[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: draft-ietf-ipsec-ah-md5-00.txt

To: "Housley, Russ" <housley@spyrus.com>
Subject: Re: draft-ietf-ipsec-ah-md5-00.txt
From: "Perry E. Metzger" <perry@imsi.com>
Date: Mon, 16 Jan 1995 15:56:27 -0500
Cc: ipsec@ans.net
In-Reply-To: Your message of "Mon, 16 Jan 1995 11:56:17." <9500167902.AA790286177@spysouth.spyrus.com>
Reply-To: perry@imsi.com


"Housley, Russ" says:
> Ron Rivest has stated that a shared secret at the front of a message is not 
> sufficient for authentication.  I thought that I remembered this being 
> discussed ath the San Jose IETF.

If you read the spec, we address the issue. The length of total IP
packet is authenticated, so appending attacks are not possible.

Perry

References:

Re: draft-ietf-ipsec-ah-md5-00.txt

From: "Housley, Russ" <housley@spyrus.com>

Prev by Date: Re[2]: draft-ietf-ipsec-ah-md5-00.txt
Next by Date: Re: draft-ietf-ipsec-<many>-00.txt
Prev by thread: Re: draft-ietf-ipsec-ah-md5-00.txt
Next by thread: Re[2]: draft-ietf-ipsec-ah-md5-00.txt
Index(es):
- Main
- Thread