[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Slicing and Dicing in new-esp

To: mcr@sandelman.ottawa.on.ca
Subject: Re: Slicing and Dicing in new-esp
From: ho@earth.hpc.org (Hilarie Orman)
Date: Fri, 11 Apr 1997 17:25:43 -0400
Cc: ipsec@tis.com
In-reply-to: Yourmessage <199704112057.NAA14171@baskerville.CS.Arizona.EDU>
Sender: owner-ipsec@ex.tis.com

> My understanding is that this won't happen: the key management
> daemon can produce as many bits as needed for the security bundle.

I hope it won't happen.

The key management can produce as many bits of entropy as are needed
for the security bundle; whether or not it presents that entropy in a
string with as many bits as the security bundle desires is less clear.

If it does produce the correct number of bits, then it might as well
present them pre-sliced, it seems to me.  If the transforms still wish
to twiddle the bits, they can do so.

Hilarie

Prev by Date: Re: MUST vs. SHOULD audit
Next by Date: Re: IPSec MIB
Prev by thread: Re: Slicing and Dicing in new-esp
Next by thread: RE: Slicing and Dicing in new-esp
Index(es):
- Main
- Thread