[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Proposed changes to ESP (andf a little AH too)

To: ji@hol.gr
Subject: Re: Proposed changes to ESP (andf a little AH too)
From: Uri Blumenthal <uri@watson.ibm.com>
Date: Sun, 23 Mar 1997 13:20:53 -0500 (EST)
Cc: ipsec@tis.com
In-Reply-To: <199703212153.XAA26081@del.tla.org> from "John Ioannidis" at Mar 21, 97 11:52:56 pm
Reply-To: uri@watson.ibm.com
Sender: owner-ipsec@ex.tis.com

John Ioannidis says:
> I'm all in favour of doing the encryption first and the authentication 
> after, so that on receipt we can authenticate before we receive, but
> wasn't there some cryptographic argument against that sort of thing?

The main argument against doing encryption first and auth second would
be - generally speaking there is no guarantee even if you verified the 
CIPHERTEXT correctly,  that the PLAINTEXT finally obtained is the same
as was sent.
-- 
Regards,
Uri		uri@watson.ibm.com
-=-=-=-=-=-=-
<Disclaimer>

Follow-Ups:

Re: Proposed changes to ESP (andf a little AH too)

From: Stephen Kent <kent@bbn.com>

Re: Proposed changes to ESP (andf a little AH too)

From: daw@cs.berkeley.edu (David Wagner)

References:

Re: Proposed changes to ESP (andf a little AH too)

From: John Ioannidis <ji@hol.gr>

Prev by Date: Re: Who is ELVIS?
Next by Date: Re: Proposed changes to ESP (andf a little AH too)
Prev by thread: Re: Proposed changes to ESP (andf a little AH too)
Next by thread: Re: Proposed changes to ESP (andf a little AH too)
Index(es):
- Main
- Thread