[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IPv6 Security Last Call Initial Questions

Date: Wed, 29 Mar 1995 18:55:12 -0500
From: "Perry E. Metzger" <perry@imsi.com>

>bound@zk3.dec.com says:
> I am interested in your idea and I think the IPSEC WG should pursue it 
> and I think the discussion is productive.


>Just to repeat -- any exportable algorithm is too weak to provide any
>security. This is the case with all these 40 bit key algorithms. You
>can break them over the weekend in your lab.

I have heard this but not from what "I" consider the experts (e.g.
Bellovin, Karn, Kent, Kaufmann, Eastlake, S. Crocker, Nessett, Tardo,
Linn, and others).  

I take the comments so far to be some input and I am not jumping
completely on the band-wagon, but I think CDMF needs to be investigated as
I have a real problem as all know by now with the ESP DES MUST.

And we do not have consensus obviously by all as this mail shows, that 
ESP should state MUST DES.  For sure NOT in the vendor community.

Thus the investigation continues.............but if your right we will
know shortly for sure.