[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: AH-MD5

To: hugo@watson.ibm.com, bsimpson@morningstar.com, IPSEC@ans.net
Subject: Re: AH-MD5
From: hughes@hughes.network.com (James P Hughes)
Date: Tue, 24 Jan 1995 20:44:12 -0500
Cc: jis@mit.edu

At  6:40 PM 1/24/95 -0500, hugo@watson.ibm.com wrote:
>Ref:  Your note of Tue, 24 Jan 95 14:02:41 GMT
>
>>> Hearing no objections -- delighted that the WG has come to quiet
>>> consensus.

When the signal to noise ratio gets to low, people stop listening. This is
not consensus, it is simply quiet.

>Just to break the *quiet* consenus: I personally would prefer to
>see a prepend+append MD5 for IP authentication.

I agree 100%, I would much rather have a MD5 hash that is irregardless of
the content of the packet, header or psudo header or whatever.

It is my opinion that prepend and append of the hash with the key is
simple, inexpensive, as well as elegant and prone -not- to be weakened by
future protocol changes.

If the IETF voted, I would vote for prepend and append, but mine is but a
single voice......

Jim

----------------------
James P Hughes <hughes@hughes.network.com>
Key fingerprint =  68 E7 D5 75 3C 88 86 71  D4 34 36 C3 8E DD 48 17

Follow-Ups:

Re: AH-MD5

From: Theodore Ts'o <tytso@MIT.EDU>

Prev by Date: Re: AH-MD5
Next by Date: Re: AH-MD5
Prev by thread: Re: Use of Keyed MD5
Next by thread: Re: AH-MD5
Index(es):
- Main
- Thread