[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: (IPng) Re: Proposed message on perfect forward security

To: bound@zk3.dec.com
Subject: Re: (IPng) Re: Proposed message on perfect forward security
From: "Perry E. Metzger" <perry@imsi.com>
Date: Tue, 14 Mar 1995 14:42:32 -0500
Cc: ipng@sunroof.eng.sun.com, ipsec@ans.net
In-Reply-To: Your message of "Tue, 14 Mar 1995 13:46:33 EST." <199503141851.AA22418@interlock.ans.net>
Reply-To: perry@imsi.com


Jim,

bound@zk3.dec.com says:
> 3.  Can't we discuss this without mention of SKIP so that we can
>     make sure either in-band or out-band can be used?

The problem is that SKIP is the only proposal we've had thats of this
form. Given that, its very difficult to discuss this in the general
case -- I'm not even sure what the "general case" would look like. My
suspicion is that other similar techniques would use very different
machinery. SKIP, as it is, cannot reuse any of the standard IPSP
machinery -- it needs its own transforms, its own hooks to the key
management layer, etc. I'm not sure that other similar techniques
could share any of SKIP's machinery, and I'm not sure at all that
there is a "general case" here to discuss. Therefore, I prefer to keep
discussion concrete and focus on SKIP.

Perry

References:

Re: (IPng) Re: Proposed message on perfect forward security

From: bound@zk3.dec.com

Prev by Date: Re: (IPng) Re: Proposed message on perfect forward security
Next by Date: Re: (IPng) Re: Proposed message on perfect forward security
Prev by thread: Re: (IPng) Re: Proposed message on perfect forward security
Next by thread: Re: (IPng) Re: Proposed message on perfect forward security
Index(es):
- Main
- Thread