[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: replay field size

To: "'ipsec@tis.com'" <ipsec@tis.com>, "'Ran Atkinson'" <rja@inet.org>
Subject: RE: replay field size
From: Roy Pereira <rpereira@TimeStep.com>
Date: Tue, 11 Feb 1997 14:32:50 -0500
Sender: owner-ipsec@ex.tis.com

>
>>Should AH and ESP both have a fixed size replay counter ? (Yes/No/Don't
>>Care)

Yes.

>>If they have a fixed size counter, what size should it be? (32 bits/64 bits)

Don't Care.  Although, a 32-bit replay field might be easier to code on
a 32-bit CPU than a 64-bit replay.  I'm not sure since I haven't seen
any sample code for 64-bit replay protection.

>>Should SHA-1 output be truncated to 128 bits from 160 bits ? (Yes/No/Don't
>>Care)

No, I don't think that the digest size should be truncated to fit a
64-bit alignment.  That is not what the digest is intended to provide.
Padding would be preferable.

Prev by Date: RE: replay field size
Next by Date: RE: replay field size straw poll
Prev by thread: RE: replay field size
Next by thread: Re: replay field size
Index(es):
- Main
- Thread