[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Bellovin's attack and others like it

To: "Avi Rubin" <rubin@faline.bellcore.com>
Subject: Re: Bellovin's attack and others like it
From: "Perry E. Metzger" <perry@imsi.com>
Date: Tue, 11 Apr 1995 16:47:56 -0400
Cc: ipsec@ans.net
In-Reply-To: Your message of "Tue, 11 Apr 1995 16:20:55 EDT." <199504112021.AA09432@interlock.ans.net>
Reply-To: perry@imsi.com


"Avi Rubin" says:
> It look like there are two approaches out there, using a UDP
> port for key management, or having separate layers for key mgmt
> vs. data packets.
> 
> I'd like to see a constructive discussion of the tradeoffs using
> each technique from Pau-Chen, Hilarie and others.

I'd say that there isn't much of a good reason not to use a UDP
port. I've heard arguments to the effect that this somehow causes
layer mixing but my design doesn't seem to suffer when things are done
this way.

Perry

Follow-Ups:

Re: Bellovin's attack and others like it

From: pau@watson.ibm.com (Pau-Chen Cheng)

References:

Re: Bellovin's attack and others like it

From: "Avi Rubin" <rubin@faline.bellcore.com>

Prev by Date: Re: Bellovin's attack and others like it
Next by Date: Re: Bellovin's attack and others like it
Prev by thread: Re: Bellovin's attack and others like it
Next by thread: Re: Bellovin's attack and others like it
Index(es):
- Main
- Thread