[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Replay counter sizes: AH vs ESP -Reply

To: mleech@nortel.ca
Subject: Replay counter sizes: AH vs ESP -Reply
From: CJ Lee <CJ_LEE@novell.com>
Date: Thu, 05 Dec 1996 17:37:23 -0800
Cc: ipsec@tis.com
Sender: owner-ipsec@ex.tis.com

>>> "Marcus Leech" <mleech@nortel.ca> 12/05/96
11:31am   wrote:>>>
I note in reviewing:

draft-ietf-ipsec-esp-des-md5-03.txt

and

draft-ietf-ipsec-ah-hmac-md5-04.txt

That the counter sizes are different, even though the
underlying integrity
  mechanisms are identical (HMAC MD5).  I can see
this costing extra
  code in implementations, which wouldn't be
necessary if the counters
  were of the same size.

Marcus,
     Both Derrell Piper and I raised the same question
without getting any response.  I suggest that unless
someone can provide reasonable argument to justify
the difference of the replay counter sizes, we should
make them the same.

cj_lee@novell.com

Follow-Ups:

Re: Replay counter sizes: AH vs ESP -Reply

From: Stephen Kent <kent@bbn.com>

Re: Replay counter sizes: AH vs ESP -Reply

From: Ran Atkinson <rja@cisco.com>

Prev by Date: RE: ANNOUNCEMENT: 1997 RSA Data Security Conference
Next by Date: Re: Replay counter sizes: AH vs ESP -Reply
Prev by thread: Replay counter sizes: AH vs ESP
Next by thread: Re: Replay counter sizes: AH vs ESP -Reply
Index(es):
- Main
- Thread