[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: replay field size

To: mjo@tycho.ncsc.mil
Subject: RE: replay field size
From: Phil Karn <karn@qualcomm.com>
Date: Tue, 11 Feb 1997 22:04:54 -0800 (PST)
CC: ipsec@tis.com, rja@inet.org, palamber@us.oracle.com
In-reply-to: <9702112127.AA27443@tarius.tycho.ncsc.mil> (mjo@tycho.ncsc.mil)
Sender: owner-ipsec@ex.tis.com

My opinions:

Make the replay counters 32 bits for both AH and ESP. Should be plenty
for any rational key lifetime, and the arithmetic is easier on
compilers without "long long" data types...

Shorten the SHA-1 hash to 128 bits. Probably won't be any worse than
MD-5...

Phil

Follow-Ups:

Re: replay field size

From: "Perry E. Metzger" <perry@piermont.com>

Re: replay field size

From: Uri Blumenthal <uri@watson.ibm.com>

References:

RE: replay field size

From: mjo@tycho.ncsc.mil (Michael J. Oehler)

Prev by Date: Re[2]: Path MTU Discovery
Next by Date: Re: replay field size
Prev by thread: RE: replay field size
Next by thread: Re: replay field size
Index(es):
- Main
- Thread