[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

"Default" cipher and authenticator

To: ipsec@tis.com
Subject: "Default" cipher and authenticator
From: Rodney Thayer <rodney@sabletech.com>
Date: Mon, 21 Jul 1997 18:12:04 -0400
Sender: owner-ipsec@ex.tis.com

I didn't think we made SHA-1 part of the minimum default.  I thought it was
just HMAC MD5.  I agree with the DES CBC Explicit IV.

>From: Dan.McDonald@eng.sun.com (Dan McDonald)
>Subject: "Default" cipher and authenticator
>To: ipsec@tis.com
>Date: Mon, 21 Jul 1997 14:23:30 -0700 (PDT)
>Sender: owner-ipsec@ex.tis.com
>
>Hello!
>
>What are the minimum default cipher algorithms and authenticator algorithms
>currently?  From what I can tell:
>
>AUTHENTICATORS			CIPHERS
>==============			=======
>HMAC-MD5-96			DES-CBC (explicit IV)
>HMAC-SHA-1-96
>
>And when I say "Authenticator" I mean an algorithm that works for both AH and
>ESP largely unmodified.  So I use the exact HMAC-SHA-1-96 algorithm for both
>AH and combined ESP transforms.
>
>If any of my assumptions here are wrong, I'd appreciate a quick and timely
>correction, sent to the list as well, so we don't get confused.
>
>Thanks!
>--
>Daniel L. McDonald  -  Solaris Internet Engineering  ||  MY OPINIONS ARE NOT
>Mail: danmcd@eng.sun.com, danmcd@kebe.com <*>        ||  NOT NECESSARILY
SUN'S!
>Phone: (415) 786-6815            |"rising falling at force ten
>WWW: http://www.kebe.com/~danmcd | we twist the world and ride the wind" -
Rush
>
>

Follow-Ups:

Re: "Default" cipher and authenticator

From: Derrell Piper <piper@cisco.com>

Re: "Default" cipher and authenticator

From: Ran Atkinson <rja@inet.org>

Prev by Date: "Default" cipher and authenticator
Next by Date: Re: Re[4]: ISAKMP performance
Prev by thread: "Default" cipher and authenticator
Next by thread: Re: "Default" cipher and authenticator
Index(es):
- Main
- Thread