[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Extended authentication with ISAKMP/Oakley draft

To: "'canetti@watson.ibm.com'" <canetti@watson.ibm.com>
Subject: RE: Extended authentication with ISAKMP/Oakley draft
From: Roy Pereira <rpereira@TimeStep.com>
Date: Sun, 14 Dec 1997 13:42:26 -0500
Cc: "'ipsec@tis.com'" <ipsec@tis.com>
Sender: owner-ipsec@ex.tis.com

Ran, actually the draft presents Main Mode as an example only.  The
draft describes a template method that can be applied to any mode at any
exchange.  The draft does go on to say what exchanges and modes that
MUST NOT be used for various reasons.  And the draft does allow for any
type of ISAKMP phase I authentication (shared-secret, RSA-sig, RSA-enc,
DSS, RSA-new-enc).


>In any case, the current draft only describes how to do the piggibacking 
>with the signature mode of phase 1. One should also specify how to do
>the piggibacking with the other modes of phase 1 (encryption,
>revised encryption, pre-shared key.) In fact, perhaps one can describe 
>a general method of piggybacking and say that it applies to all modes.
>
>

Prev by Date: IPSECond: Re: Extended authentication with ISAKMP/Oakley draft )
Next by Date: RE: Extended authentication with ISAKMP/Oakley draft
Prev by thread: Re: Extended authentication with ISAKMP/Oakley draft
Next by thread: RE: Extended authentication with ISAKMP/Oakley draft
Index(es):
- Main
- Thread