[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Calling the question: implicit vs. explicit IV



Agreed.  How we derive the IV for each packet should be implementation
dependant.  Using pseudo-random values is quite expensive at the network
level.  I beleive that most of the new ESP algorithm drafts provide for
this.

>----------
>From: 	Ben Rogers[SMTP:ben@Ascend.COM]
>Sent: 	Friday, August 01, 1997 12:26 PM
>To: 	Derrell Piper
>Cc: 	Theodore Y. Ts'o; ipsec@tis.com
>Subject: 	Re: Calling the question: implicit vs. explicit IV 
>
>Derrell Piper writes:
>> I would like to see only an explicit IV used for ESP.
>
>Is there a consensus on whether we will mandate the contents of an
>explicit IV?  If the contents are implementation dependent, then this
>doesn't seem to cause problems, but requiring them to be pseudo-random
>seems to needlessly add overhead for compliant implementations.
>
>
>ben
>
>
>
>