[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: eliminate AH -- unanimous

To: wsimpson@greendragon.com (William Allen Simpson)
Subject: Re: eliminate AH -- unanimous
From: Dan.McDonald@Eng.Sun.COM (Dan McDonald)
Date: Fri, 30 May 1997 13:45:49 -0700 (PDT)
Cc: ipsec@tis.com
In-Reply-To: <5984.wsimpson@greendragon.com> from "William Allen Simpson" at May 30, 97 02:05:33 pm
Sender: owner-ipsec@ex.tis.com

> Based on the responses to this list over the past week, it appears that
> the WG is unanimous that AH will be eliminated as redundant.

As someone else pointed out, I'd better get my head out of other problems and
address this one.

I'll give you folks one simple reason why you MUST NOT eliminate AH:

	E X P O R T   C O N T R O L

Even though there are valiant efforts within other portions of my company to
circumvent this dain-bramage, export control is still a problem, and will
continue to be a problem until the law is overturned.

ESP, even if only used encryptionless is "encryption enabling" technology,
and falls under close export-control scrutiny.  AH does not, and can be slid
out the door with relative ease.

Steve B. also makes a point about the AH header semantics being what they
are.

Quit screwing with the spec, folks.  Steve Kent and gang's clarifications are
about as much as I can further stomach on this front.

Now I have to go fight fires again.

Enjoy,
Dan

Follow-Ups:

Re: eliminate AH -- unanimous

From: Karl Fox <karl@Ascend.COM>

References:

eliminate AH -- unanimous

From: "William Allen Simpson" <wsimpson@greendragon.com>

Prev by Date: Re: eliminate AH -- unanimous
Next by Date: Re: eliminate AH -- unanimous
Prev by thread: Re: eliminate AH -- unanimous
Next by thread: Re: eliminate AH -- unanimous
Index(es):
- Main
- Thread