Re: [IPsec] I-D Action: draft-ietf-ipsecme-esp-ah-reqts-05.txt

Michael Bowler <mbowler@elliptictech.com> Fri, 11 April 2014 19:26 UTC

Return-Path: <mbowler@elliptictech.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7A9F71A075C for <ipsec@ietfa.amsl.com>; Fri, 11 Apr 2014 12:26:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oUliyNTmR2xe for <ipsec@ietfa.amsl.com>; Fri, 11 Apr 2014 12:26:45 -0700 (PDT)
Received: from mx5.gridway.net (mx5.gridway.net [72.1.205.140]) by ietfa.amsl.com (Postfix) with ESMTP id 655571A0737 for <ipsec@ietf.org>; Fri, 11 Apr 2014 12:26:45 -0700 (PDT)
Received: from delivery.mygridway.net (delivery.mygridway.net [72.1.205.180]) by mx5.gridway.net (8.14.3/8.14.3/Debian-9.4) with ESMTP id s3BJQhwA023610 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NOT) for <ipsec@ietf.org>; Fri, 11 Apr 2014 15:26:43 -0400
Received: from [10.8.0.179] (24.114.47.98) by delivery.mygridway.net (172.17.12.4) with Microsoft SMTP Server (TLS) id 14.2.347.0; Fri, 11 Apr 2014 15:26:42 -0400
Message-ID: <534841F2.8020304@elliptictech.com>
Date: Fri, 11 Apr 2014 15:26:42 -0400
From: Michael Bowler <mbowler@elliptictech.com>
User-Agent: Mozilla/5.0 (X11; Linux i686 on x86_64; rv:28.0) Gecko/20100101 Firefox/28.0 SeaMonkey/2.25
MIME-Version: 1.0
To: <ipsec@ietf.org>
References: <20140411190930.13415.44794.idtracker@ietfa.amsl.com> <53484109.30802@elliptictech.com>
In-Reply-To: <53484109.30802@elliptictech.com>
Content-Type: text/plain; charset="ISO-8859-1"; format=flowed
Content-Transfer-Encoding: 7bit
X-Originating-IP: [24.114.47.98]
X-CanIt-Geo: ip=72.1.205.180; country=CA; region=Ontario; city=Ottawa; latitude=45.4167; longitude=-75.7000; http://maps.google.com/maps?q=45.4167,-75.7000&z=6
X-CanItPRO-Stream: base:outbound (inherits from base:default)
X-Canit-Stats-ID: Bayes signature not available
X-Scanned-By: CanIt (www . roaringpenguin . com) on 72.1.205.140
Archived-At: http://mailarchive.ietf.org/arch/msg/ipsec/zFUvWmmQplNE1p9HsjZqkjQydEc
Subject: Re: [IPsec] I-D Action: draft-ietf-ipsecme-esp-ah-reqts-05.txt
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 11 Apr 2014 19:26:46 -0000

Sorry, ignore that last comment... I mentally merged the table in 2.5 
into section 2.4.

Michael Bowler wrote:
> Just a quick glance, but I see AES-GCM as a SHOULD+ in the AH section.
> The reference RFC4106 only applies to ESP.   The AES-GMAC (RFC4543)
> requirement makes sense.
>
> Regards,
>
> Michael
>


-- 
Michael Bowler                                mbowler@elliptictech.com
Sr. IC Designer/Architect                           (613) 254-5456x107
Elliptic Technologies Inc.                        www.elliptictech.com