[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Granularity of authentication in swIPe

To: perry@imsi.com
Subject: Re: Granularity of authentication in swIPe
From: smb@research.att.com
Date: Tue, 14 Jun 94 20:10:23 EDT
Cc: Steve Kent <kent@BBN.COM>, ipsec@ans.net

	 You seem to think that swIPe should not be standards track.
	 (Unfortunately, its difficult to know people's intent in EMail because
	 so much of the context and tone is lost -- please let me know if my
	 assessment is wrong.) Do you have objections to the way swIPe does
	 things? Please say so if you do -- that way they can be worked on and
	 the improvements will benefit everyone. If you would like a copy of
	 the code, I'll be happy to send that to you so that you can experiment
	 with it along with the rest of us.

I haven't had a chance to unpack the Usenix disk yet; as I recall, though,
swIPe has a one-byte keyid, which is unacceptable to me.  It also has a
packet sequence number, which is a rather dubious construct that needs
a *lot* of debate, at the very least.

Follow-Ups:

Re: Granularity of authentication in swIPe

From: Matt Blaze <mab@research.att.com>

Re: Granularity of authentication in swIPe

From: Phil Karn <karn@qualcomm.com>

Prev by Date: Re: Granularity of authentication in swIPe
Next by Date: Re: Granularity of authentication in swIPe
Prev by thread: Re: Granularity of authentication in swIPe
Next by thread: Re: Granularity of authentication in swIPe
Index(es):
- Main
- Thread