[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: ESP revisions straw poll

To: Matt Thomas <matt.thomas@altavista-software.com>
Subject: Re: ESP revisions straw poll
From: Bill Sommerfeld <sommerfeld@apollo.hp.com>
Date: Thu, 15 May 1997 16:14:50 -0400
Cc: Daniel Harkins <dharkins@cisco.com>, Stephen Kent <kent@bbn.com>, ipsec@tis.com
In-Reply-To: matt.thomas's message of Wed, 14 May 1997 19:43:41 -0400. <3.0.1.32.19970514194341.006c012c@nntpd.lkg.dec.com>
Sender: owner-ipsec@ex.tis.com

> Hear.  Hear.  Except for the authenticationless.  If [one] has to do AH
> to get the IP header, you don't want to do another authentication.  (I'd
> rather see ESP follow the same exact rules as AH...)

Hmm.  Why can't you just do tunnel mode ESP in that case, where the
inner IP header is the one which really needs protecting.

					- Bill

References:

Re: ESP revisions straw poll

From: Matt Thomas <matt.thomas@altavista-software.com>

Prev by Date: Re: ESP revisions straw poll
Next by Date: ESP without encryption
Prev by thread: Re: ESP revisions straw poll
Next by thread: Re: ESP revisions straw poll
Index(es):
- Main
- Thread