Re: Re[2]: On SKIP and non-interactive key management

[Ashar.Aziz@eng.sun.com (Ashar Aziz)]

>From housley@spyrus.com Mon Nov 21 13:47:31 1994
>The SAID should be used to indirectly tell which algorithms and modes are being 
>used.  In a sence, the agreement of a key between two parties is the 
>establishment of a connection, only we call it a security association.

Russ,

If you read the SKIP draft, you will realize why interactivley negotiating 
SAIDs is not a good idea, when one is not interactively negotiating
keys.

>I thought that this group agreed on 32 bit SAIDs with the high order bit 
>reserved for multicast security associations.  When did the issue 
>get reopened?

Actually, there was some verbal agreement at the last WG to use
4 bits of the SAID for the IPSP protocol version number, and
the remaining as part of the SAID. Since, at this point in time,
there isn't yet an online draft of the IPSP, I think it is premature
to say that important issues like this one have been settled.

Ashar.

---

• Prev by Date: SKIP & Patent #5,081,678
• Next by Date: Re: Modular approach to key management
• Prev by thread: SKIP & Patent #5,081,678
• Index(es):
  • Main
  • Thread