Re: Predictable SPIs (was: Re: A pothole in ISAKMP/Oakley)

[Hugo Krawczyk <hugo@ee.technion.ac.il>]

Although I have trouble following this list these days
I want to addd my voice to those that recommend decoupling the issue of
SPI randomness/predictability from the key derivation
question. As in many other cases I am in favor of making
the crypto right and robust independently of changing system requirements.

The structure or lack of structure of an SPI is mainly a system
requirement not a cryptographic one. Even if decisions are made
on this issue on the basis of defending against denial of
service attacks one cannot compare the importance of this 
functionality relative to having a robust key derivation
mechanism in place.

The suggestion by Pau-Chen and Ran solves the problem independently
of the SPI decisions.

Hugo

---

• Prev by Date: Re: Comments on draft-ietf-ipsec-new-auth-00.txt
• Next by Date: Re: Another pothole in ISAKMP/Oakley
• Prev by thread: Re: Predictable SPIs (was: Re: A pothole in ISAKMP/Oakley)
• Next by thread: Small subgroups and ISAKMP/Oakley
• Index(es):
  • Main
  • Thread