[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: Calling the question: implicit vs. explicit IV
Agreed. How we derive the IV for each packet should be implementation
dependant. Using pseudo-random values is quite expensive at the network
level. I beleive that most of the new ESP algorithm drafts provide for
this.
>----------
>From: Ben Rogers[SMTP:ben@Ascend.COM]
>Sent: Friday, August 01, 1997 12:26 PM
>To: Derrell Piper
>Cc: Theodore Y. Ts'o; ipsec@tis.com
>Subject: Re: Calling the question: implicit vs. explicit IV
>
>Derrell Piper writes:
>> I would like to see only an explicit IV used for ESP.
>
>Is there a consensus on whether we will mandate the contents of an
>explicit IV? If the contents are implementation dependent, then this
>doesn't seem to cause problems, but requiring them to be pseudo-random
>seems to needlessly add overhead for compliant implementations.
>
>
>ben
>
>
>
>