[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: ISAKMP performance

To: Phil Karn <karn@Qualcomm.com>
Subject: Re: ISAKMP performance
From: Daniel Harkins <dharkins@cisco.com>
Date: Mon, 14 Jul 1997 17:35:57 -0700
cc: barney@databus.com, ipsec@tis.com
In-reply-to: Your message of "Mon, 14 Jul 1997 16:59:53 PDT." <199707142359.QAA15610@servo.qualcomm.com>
Sender: owner-ipsec@ex.tis.com

> >The issue of ISAKMP performance has come up on the l2tp list, with
> >a claim that the Diffie-Hellman negotiation takes too long to be
> >viable when a box comes up after a failure.  Does anyone have any
> >figures on this, or a URL?
> 
> If DH performance is a problem (and I'm not saying it is), given
> Moore's Law and the speed of this working group, it certainly won't
> be by the time the spec comes out.

Don't you mean an "implementable" spec?

But I think I know the reason for the question. And if ISAKMP could
statelessly cache peers' Diffie-Hellman public values even through 
failover it wouldn't be an issue. But, alas, it doesn't.

  sigh,

  Dan.

Follow-Ups:

Re: ISAKMP performance

From: "Matt Crawford" <crawdad@fnal.gov>

References:

Re: ISAKMP performance

From: Phil Karn <karn@Qualcomm.com>

Prev by Date: Re: ISAKMP performance
Next by Date: Re: ISAKMP performance
Prev by thread: Re: ISAKMP performance
Next by thread: Re: ISAKMP performance
Index(es):
- Main
- Thread