Re: Replay field size in AH

Stephen Kent <kent@bbn.com> Sat, 08 February 1997 19:08 UTC

Received: (from majordom@localhost) by portal.ex.tis.com (8.8.2/8.8.2) id OAA27495 for ipsec-outgoing; Sat, 8 Feb 1997 14:08:40 -0500 (EST)
X-Sender: kent@po1.bbn.com
Message-Id: <v0300780aaf22800e1314@[128.33.229.242]>
In-Reply-To: <9702071420.AA27311@ftp.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Date: Sat, 08 Feb 1997 14:13:47 -0500
To: Naganand Doraswamy <naganand@ftp.com>
From: Stephen Kent <kent@bbn.com>
Subject: Re: Replay field size in AH
Cc: ipsec@tis.com
Sender: owner-ipsec@ex.tis.com
Precedence: bulk

I'd like to hear from Jeff Schiller and the WG chairs re this still open
issue.  My recollection is that there was supposed to be a small meetng to
reolve this after the last IPSEC WG meeting in San Jose.  I observed that
we had two variables affecting aligmment: sequence number size and HMAC
size.  Hugo made a suggestion to truncate the SHA-1 value to 128 bits, to
reduce the number of variables affecting alignment, but I don't recall a
decision on this, nor on the 32 vs. 64 bit sequence number.  We do eed to
nail this down so that the grand unified AH and ESP specs can proceed.

Steve