[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: new IKE draft

To: Sumit Vakil <Sumit_Vakil@mw.3com.com>
Subject: Re: new IKE draft
From: Lewis McCarthy <lmccarth@cs.umass.edu>
Date: Mon, 16 Mar 1998 19:26:04 -0500
CC: IP Security List <ipsec@tis.com>
Organization: UMass-Amherst Theoretical Computer Science Group, <http://www.cs.umass.edu/~thtml/>
References: <862565C9.007ED929.00@mwgate02.mw.3com.com>
Sender: owner-ipsec@ex.tis.com

Sumit Vakil writes:
> PKCS#1 has two interesting notes in section 8:
>      3.   Application of private-key operations as defined
>           here to data other than an octet string containing
>           a message digest is not recommended and is subject
>           to further study.
[...]
> Also, what about #3 above?  The Id payload certainly isn't a message
> digest.

True, but the authentication via public key encryption mode in IKE 
uses encryption with a public key (PubKey_i or PubKey_r), not with 
a private key.

-Lewis

References:

Re: new IKE draft

From: "Sumit Vakil"<Sumit_Vakil@mw.3com.com>

Prev by Date: some comments on draft-ietf-ipsec-arch-sec-04.txt
Next by Date: Re: comments on ...isakmp-mode-cfg-02
Prev by thread: Re: new IKE draft
Next by thread: comments on ...isakmp-mode-cfg-02
Index(es):
- Main
- Thread