[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Re[2]: IPSEC document reading party!

To: Roy Pereira <rpereira@TimeStep.com>
Subject: Re: Re[2]: IPSEC document reading party!
From: "Derrell D. Piper" <ddp@network-alchemy.com>
Date: Sat, 13 Dec 1997 16:23:03 -0800
cc: "'svakil@usr.com'" <svakil@usr.com>, "'gordo@telsur.cl'" <gordo@telsur.cl>, "'tytso@MIT.EDU'" <tytso@MIT.EDU>, "'John Ioannidis'" <ji@research.att.com>, "'ipsec@tis.com'" <ipsec@tis.com>
In-reply-to: Your message of "Sat, 13 Dec 1997 14:17:16 EST." <c=US%a=_%p=TimeStep_Corpora%l=TSNTSRV2-971213191716Z-319@tsntsrv2.timestep.com>
Sender: owner-ipsec@ex.tis.com

>What John was trying to say, I think, is that tunneled ESP without
>encryption and _integrity_ would be better served by just using
>IP-in-IP.

I'd agree with that.  But that wasn't clear from John's message.  I'll add a
statement to this regard in the next rev of the DOI.

Derrell

>-----Original Message-----
>From:	svakil@usr.com [SMTP:svakil@usr.com]
>Sent:	Saturday, December 13, 1997 1:49 PM
>To:	gordo@telsur.cl; tytso@MIT.EDU; John Ioannidis
>Cc:	ipsec@tis.com
>Subject:	Re[2]: IPSEC document reading party!
>
>     ESP tunneling without encryption cannot be substituted with IP-in-IP 
>     tunneling.  It provides authentication and integrity services to the 
>     encapsulated packet.  Note that this is different from AH which will

Follow-Ups:

Re: Re[2]: IPSEC document reading party!

From: Ben Rogers <ben@Ascend.COM>

References:

RE: Re[2]: IPSEC document reading party!

From: Roy Pereira <rpereira@TimeStep.com>

Prev by Date: RE: Re[2]: IPSEC document reading party!
Next by Date: RE: Extended authentication with ISAKMP/Oakley draft
Prev by thread: RE: Re[2]: IPSEC document reading party!
Next by thread: Re: Re[2]: IPSEC document reading party!
Index(es):
- Main
- Thread