> [2] The integrity/authentication algorithm used should be the same > as used for encryption to reduce hardware complexity. ... I think it would be a mistake to use DES for the integrity/authentication check. DES is much slower in software than MD5, and then there is the export control issue. Neil Haller