[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Cookie exchange

To: dennis.glatting@plaintalk.bellevue.wa.us
Subject: Re: Cookie exchange
From: "Sumit Vakil"<Sumit_Vakil@mw.3com.com>
Date: Fri, 23 Jan 1998 10:43:29 -0600
cc: ipsec@tis.com
Sender: owner-ipsec@ex.tis.com





Sorry about the HTML in my previous e-mail.
---------------------------------------------------------------------------
---------------------------------------------------------------------------
--------

There's something in the ISAKMP draft version 8, that puzzles me:
Section 4.3:
"Additionally, none of the examples include an initial exchange of ISAKMP
Headers (containing initiator and responder cookies) which would provide
protection against clogging (see section 2.5.3)."

How do I interpret this?  Does it meant that before doing, say, an Id
protect exchange, cookies could be exchanged as described in the Oakley
draft?  So, the first message in an Id protect exchange could contain both
the intiator and responder cookies?  Are there implementations out there
that actually work this way?

Thanks,

Sumit A. Vakil
3Com, Corporation





dennis.glatting@plaintalk.bellevue.wa.us on 01/23/98 09:41:49 AM

Please respond to dennis.glatting@plaintalk.bellevue.wa.us

To:   Sumit Vakil/MW/US/3Com
cc:
Subject:  Re: Cookie exchange





Those of us who do not use HTML based mail readers have no idea
what you said.

-dpg

Prev by Date: Re: some issues about IPSec
Next by Date: Re: Results of the IPSEC document reading party
Prev by thread: Cookie exchange
Next by thread: Per-socket policy and ISAKMP
Index(es):
- Main
- Thread