[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Granularity of authentication in swIPe

To: kent@BBN.COM
Subject: Re: Granularity of authentication in swIPe
From: Phil Karn <karn@qualcomm.com>
Date: Thu, 23 Jun 1994 14:39:01 -0700
Cc: perry@imsi.com, ipsec@ans.net
In-Reply-To: <199406221358.AA19309@interlock.ans.net> (message from Steve Kent on Wed, 22 Jun 94 09:56:57 -0400)

>	I think the best approach is to let sequence numbers be
>sequence numbers, and not try to load other requirements on them.  As
>you observed, different encryption algorithms and modes of use have
>different requirements for IVs and IPSP should be algorithm independent.

Steve, I think there may be some confusion about the meaning of an
"IV".  Part of my problem is not knowing exactly how they work in
Skipjack implementations.  But isn't it true that Skipjack itself is a
64-bit block cipher just like DES for which all the usual DES modes of
operation are usable, including CBC?

Seems to me that if I were so stupid as to actually want to use
Skipjack for IP packet encryption, I could program the chip to operate
in ECB mode and do my own cipher block chaining in software. In this case
the IPSEC sequence field automatically acts as an IV.

Now if my understanding is correct that it takes 50ms to initialize
the IV in a Capstone chip just so I can have it do CBC in hardware,
then I couldn't handle more than 20 packets per second, which is
pretty abysmal.

Phil

Follow-Ups:

Re: Granularity of authentication in swIPe

From: Steve Kent <kent@BBN.COM>

References:

Re: Granularity of authentication in swIPe

From: Steve Kent <kent@BBN.COM>

Prev by Date: Re: swIPe comments
Next by Date: Re: Granularity of authentication in swIPe
Prev by thread: Re: Granularity of authentication in swIPe
Next by thread: Re: Granularity of authentication in swIPe
Index(es):
- Main
- Thread