Re: is manual keying mandatory (fwd)
Robert Moskowitz <rgm-sec@htt-consult.com> Thu, 19 March 1998 16:23 UTC
Received: (from majordom@localhost) by portal.ex.tis.com (8.8.2/8.8.2) id LAA18738 for ipsec-outgoing; Thu, 19 Mar 1998 11:23:34 -0500 (EST)
Message-Id: <3.0.5.32.19980319113550.00934370@homebase.htt-consult.com>
X-Sender: rgm-sec@homebase.htt-consult.com
X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.5 (32)
Date: Thu, 19 Mar 1998 11:35:50 -0500
To: Jackie Wilson <jhwilson@austin.ibm.com>, ipsec@tis.com
From: Robert Moskowitz <rgm-sec@htt-consult.com>
Subject: Re: is manual keying mandatory (fwd)
In-Reply-To: <199803190509.XAA26210@jhwilson.austin.ibm.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-ipsec@ex.tis.com
Precedence: bulk
At 11:09 PM 3/18/98 -0600, Jackie Wilson wrote: >I agree. It will be some time before all boxes support ISAKMP, but >they will need to be included in secure networks. This will help >customers adopt ISAKMP as a standard if it is widely available. Jackie, I disagree with you as to the above reason, in general. Or perhaps you are thinking as I, but use different verbage. Some KMP is needed to rekey sessions. As an ex-network support person, I would not want to deploy non-rekeyable technology anymore except for certain imbedded systems that are either: already running in a semi-secure environment, or are still just too limited to support the cost of IKE code. (think about what it takes to protect a system from electric leaks under your car hood and you might get some ideas about cost overruns). >In a few years it could probably be phased out. In time IKE preshared MIGHT be universally available, but to play with other KMPs, manual keying is important. Robert Moskowitz ICSA Security Interest EMail: rgm-sec@htt-consult.com
- is manual keying mandatory Roy Pereira
- RE: is manual keying mandatory William Dixon
- Re: is manual keying mandatory Derrell D. Piper
- Re: is manual keying mandatory Bill Sommerfeld
- Re: is manual keying mandatory Dan McDonald
- Re: is manual keying mandatory (fwd) Jackie Wilson
- Re: is manual keying mandatory Bronislav Kavsan
- Re: is manual keying mandatory Perry E. Metzger
- Re: is manual keying mandatory (fwd) Perry E. Metzger
- Re: is manual keying mandatory Michael C. Richardson
- Re: is manual keying mandatory (fwd) Paul Koning
- Re: is manual keying mandatory Phil Servita
- Re: is manual keying mandatory (fwd) Robert Moskowitz
- Re: is manual keying mandatory Robert Moskowitz
- Re: is manual keying mandatory (fwd) Larry Backman
- FW: is manual keying mandatory Roy Pereira
- Re: is manual keying mandatory (fwd) Robert Moskowitz
- RE: is manual keying mandatory (fwd) Rob Adams
- Re: is manual keying mandatory Steve Sneddon
- RE: is manual keying mandatory Bede McCall
- Re: is manual keying mandatory Daniel Harkins
- Re: is manual keying mandatory Bronislav Kavsan
- [Fwd: is manual keying mandatory] Bronislav Kavsan
- Re: is manual keying mandatory Theodore Y. Ts'o
- Re: is manual keying mandatory (fwd) Daniel C. Fox
- Re: is manual keying mandatory (fwd) Paul Lambert
- Re: is manual keying mandatory Steve Sneddon
- Re: is manual keying mandatory Michael Richardson
- Re: is manual keying mandatory Dave Carrel
- Re: is manual keying mandatory Bronislav Kavsan
- Re: is manual keying mandatory Bronislav Kavsan
- Re: is manual keying mandatory Dave Carrel
- RE: is manual keying mandatory Bede McCall
- Re: is manual keying mandatory EKR
- Re: is manual keying mandatory Bronislav Kavsan
- RE: is manual keying mandatory Bede McCall
- Re: is manual keying mandatory Derrell D. Piper
- Re: is manual keying mandatory Perry E. Metzger
- Re: is manual keying mandatory Bronislav Kavsan
- Re: is manual keying mandatory Steve Sneddon
- Re: is manual keying mandatory Ran Atkinson
- Re: is manual keying mandatory (fwd) Hilarie Orman