[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Diffie-Hellman (note by Hugo)

To: ipsec@ans.net
Subject: Re: Diffie-Hellman (note by Hugo)
From: "Donald E. Eastlake 3rd (Beast)" <dee@skidrow.tay.dec.com>
Date: Mon, 12 Dec 94 20:26:41 -0500
In-Reply-To: Your message of "Mon, 12 Dec 94 16:00:02 PST." <9412130000.AA28679@miraj.Eng.Sun.COM>


Let me second Ashar.  Different users need different levels of
security.  For those who ask for confidentiality, then I think we need
to provide strong confidentiality with perfect forward secrecy.  For
those who ask for just authentication, we need to provide strong
authentication but secrecy of any sort is not a question.

And there may be many cases where only "cookie security", as included
in Phil Karn's proposal, is needed.  If I am on a relatively trusted
local net I might be satisfied for some purposes (such as an ICMP
redirect) merely to be usre it originated locally.  I could establish
that be merely requiring it to have a cookie without any
confidentiality or further authentication.

Donald

From:  Ashar.Aziz@eng.sun.com (Ashar Aziz)
To:  hugo@watson.ibm.com, amir@watson.ibm.com
Cc:  ipsec@ans.net
>
>>From ipsec-request@ans.net Mon Dec 12 12:17:05 1994
>>I agree with Hugo. The requirement of `perfect forward secrecy' is non
>>trivial and does not come for free. However, since some think it is a must,
>>then it would be useful to decide it is a requirement - unless we have some
>>(substantial) objections. After all, we all agree that it improves security.
>>If we can reach such agreement, we would be making some progress.
>>
>>As usual, it is up to the subscribed members of the mailing list to let their
>>voices be heard in order for us to make progress - and please, supporting
>>is as important as objecting.
>
>Let me both support and object. I support perfect forward secrecy
>for situations where secrecy is essential.
>
>I dont support perfect forward secrecy where authentication, and
>not secrecy, is the prime consideration. Like you said, it isn't
>free. If you dont want it, dont need it, you shouldn't have to pay
>for it. That is why I presented perfect forward secrecy as an
>option in my SKIP talk. There are many situations in the context of 
>Internet applications where authentication (and not secrecy) is the 
>prime issue.
>
>Ashar.

Follow-Ups:

Re: Diffie-Hellman (note by Hugo)

From: Phil Karn <karn@qualcomm.com>

References:

Re: Diffie-Hellman (note by Hugo)

From: Ashar.Aziz@eng.sun.com (Ashar Aziz)

Prev by Date: Re: Diffie-Hellman (note by Hugo)
Next by Date: architecture
Prev by thread: Re: Diffie-Hellman (note by Hugo)
Next by thread: Re: Diffie-Hellman (note by Hugo)
Index(es):
- Main
- Thread