[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

replay mandatory?

To: ipsec@tis.com
Subject: replay mandatory?
From: Rodney Thayer <rodney@sabletech.com>
Date: Tue, 25 Mar 1997 10:29:50 -0500
Sender: owner-ipsec@ex.tis.com

Replay is mandatory?  As in, replay size of 1 (no replay checking) is
forbidden?

>From: Hsin Fang <fang@snad.ncsl.nist.gov>
>Date: Mon, 24 Mar 1997 11:23:26 -0500 (EST)
>To: kent@bbn.com
>Subject: Re: Proposed changes to ESP (andf a little AH too)
>Cc: ipsec@tis.com
>Sender: owner-ipsec@ex.tis.com
>
>
>Steve,
>
>In your 23 Mar 1997 note, you wrote:
>
>> As for the window size issue, I agree that one can simply decline
>> to negotiate a size of 1, as a means of addressing this issue.  However, I
>> really believe that a size of 1 is so awful that it ought not be allowed.
>> Moreover, only a size of 1 is proposed as required so far, and if we say
>> dom't do 1, then we cannot rely on anyone doing 32 (and multiples thereof)
>> instead.  So, that's why I'd like to change to make 32 a MUST support, and
>> multiples of 32 be recommemded optional window sizes.
>
>I can understand that mandatory window size of 1 is not a good idea: it
force 
>to drop every single out-of-order packet. But I don't see any good reason to 
>force the window size to be 32*X (X >= 1). Shouldn't people be allowed to
pick
>up any smaller number, let us say 8 or 16, as best fit their application?
>Window size of 32*X when X>=2 is quite big to me considering that it is a per
>destination/per security association figure.
>
>Regards,
>Hsin
>
>
>
>

--------
Rodney Thayer <rodney@sabletech.com>
PGP: BB1B6428 409129AC  076B9DE1 4C250DD8

Follow-Ups:

Re: replay mandatory?

From: Stephen Kent <kent@bbn.com>

Prev by Date: Re: Proposed changes to ESP (andf a little AH too)
Next by Date: Re: the COMPRESSION discussion
Prev by thread: oakley-03: last call comments
Next by thread: Re: replay mandatory?
Index(es):
- Main
- Thread