[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: replay field size

To: "Niels Ferguson" <niels@DigiCash.com>
Subject: Re: replay field size
From: Stephen Kent <kent@bbn.com>
Date: Wed, 12 Feb 1997 22:37:19 -0500
Cc: <ipsec@tis.com>
In-Reply-To: <199702121320.OAA09687@digicash.com>
Sender: owner-ipsec@ex.tis.com

Niels,

	It's true that a shorter hash makes it easier to find a collision,
for a given packet, assuming a brute force search.  However, Hugo's
argument suggests that because of the way we are using the hash, truncation
may make it even harder to work backwards to find the key, which poses the
really significant concern in this environment.  I agree with your
observation that spending another 4 bytes is not so bad in the grand scheme
of things, but we have made similar tradeoffs in IPSEC (look at the
shortened IV techniques) before, so we have to decide why to draw the line
here.

Steve

References:

Re: replay field size

From: "Niels Ferguson" <niels@DigiCash.com>

Prev by Date: Re: replay field size straw poll
Next by Date: Re: replay field size
Prev by thread: Re: replay field size
Next by thread: RE: replay field size
Index(es):
- Main
- Thread