[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: 40bit DES?

To: canetti@watson.ibm.com, chk@utcc.utoronto.ca, rgm-sec@htt-consult.com
Subject: Re: 40bit DES?
From: Ran Canetti <canetti@watson.ibm.com>
Date: Wed, 13 May 1998 18:21:42 -0400
Cc: ipsec@tis.com
Sender: owner-ipsec@ex.tis.com

> >Very good point. Just to stress: the cryptographic strength of the 
> >algorithms in IKE has nothing to do with the strength of the data
> >encryption. It only determines the level of confidence in the 
> >authenticity and secrecy of the agreed key (however long or short it 
> >chooses to be). No reason to weaken that.
> >
> Actually there appears to be a reason.  there are vendors have problems
> with getting export license for IKE, too strong.
> 
> Sigh.

yes, i've heard. thats indeed too bad, and should be taken into account. 
my point was technical: from a cryptographic point of view there is 
no real reason to prohibit strong key-exchange, if the ESP then uses weak 
encryption. For instance, weak IKE will also, and unnecessarily so, result 
in weak AH...


> 
> Keep in mind, that I am working as hard as possible to have as many
> countries producing their own IPsec products.
> 
> 
> Robert Moskowitz

Prev by Date: Re: Latest AH/ESP/Arch drafts and changes
Next by Date: Re: liability for selling bad crypto?
Prev by thread: Re: 40bit DES?
Next by thread: Fwd: Re: Some questions
Index(es):
- Main
- Thread