[Ipsec] Fw: I-D ACTION:draft-kelly-saag-des-implications-00.txt
"Scott G. Kelly" <s.kelly@ix.netcom.com> Mon, 30 January 2006 21:47 UTC
Received: from localhost.cnri.reston.va.us ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1F3gs2-000801-Jw; Mon, 30 Jan 2006 16:47:34 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1F3gs0-0007zS-H4 for ipsec@megatron.ietf.org; Mon, 30 Jan 2006 16:47:32 -0500
Received: from ietf-mx.ietf.org (ietf-mx [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id QAA10617 for <ipsec@ietf.org>; Mon, 30 Jan 2006 16:45:57 -0500 (EST)
Received: from pop-altamira.atl.sa.earthlink.net ([207.69.195.62]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1F3h2m-00072I-ER for ipsec@ietf.org; Mon, 30 Jan 2006 16:58:45 -0500
Received: from elwamui-karabash.atl.sa.earthlink.net ([209.86.224.37]) by pop-altamira.atl.sa.earthlink.net with esmtp (Exim 3.36 #10) id 1F3grq-0006Hc-00 for ipsec@ietf.org; Mon, 30 Jan 2006 16:47:22 -0500
Message-ID: <12803499.1138657642162.JavaMail.root@elwamui-karabash.atl.sa.earthlink.net>
Date: Mon, 30 Jan 2006 13:47:22 -0800
From: "Scott G. Kelly" <s.kelly@ix.netcom.com>
To: ipsec list <ipsec@ietf.org>
Mime-Version: 1.0
Content-Type: multipart/mixed; boundary="----=_Part_14104_6497228.1138657642155"
X-Mailer: EarthLink Zoo Mail 1.0
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 6d95a152022472c7d6cdf886a0424dc6
Subject: [Ipsec] Fw: I-D ACTION:draft-kelly-saag-des-implications-00.txt
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: "Scott G. Kelly" <scott@hyperthought.com>
List-Id: IP Security <ipsec.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
Sender: ipsec-bounces@ietf.org
Errors-To: ipsec-bounces@ietf.org
Some time ago, Russ Housley asked if someone would write a note for implementers regarding the security implications of using DES. This request derived from a recommendation in http://www.ietf.org/internet-drafts/draft-ietf-newtrk-decruft-experiment-03.txt. Anyway, here's the first cut at the draft. I intend to add an appendix explaining why 3DES is still okay, and someone suggested that maybe DESX should be discussed as well. If you have suggestions or comments, I'm all ears... -----Forwarded Message----- >From: Internet-Drafts@ietf.org >Sent: Jan 30, 2006 12:50 PM >To: i-d-announce@ietf.org >Subject: I-D ACTION:draft-kelly-saag-des-implications-00.txt > >A New Internet-Draft is available from the on-line Internet-Drafts directories. > > > Title : draft-kelly-saag-des-implications > Author(s) : S. Kelly > Filename : draft-kelly-saag-des-implications-00.txt > Pages : 24 > Date : 2006-1-30 > > The Data Encryption Standard [DES] is susceptible to brute force > attacks which are well within the reach of a modestly financed > adversary. As a result, DES has been deprecated, and replaced by the > Advanced Encryption Standard [AES]. Nonetheless, many applications > continue to rely on DES for security, and designers and implementers > continue to provide support for it in new applications. While this > is not always inappropriate, it frequently is. This note discusses > DES security implications, so that designers and implementers can > make judicious decisions regarding its use. > >A URL for this Internet-Draft is: >http://www.ietf.org/internet-drafts/draft-kelly-saag-des-implications-00.txt > >To remove yourself from the I-D Announcement list, send a message to >i-d-announce-request@ietf.org with the word unsubscribe in the body of the message. >You can also visit https://www1.ietf.org/mailman/listinfo/I-D-announce >to change your subscription settings. > > >Internet-Drafts are also available by anonymous FTP. Login with the username >"anonymous" and a password of your e-mail address. After logging in, >type "cd internet-drafts" and then > "get draft-kelly-saag-des-implications-00.txt". > >A list of Internet-Drafts directories can be found in >http://www.ietf.org/shadow.html >or ftp://ftp.ietf.org/ietf/1shadow-sites.txt > > >Internet-Drafts can also be obtained by e-mail. > >Send a message to: > mailserv@ietf.org. >In the body type: > "FILE /internet-drafts/draft-kelly-saag-des-implications-00.txt". > >NOTE: The mail server at ietf.org can return the document in > MIME-encoded form by using the "mpack" utility. To use this > feature, insert the command "ENCODING mime" before the "FILE" > command. To decode the response(s), you will need "munpack" or > a MIME-compliant mail reader. Different MIME-compliant mail readers > exhibit different behavior, especially when dealing with > "multipart" MIME messages (i.e. documents which have been split > up into multiple messages), so check your local documentation on > how to manipulate these messages. > > >Below is the data which will enable a MIME compliant mail reader >implementation to automatically retrieve the ASCII version of the >Internet-Draft.
_______________________________________________ I-D-Announce mailing list I-D-Announce@ietf.org https://www1.ietf.org/mailman/listinfo/i-d-announce
_______________________________________________ Ipsec mailing list Ipsec@ietf.org https://www1.ietf.org/mailman/listinfo/ipsec
- [Ipsec] Fw: I-D ACTION:draft-kelly-saag-des-impli… Scott G. Kelly
- Re: [Ipsec] Fw: I-D ACTION:draft-kelly-saag-des-i… Paul Hoffman