Authentication using ESP in Transport Mode
Steve_Rodney_at_HP7@rimail.interlan.com Fri, 05 July 1996 15:46 UTC
Received: from ietf.cnri.reston.va.us by IETF.CNRI.Reston.VA.US id aa12912; 5 Jul 96 11:46 EDT
Received: from CNRI.Reston.VA.US by IETF.CNRI.Reston.VA.US id aa12906; 5 Jul 96 11:46 EDT
Received: from neptune.tis.com by CNRI.Reston.VA.US id aa10578; 5 Jul 96 11:46 EDT
Received: from neptune.tis.com by neptune.TIS.COM id aa07568; 5 Jul 96 11:32 EDT
Received: from relay.tis.com by neptune.TIS.COM id aa07554; 5 Jul 96 11:24 EDT
Received: by relay.tis.com; id LAA05603; Fri, 5 Jul 1996 11:26:46 -0400
Sender: ietf-archive-request@IETF.CNRI.Reston.VA.US
From: Steve_Rodney_at_HP7@rimail.interlan.com
MMDF-Warning: Parse error in original version of preceding line at neptune.TIS.COM
Received: from sol.tis.com(192.33.112.100) by relay.tis.com via smap (V3.1.1) id xma005597; Fri, 5 Jul 96 11:26:18 -0400
Received: from relay.tis.com by tis.com (4.1/SUN-5.64) id AA24221; Fri, 5 Jul 96 11:26:10 EDT
Received: by relay.tis.com; id LAA05588; Fri, 5 Jul 1996 11:26:16 -0400
Received: from interlan.interlan.com(130.204.8.1) by relay.tis.com via smap (V3.1.1) id xma005581; Fri, 5 Jul 96 11:25:51 -0400
Received: from rimail.InterLan.COM by interlan.interlan.com with SMTP (5.65/25-eef) id AA09976; Fri, 5 Jul 96 10:53:39 -0400
Received: from ccMail by rimail.interlan.com id AA836591343 Fri, 05 Jul 96 11:29:03 EST
Date: Fri, 05 Jul 1996 11:29:03 -0500
Encoding: 988 Text
Message-Id: <9606058365.AA836591343@rimail.interlan.com>
To: ipsec@tis.com
Subject: Authentication using ESP in Transport Mode
X-Orig-Sender: ipsec-approval@neptune.tis.com
Precedence: bulk
The latest Security Architecture for IP draft (4 June 96) changes the
role of ESP from confidentiality only to confidentiality +
authentication. But, ESP in Transport Mode does not operate on the
cleartext IP header. So I still need to apply AH after ESP to provide
end-to-end authentication of IP headers. It is desirable to tweak the
architecture so that authentication provided by ESP has the same
security as authentication provided by AH. Then only a single security
header is needed for end-to-end confidentiality + authentication.
Steve
=====================================================================
Steve Rodney E-mail: SRODNEY@FTL03.RACAL.COM
Racal-Datacom
1601 N. Harrison Parkway Phone: 1-954-846-6836
Sunrise, Florida 33323-6836 Fax: 1-954-846-4942
=====================================================================
- Authentication using ESP in Transport Mode Steve_Rodney_at_HP7
- Re: Authentication using ESP in Transport Mode Michael Richardson
- Re: Authentication using ESP in Transport Mode Robert Moskowitz
- RE: Authentication using ESP in Transport Mode Smith, David
- RE: Authentication using ESP in Transport Mode Robert Moskowitz
- Re: Authentication using ESP in Transport Mode Rodney Thayer
- Re: Authentication using ESP in Transport Mode Robert Moskowitz
- Re: Authentication using ESP in Transport Mode Ran Atkinson
- Re: Authentication using ESP in Transport Mode PALAMBER.US.ORACLE.COM
- Re: Authentication using ESP in Transport Mode Ran Atkinson
- Re: Authentication using ESP in Transport Mode PALAMBER.US.ORACLE.COM
- Re: Authentication using ESP in Transport Mode Stephen Kent
- Re: Authentication using ESP in Transport Mode Bill Sommerfeld
- Re: Authentication using ESP in Transport Mode Derrell Piper
- Re: Authentication using ESP in Transport Mode Hilarie Orman