[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Proposed changes to ESP (andf a little AH too)

To: Hsin Fang <fang@snad.ncsl.nist.gov>
Subject: Re: Proposed changes to ESP (andf a little AH too)
From: Stephen Kent <kent@bbn.com>
Date: Tue, 25 Mar 1997 10:54:58 -0500
Cc: ipsec@tis.com
In-Reply-To: <199703241623.LAA06124@emu.ncsl.nist.gov>
Sender: owner-ipsec@ex.tis.com

Hsin,

	Arbitrary size windows are potentially expensive to implement,
though conceptually simple.  We chose 32 (and multiples thereof) for the
ease with which one can implement the window on a 32 bit (or 64 bit)
machine.  This sort of pragmatic recognition of commonly deployed machine
word sizes also shows up in the IPv6 packet alignment requirements, so it
is not out of pace here.  Note that there is no security risk associated
with a larger window size, i.e., in all cases all replays are rejected.
The larger window size just provides a greater tolerance for out-of-order
arrival, which is itsefl a feature of IP.

Steve

References:

Re: Proposed changes to ESP (andf a little AH too)

From: Hsin Fang <fang@snad.ncsl.nist.gov>

Prev by Date: Re: the COMPRESSION discussion
Next by Date: Re: replay mandatory?
Prev by thread: Re: Proposed changes to ESP (andf a little AH too)
Next by thread: Proposed changes to ESP (andf a little AH too)
Index(es):
- Main
- Thread