[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

SPI in ESP+AH key derivations in Oakley Quick Mode

To: ipsec@tis.com
Subject: SPI in ESP+AH key derivations in Oakley Quick Mode
From: John Burke <jburke@cylink.com>
Date: Mon, 09 Feb 1998 12:47:27 -0800
Cc: jburke@cylink.com
Sender: owner-ipsec@ex.tis.com

What is the right rule for using SPI's and generating the AH key, when
Quick Mode negotiates a joined pair of Proposals, ESP and AH?

Oakley, in 5.5 Phase 2 - Quick Mode, appears to imply that separate
KEYMAT's must be computed for the ESP and the AH SA's, since the
computation involves protocol and SPI.  Is that right?  What seems the
relevant text:

   If PFS is not needed, and KE payloads are not exchanged, the new
   keying material is defined as

       KEYMAT = prf(SKEYID_d, protocol | SPI | Ni_b | Nr_b).

    [ ... ]

   In either case, "protocol" and "SPI" are from the ISAKMP Proposal
   Payload that contained the negotiated Transform.

Thanks,
John Burke
Cylink, Sunnyvale, CA

Prev by Date: IPSec Workshop Hotel Issues
Next by Date: Re: Unnecessarily bloated IV calculation
Prev by thread: IPSec Workshop Hotel Issues
Next by thread: L2TP + IPSEC question
Index(es):
- Main
- Thread