[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Thoughts on a basic encryption mode

To: Steve Kent <kent@BBN.COM>
Subject: Re: Thoughts on a basic encryption mode
From: "Perry E. Metzger" <perry@imsi.com>
Date: Tue, 02 Aug 1994 17:35:27 -0400
Cc: uri@watson.ibm.com, ipsec@ans.net
In-Reply-To: Your message of "Tue, 02 Aug 1994 16:48:16 EDT." <199408022050.AA24134@interlock.ans.net>
Reply-To: perry@imsi.com


Steve Kent says:
> 	You're right, not all algorithms use IVs in the form we
> described.  In my tutorial I use DES as a pedagogical symmetric
> algorithm example and review the FIPS 81 modes and their
> characteristics.  However, many algorithms do make use of IVs, not
> just DES, including some stream ciphers, so the concept, while not
> universal, is fairly general.

In any case, since we are descussing the packet format for a specific
security transform (whether the DES security transform packet format
needs an IV), the decision is specific to the algorithm in
question. One of the great things about the encapsulation and
authentication headers we picked is their ability to allow us to
choose the features we need for any specific security transform. For
IPSP using SEAL, say, an IV may become meaningless, but the format can
simply not provide for one and all is well.

Perry

References:

Re: Thoughts on a basic encryption mode

From: Steve Kent <kent@BBN.COM>

Prev by Date: Re: SIPP and SKIP. 2 subjects.
Next by Date: Re: SIPP and SKIP. 2 subjects.
Prev by thread: Re: Thoughts on a basic encryption mode
Next by thread: Re: Thoughts on a basic encryption mode
Index(es):
- Main
- Thread