[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: A renewed IPSEC

To: ipsec@TIS.COM, nelson@mcn.netsec.com
Subject: Re: A renewed IPSEC
From: John Lawler <jlawler@vpnet.com>
Date: Tue, 27 Aug 1996 13:37:41 -0700
Sender: ipsec-approval@neptune.tis.com

As has been made clear at the last few IETF meetings, our company is
neutral about the "key management wars"--we will support whatever standard
is selected.

However, we feel very strongly that there is customer demand for network
security today, and we and other companies need to ship products to meet
those demands. Moreover, the Internet market which has sped up
*considerably* over the last year. WE CANNOT AFFORD TO FURTHER DELAY THE
DEVELOPMENT OF THIS INDUSTRY.

Our company has examined both specifications closely, and we will certainly
support whatever standard emerges. However, while we believe that both SKIP
and ISAKMP have significant benefits, it is our position that at this time,
SKIP is the more mature proposal. We concur with Phil Karn (one of the
originators of the IPSEC group) that SKIP is simple and effective. From our
independent vantage point, it appears that every "complaint" about SKIP has
been addressed: perfect forward secrecy has been added, multicast support
has been strengthened. That being the case, we believe it is in everyone's
best interests for SKIP to proceed to the next phase in the standards
process so that commercially shipping products can be developed in a timely
manner.

John Lawler                            | "Fifty-five crystal spheres geared
VPNet                                  | to God's crankshaft is my idea of a
555 North Mathilda Ave, Suite. 110     | satisfying universe."
Sunnyvale, CA 94086                    |       -- "Arcadia", Tom Stoppard
(408) 720-7618   jlawler@vpnet.com     |

To: Phil Karn <karn@qualcomm.com>
Cc: ipsec@TIS.COM
Subject: Re: "user" and "network layer" security. 
In-Reply-To: Your message of "Tue, 27 Aug 1996 15:26:06 PDT."
             <199608272226.PAA28724@servo.qualcomm.com> 
Reply-To: perry@piermont.com
X-Reposting-Policy: redistribute only with permission
Date: Tue, 27 Aug 1996 18:33:19 -0400
From: "Perry E. Metzger" <perry@piermont.com>
Sender: ipsec-approval@neptune.tis.com
Precedence: bulk
Message-ID:  <9608280729.aa12048@neptune.TIS.COM>

Phil Karn writes:
> >40 bit RC4 based SSL...
> 
> Excerpted from http://wellsfargo.com/nav/security2/:
> 
> 	You can use International grade security for most Internet Banking
> 	functions EXCEPT the Internet Bill Payment Service. To access the
> 	Internet Bill Payment service, you will need to use an Internet
> 	browser that contains "U.S." or "Domestic" grade security encryption.

They've come a long way, then...

Perry

Prev by Date: Re: "user" and "network layer" security.
Next by Date: Re: "user" and "network layer" security.
Prev by thread: "user" and "network layer" security, a renewed IPSEC.
Next by thread: Will the real PFS please stand up?
Index(es):
- Main
- Thread