IETF Logo Mail Archive

Re: [IPsec] review of draft-ietf-ipsecme-aes-ctr-ikev2-02

Alfred Hönes <ah@TR-Sys.de> Fri, 23 October 2009 13:06 UTC

Return-Path: <A.Hoenes@TR-Sys.de>
X-Original-To: ipsec@core3.amsl.com
Delivered-To: ipsec@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id E48CA3A68F4 for <ipsec@core3.amsl.com>; Fri, 23 Oct 2009 06:06:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 2.133
X-Spam-Level: **
X-Spam-Status: No, score=2.133 tagged_above=-999 required=5 tests=[AWL=0.882, BAYES_00=-2.599, CHARSET_FARAWAY_HEADER=3.2, HELO_EQ_DE=0.35, MIME_8BIT_HEADER=0.3]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZdDGsCOSQFII for <ipsec@core3.amsl.com>; Fri, 23 Oct 2009 06:06:06 -0700 (PDT)
Received: from TR-Sys.de (gateway.tr-sys.de [213.178.172.147]) by core3.amsl.com (Postfix) with ESMTP id 46ECF3A68EC for <ipsec@ietf.org>; Fri, 23 Oct 2009 06:06:05 -0700 (PDT)
Received: from ZEUS.TR-Sys.de by w. with ESMTP ($Revision: 1.37.109.26 $/16.3.2) id AA295453128; Fri, 23 Oct 2009 15:05:28 +0200
Received: (from ah@localhost) by z.TR-Sys.de (8.9.3 (PHNE_25183)/8.7.3) id PAA18127; Fri, 23 Oct 2009 15:05:14 +0200 (MESZ)
From: Alfred Hönes <ah@TR-Sys.de>
Message-Id: <200910231305.PAA18127@TR-Sys.de>
To: sean.s.shen@gmail.com
Date: Fri, 23 Oct 2009 15:05:14 +0200
In-Reply-To: <80b5a9190910230538h2a46e6e8i98235ea3529d45de@mail.gmail.com> from Sean Shen at Oct "23, " 2009 "08:38:45" pm
X-Mailer: ELM [$Revision: 1.17.214.3 $]
Mime-Version: 1.0
Content-Type: text/plain; charset="hp-roman8"
Content-Transfer-Encoding: 7bit
Cc: ipsec@ietf.org
Subject: Re: [IPsec] review of draft-ietf-ipsecme-aes-ctr-ikev2-02
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 23 Oct 2009 13:06:07 -0000

Sean Shen wrote:

>> ...
>>
> [Sean] The IKEv2 requirement in the draft is only about key lengths.
> I never pretended that the AES standard allows arbitary conbinations
> of key lengths and rounds.
> I checked the document again and noticed that in the second paragraph
> of section 2:
> "... The choices of Key Size, Rounds and Block Size are defined as
>   following which are compatible with [RFC3686]."

That was one of my initial complaints ...

> If this sentense misleads readers to think that users can choose all
> conbinations, I will rewrite it as:
>  "... The choices of Key Size are defined as following which are
>   compatible with [RFC3686]."

... and that's essentially what I had proposed for that paragraph.

And yes, since that's written in the overview of Section 2, which
lays out the skeleton of the remainder of the section, the immediate
consequence of this change should be to drop sections 2.2 and 2.3
as well, as explained in my original review.
(To recall: The argument presented there was that, after dropping
inappropriate text, the remaining text in 2.2 & 2.3 would be a
simple -- yet verbose -- restatement of the first paragraph of
Section 2, and hence redundant anyway.)

Bingo!  We are converging.  Thanks.

> Best Regards,
>
> Sean

Kind regards,
  Alfred.

-- 

+------------------------+--------------------------------------------+
| TR-Sys Alfred Hoenes   |  Alfred Hoenes   Dipl.-Math., Dipl.-Phys.  |
| Gerlinger Strasse 12   |  Phone: (+49)7156/9635-0, Fax: -18         |
| D-71254  Ditzingen     |  E-Mail:  ah@TR-Sys.de                     |
+------------------------+--------------------------------------------+

v2.23.0 | Report a Bug | By Email