[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Comments on "Hybrid Auth. mode for IKE"

To: Moshe Litvin <moshe@checkpoint.com>
Subject: Re: Comments on "Hybrid Auth. mode for IKE"
From: Stephen Kent <kent@bbn.com>
Date: Mon, 24 Aug 1998 09:45:34 -0400
Cc: ipsec@tis.com
In-Reply-To: <35C6768C.DB367A67@checkpoint.com>
References: <v03110715b1dfa1879858@[128.33.238.39]> from "Stephen Kent" at Jul 25, 98 06:10:58 pm <v03110700b1e2448c6f64@[128.89.0.110]>
Sender: owner-ipsec@ex.tis.com

Moshe,

>So what you are saying is that every one that is not yet ready to use
>certificates and want to use a method not vulnerable to dictionary attack is
>not allowed to use IPSEC?

Gee, it sounds so negative when you say it that way ;-)!

How about, a vendor who wants to sell IPsec products should get its act
together and support IKE with certs, rather than taking shortcuts and using
"market demand"  as an excuse.

Yes, I definately like that phrasing better.

Steve

Follow-Ups:

Re: Comments on "Hybrid Auth. mode for IKE"

From: Moshe Litvin <moshe@cale.checkpoint.com>

References:

Re: Comments on "Hybrid Auth. mode for IKE"

From: Stephen Kent <kent@bbn.com>

Re: Comments on "Hybrid Auth. mode for IKE"

From: Moshe Litvin <moshe@checkpoint.com>

Prev by Date: Re: IPSec interop workshop Aug 31st - Sept 3 invitation
Next by Date: Re: Comments on "Hybrid Auth. mode for IKE"
Next by thread: Re: an inbound SPD-check question
Index(es):
- Main
- Thread