[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re[2]: Human I&A, IPsec, and their non-relationship

To: uri@watson.ibm.com, karn@qualcomm.com
Subject: Re[2]: Human I&A, IPsec, and their non-relationship
From: "Housley, Russ" <housley@spyrus.com>
Date: Mon, 19 Dec 94 13:26:07
Cc: atkinson@sundance.itd.nrl.navy.mil, ipsec@ans.net, jis@mit.edu
Encoding: 457 Text


Phil:

> Well, nothing says you have to do DH for each user. Inspired by Jeff
> Schiller's comments about 802.10, in Photuris I will use DH to
> establish some shared secret material between the hosts and then
> hash that to generate distinct session keys for each SAID.

I do not know what Jeff said, but the whole point od SPAWN-KEY is to allow 
multiple security associations to be created from one key agreement (e.g., 
D-H exchange).

Russ

Prev by Date: Re[2]: Size of IV field in DES-CBC mode
Next by Date: Re: Size of IV field in DES-CBC mode
Next by thread: Re: IPSEC at Dec IETF
Index(es):
- Main
- Thread