Received: (from majordom@localhost) by portal.ex.tis.com (8.8.2/8.8.2) id
 KAA00101 for ipsec-outgoing; Thu, 12 Mar 1998 10:49:31 -0500 (EST)
Date: Thu, 12 Mar 1998 18:02:29 +0200 (EET)
From: Markku-Juhani Saarinen <mjos@ssh.fi>
To: ipsec@tis.com
Subject: comments on draft-ietf-ipsec-ciph-cbc-02.txt
Message-ID: <Pine.NEB.3.95q.980312173617.11621H-100000@pilari.ssh.fi>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-ipsec@ex.tis.com
Precedence: bulk


The draft does not mention that the RC5 encryption algorithm is patented
(pat.no. 5,724,428).

We feel that a 4-round variant of IDEA can not provide the level of
security that it's key length would suggest. Cryptoanalytic attacks on 
3 and 3.5 - round variants of IDEA has been published. 

The weak key lists are incomplete, as they will probably always be.
The chances of hitting one at random is negligible. What's the point ?

- mj

Markku-Juhani O. Saarinen <mjos@ssh.fi>, SSH Communications Security Ltd