[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IVs, summary of discussion

To: atkinson@itd.nrl.navy.mil
Subject: Re: IVs, summary of discussion
From: "Perry E. Metzger" <perry@imsi.com>
Date: Sun, 28 Aug 1994 20:09:24 -0400
Cc: Phil Karn <karn@qualcomm.com>, ipsec@ans.net
In-Reply-To: Your message of "Sun, 28 Aug 1994 09:59:34 CDT." <9408280959.ZM6131@sundance.itd.nrl.navy.mil>
Reply-To: perry@imsi.com


Ran Atkinson says:
>   Last Monday I gave an MBONE talk on the IPv6 security stuff as part
> of the open IPv6 Design Review.  During that talk, Jeff Schiller
> suggested that DES OFB mode might be preferable since IP can both lose
> and re-order packets.  I'm wondering what folks on this list think of
> that idea instead of DES CBC mode.  

The problem is that if you use OFB you are practically obligated to
use an authenticator because the ability to twiddle known bits in the
packet becomes just too much of a risk, or at least so it would seem
to me. Comments?

Perry

Follow-Ups:

Re: IVs, summary of discussion

From: uri@watson.ibm.com

Re: IVs, summary of discussion

From: Steve Kent <kent@BBN.COM>

References:

Re: IVs, summary of discussion

From: Ran Atkinson <atkinson@sundance.itd.nrl.navy.mil>

Prev by Date: Re: IVs, summary of discussion
Next by Date: Re: IVs, summary of discussion
Prev by thread: Re: IVs, summary of discussion
Next by thread: Re: IVs, summary of discussion
Index(es):
- Main
- Thread