[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: eliminate AH -- unanimous

To: ipsec@tis.com, smb@research.att.com
Subject: Re: eliminate AH -- unanimous
From: marc@mentat.com (Marc Hasson)
Date: Fri, 30 May 97 13:58:57 PDT
Sender: owner-ipsec@ex.tis.com

 > Ever since Bill posted his straw poll, I've been bothered by an
 > intuitive feeling that AH and encryptionless ESP were not equivalent.

Another (minor to me) thing that makes them distinct, as of the latest
specs I have on AH & ESP, is that AH authenticates explicit IPSO values
without having to resort to the additional overhead (20 bytes IPv4, 40
bytes IPv6) of ESP tunnel mode to get the "same" authentication.
                        
                         
   -- Marc --

Prev by Date: Re: eliminate AH -- unanimous
Next by Date: new AH and ESP specs
Prev by thread: Re: eliminate AH -- unanimous
Next by thread: IP Payload Compression Protocol (ippcp) working group
Index(es):
- Main
- Thread