[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Proposed changes to ESP (andf a little AH too)
At 02:10 PM 3/21/97 -0500, Stephen Kent wrote:
> Now for a bigger change! I suggest that we reverse the order of
>encryption and authentication processing, when both are employed. Now,
>authentication processing occurs first, then encryption. This means that a
>receiver must decrypt then autehnticate.
Steve,
I understand the rationale, but want to make sure I understand exactly what
you are proposing. Are you saying that in ESP, the sender would encrypt the
payload and then calculate the MAC over the encrypted payload?
-Bob
Follow-Ups: