[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Proposed changes to ESP (andf a little AH too)

To: Stephen Kent <kent@bbn.com>
Subject: Re: Proposed changes to ESP (andf a little AH too)
From: Bob Monsour <rmonsour@earthlink.net>
Date: Fri, 21 Mar 1997 12:21:59 -0800
Cc: ipsec@tis.com
Sender: owner-ipsec@ex.tis.com

At 02:10 PM 3/21/97 -0500, Stephen Kent wrote:
>	Now for a bigger change!  I suggest that we reverse the order of
>encryption and authentication processing, when both are employed.  Now,
>authentication processing occurs first, then encryption.  This means that a
>receiver must decrypt then autehnticate.

Steve,

I understand the rationale, but want to make sure I understand exactly what
you are proposing. Are you saying that in ESP, the sender would encrypt the
payload and then calculate the MAC over the encrypted payload?

-Bob

Follow-Ups:

Re: Proposed changes to ESP (andf a little AH too)

From: Bill Sommerfeld <sommerfeld@apollo.hp.com>

Re: Proposed changes to ESP (andf a little AH too)

From: Stephen Kent <kent@bbn.com>

Prev by Date: Proposed changes to ESP (andf a little AH too)
Next by Date: Re: Proposed changes to ESP (andf a little AH too)
Prev by thread: Re: Proposed changes to ESP (andf a little AH too)
Next by thread: Re: Proposed changes to ESP (andf a little AH too)
Index(es):
- Main
- Thread