Re: [IPsec] Working Group Last Call: draft-ietf-ipsecme-esp-ah-reqts

"Valery Smyslov" <svanru@gmail.com> Tue, 04 March 2014 06:10 UTC

Return-Path: <svanru@gmail.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E606E1A010F for <ipsec@ietfa.amsl.com>; Mon, 3 Mar 2014 22:10:25 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.561
X-Spam-Level:
X-Spam-Status: No, score=-1.561 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001, STOX_REPLY_TYPE=0.439] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zrweuO2o2gDe for <ipsec@ietfa.amsl.com>; Mon, 3 Mar 2014 22:10:24 -0800 (PST)
Received: from mail-lb0-x22b.google.com (mail-lb0-x22b.google.com [IPv6:2a00:1450:4010:c04::22b]) by ietfa.amsl.com (Postfix) with ESMTP id C41EB1A039D for <ipsec@ietf.org>; Mon, 3 Mar 2014 22:10:23 -0800 (PST)
Received: by mail-lb0-f171.google.com with SMTP id w7so5260998lbi.2 for <ipsec@ietf.org>; Mon, 03 Mar 2014 22:10:20 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:from:to:cc:references:subject:date:mime-version :content-type:content-transfer-encoding; bh=0S+vIgQ/Bq6Qp4RJ57IO6Gl55VKgsK0+W85/923jkKs=; b=M08nJn/4AyzN4rt8YeG+OVxphmw3jzRC59eSlMBeMigo08KXWYFHAlnuX9TgNXCzZv c2Gw85ae13HRwahiObFFADjyyjs8binTlRLJQJ5/73JT/u5XT8jI8qglGEtWs7+ASnOH 6qLPsmzoL5fSDeb4jp5Sm7Ico99Gt3v09+rvheO8tDiQERXEVDLlSqrHHwOO2NBh2rkC omKGrD0UZYATDyZZ7XKqQepJAwqzqq/VmqqkSKWwkY/kfBiu8Q2K3AJ5MZ8EKQ3/akkl 0sgysqpCXhPcKIs0U4ZnxzWvjh7stDFsaobz0zQema3d/4l/u3rjC5aQyWn9YI363SUR h3CA==
X-Received: by 10.112.64.37 with SMTP id l5mr172785lbs.49.1393913419984; Mon, 03 Mar 2014 22:10:19 -0800 (PST)
Received: from buildpc ([93.188.44.200]) by mx.google.com with ESMTPSA id ir3sm33623293lac.9.2014.03.03.22.10.18 for <multiple recipients> (version=TLSv1 cipher=RC4-SHA bits=128/128); Mon, 03 Mar 2014 22:10:18 -0800 (PST)
Message-ID: <E5246C826B2540C8863ABE0809DDE4F5@buildpc>
From: "Valery Smyslov" <svanru@gmail.com>
To: "Tero Kivinen" <kivinen@iki.fi>
References: <530CE583.6030801@gmail.com><9618756DDA9C407AB0DC06AC207FD394@buildpc> <21268.42389.983348.801438@fireball.kivinen.iki.fi>
Date: Tue, 4 Mar 2014 10:10:32 +0400
MIME-Version: 1.0
Content-Type: text/plain; format=flowed; charset="iso-8859-1"; reply-type=original
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.5931
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.6157
Archived-At: http://mailarchive.ietf.org/arch/msg/ipsec/fKKPRNa-TuVogmhjdKtzP2b9Zu0
Cc: ipsec <ipsec@ietf.org>
Subject: Re: [IPsec] Working Group Last Call: draft-ietf-ipsecme-esp-ah-reqts
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 04 Mar 2014 06:10:26 -0000

HI Tero,

> Hmm... actually we should most like use the same names we use in the
> IANA registry.


Agree, this would make things more clear.

> I think the best is to say that in general with AES encryption (GCM,
> CBC, CCM etc) we assume the key length is 128-bits. (i.e. the


And don't forget about GMAC.

> MUST for AES-CBC is for 128-bit keys, and the SHOULD+ for AES-GCM is
> also for 128-bit keys with x octect ICV).

I also think this is the best way. I listed the other two just for 
completeness.

Valery.