[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: New draft -- IPSEC AH

To: Marc Hasson <marc@mentat.com>
Subject: Re: New draft -- IPSEC AH
From: Stephen Kent <kent@bbn.com>
Date: Tue, 3 Jun 1997 17:16:13 -0400
Cc: ipsec@tis.com
In-Reply-To: <9706022139.AA02322@mentat.com>
Sender: owner-ipsec@ex.tis.com

Marc,

	Thanks for all of your detailed comments:

	- The backwards compatibility comment refers to the fact that
previous drafts (and the RFC) calls for a "minus 2" length adjustment and
we didn't want to change that unnecessarily.  However, with the permission
of the implementors, I'd be happy to make this a "minus 3" adjustment and
eliminate the parenthetical comment.

	-We'll revise the text to say that a null authentication algorithm
would have a length field of "1" (not "0") due to the addition of sequence
number as a mandatory field.

	- We'll change the initial value for the sequence number counter to
be "0" instead of "1" so that the first transmitted packet will contain the
value "1".

	- We'll change the max counter value to 2^32 (from 2^32-1) to
reflect the previous change.

Steve

Follow-Ups:

Re: New draft -- IPSEC AH

From: Norman Shulman <norm@tor.securecomputing.com>

References:

Re: New draft -- IPSEC AH

From: marc@mentat.com (Marc Hasson)

Prev by Date: Re: IPSEC and Network Analysis
Next by Date: Re: New draft -- IPSEC ESP
Prev by thread: Re: New draft -- IPSEC AH
Next by thread: Re: New draft -- IPSEC AH
Index(es):
- Main
- Thread