:12:43 -0500 (EST)
Message-ID: <350DC31C.41C6@cs.umass.edu>
Date: Mon, 16 Mar 1998 19:26:04 -0500
From: Lewis McCarthy <lmccarth@cs.umass.edu>
Organization: UMass-Amherst Theoretical Computer Science Group, <http://www.cs.umass.edu/~thtml/>
X-Mailer: Mozilla 3.01Gold (X11; U; OSF1 V4.0 alpha)
MIME-Version: 1.0
To: Sumit Vakil <Sumit_Vakil@mw.3com.com>
CC: IP Security List <ipsec@tis.com>
Subject: Re: new IKE draft
References: <862565C9.007ED929.00@mwgate02.mw.3com.com>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: owner-ipsec@ex.tis.com
Precedence: bulk

Sumit Vakil writes:
> PKCS#1 has two interesting notes in section 8:
>      3.   Application of private-key operations as defined
>           here to data other than an octet string containing
>           a message digest is not recommended and is subject
>           to further study.
[...]
> Also, what about #3 above?  The Id payload certainly isn't a message
> digest.

True, but the authentication via public key encryption mode in IKE 
uses encryption with a public key (PubKey_i or PubKey_r), not with 
a private key.

-Lewis

new IKE draft Daniel Harkins
Re: new IKE draft Matt Thomas
Re: new IKE draft pau
Re: new IKE draft Sumit Vakil
Re: new IKE draft Lewis McCarthy
Re: new IKE draft Lewis McCarthy
Re: new IKE draft Lewis McCarthy