[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IPsec mandatory authentication algorithms

To: Bart Preneel <Bart.Preneel@esat.kuleuven.ac.be>
Subject: Re: IPsec mandatory authentication algorithms
From: Robert Moskowitz <rgm3@chrysler.com>
Date: Tue, 07 Oct 1997 12:50:15 -0400
Cc: "C. Harald Koch" <chk@utcc.utoronto.ca>, ipsec@tis.com, Karen Seo <kseo@bbn.com>
In-Reply-To: <Pine.HPP.3.96.971007182802.19130g-100000@domein.esat.kuleuven.ac.be>
References: <3.0.3.32.19971007121622.00c3f960@dilbert.is.chrysler.com>
Reply-To: rgm3@chrysler.com
Sender: owner-ipsec@ex.tis.com

At 06:35 PM 10/7/97 +0200, Bart Preneel wrote:
>
>I would hesitate to use HMAC-MD5 unless I could switch overnight
>to HMAC-SHA1. 
>
Well you could.  Just change your policy, and your next Oakley Main Mode
SHOULD negotiate HMAC-SHA1...

BTW, most of the vendors that attended the Ottawa workshop were
implementing both HMAC-MD5 and HMAC-SHA1.


Robert Moskowitz
Chrysler Corporation
(810) 758-8212

References:

Re: IPsec mandatory authentication algorithms

From: Robert Moskowitz <rgm3@chrysler.com>

Re: IPsec mandatory authentication algorithms

From: Bart Preneel <Bart.Preneel@esat.kuleuven.ac.be>

Prev by Date: Re: IPsec mandatory authentication algorithms
Next by Date: Re: IPsec Architecture -- proposed changes
Prev by thread: Re: IPsec mandatory authentication algorithms
Next by thread: Re: IPsec mandatory authentication algorithms
Index(es):
- Main
- Thread