[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IPv6 Security Last Call Initial Questions

To: perry@imsi.com
Subject: Re: IPv6 Security Last Call Initial Questions
From: bound@zk3.dec.com
Date: Thu, 30 Mar 95 00:07:25 -0500
Cc: bound@zk3.dec.com, ipsec@ans.net
In-Reply-To: Your message of "Wed, 29 Mar 95 18:55:12 EST." <9503292355.AA16549@snark.imsi.com>

Date: Wed, 29 Mar 1995 18:55:12 -0500
From: "Perry E. Metzger" <perry@imsi.com>

>bound@zk3.dec.com says:
> I am interested in your idea and I think the IPSEC WG should pursue it 
> and I think the discussion is productive.

>Jim;

>Just to repeat -- any exportable algorithm is too weak to provide any
>security. This is the case with all these 40 bit key algorithms. You
>can break them over the weekend in your lab.

I have heard this but not from what "I" consider the experts (e.g.
Bellovin, Karn, Kent, Kaufmann, Eastlake, S. Crocker, Nessett, Tardo,
Linn, and others).  

I take the comments so far to be some input and I am not jumping
completely on the band-wagon, but I think CDMF needs to be investigated as
I have a real problem as all know by now with the ESP DES MUST.

And we do not have consensus obviously by all as this mail shows, that 
ESP should state MUST DES.  For sure NOT in the vendor community.

Thus the investigation continues.............but if your right we will
know shortly for sure.  

/jim

Prev by Date: Re: IPv6 Security Last Call Initial Questions
Next by Date: Re: IPv6 Security Last Call Initial Questions
Prev by thread: Re: IPv6 Security Last Call Initial Questions
Next by thread: Re: IPv6 Security Last Call Initial Questions
Index(es):
- Main
- Thread