[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Field Variance Analysis

To: cmetz@sundance.itd.nrl.navy.mil
Subject: Re: Field Variance Analysis
From: Hilarie Orman <ho@cs.arizona.edu>
Date: Mon, 14 Aug 1995 19:58:10 -0700
Cc: ipsec@ans.net
In-Reply-To: Yourmessage <199508150221.AA60218@interlock.ans.net>

>	The third is one that many people discount, claiming that IPSO is
> just broken and shouldn't be a factor. I'm not here to judge IPSO, but
> certain government organizations have a large IPSO deployed base and they
> won't buy into IPsec at all if it leaves them SOL with IPSO. Both the second
> and third on this list implies no alternative but to protect IPv4 options
> if we are going to defend against these attacks. If we aren't going to
> defend against these attacks, then we can talk in terms of not authenticating
> options.

Might not the certain government organizations use encapsulation with
a MD5 transform as a method of protecting the IPSO?

Follow-Ups:

Re: Field Variance Analysis

From: "Perry E. Metzger" <perry@panix.com>

References:

Re: Field Variance Analysis

From: Craig Metz <cmetz@sundance.itd.nrl.navy.mil>

Prev by Date: SKIP BOF minutes
Next by Date: Re: Field Variance Analysis
Prev by thread: Re: Field Variance Analysis
Next by thread: Re: Field Variance Analysis
Index(es):
- Main
- Thread