[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re[2]: AH (without ESP) on a secure gateway

To: "Whelan, Bill" <bwhelan@nei.com>
Subject: Re[2]: AH (without ESP) on a secure gateway
From: Stephen Kent <kent@bbn.com>
Date: Mon, 2 Dec 1996 21:20:17 -0500
Cc: ipsec@tis.com
In-Reply-To: <9611028495.AA849549400@netx.nei.com>
Sender: owner-ipsec@ex.tis.com

Bill,

	I have assumed that hosts would implement both AH and ESP, not just
the former or the latter.  Since ESP no longer implies the use of
encryption, i.e., it may be used just for authentication, the question of
export is still open in principle.  The real issue is what set of
algorithms is supported by an ESP implementation, not whether the protocol,
per se, could be used for encryption.  If we choose to define a compliant
subset implementation for export, which has not been the mood of the WG so
far, one could explicitly address the export issue and make ESP subset
implementations just as exportable as AH implementations.

Steve

Follow-Ups:

Re: Re[2]: AH (without ESP) on a secure gateway

From: Ran Atkinson <rja@cisco.com>

References:

Re[2]: AH (without ESP) on a secure gateway

From: "Whelan, Bill" <bwhelan@nei.com>

Prev by Date: Re: AH (without ESP) on a secure gateway
Next by Date: Re: AH (without ESP) on a secure gateway
Prev by thread: Re[2]: AH (without ESP) on a secure gateway
Next by thread: Re: Re[2]: AH (without ESP) on a secure gateway
Index(es):
- Main
- Thread