[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

null encryption

To: rob.glenn@nist.gov
Subject: null encryption
From: Juha Heinanen <jh@lohi.eng.telia.fi>
Date: Mon, 14 Sep 1998 11:43:59 +0300 (EEST)
CC: kent@bbn.com, ipsec@tis.com
Sender: owner-ipsec@ex.tis.com

i don't know if the authors of the null encryption i-d have thought so,
but ipsec can be used as a generic tunneling mechanism alternative to
l2tp and in that application neither strong autentication nor encryption
is always be desirable.

so i would suggest changing the wording of the following sentence in the
null encryption i-d in order not to exclude the tunneling application:

   As stated in [ESP], while the use of encryption algorithms and
   authentication algorithms are optional in ESP, it is imperative that
   an ESP SA specifies the use of at least one cryptographically strong
   encryption algorithm or one cryptographically strong authentication
   algorithm or one of each.

-- juha

ps. i'm not on ipsec list.

Follow-Ups:

Re: null encryption

From: "Perry E. Metzger" <perry@piermont.com>

Re: null encryption

From: Henry Spencer <henry@spsystems.net>

Prev by Date: Re: comments on draft-ietf-ipsec-pki-req-01.txt - alternate names
Next by Date: Some questions on IKE proposals...
Prev by thread: Re: issues with IKE that need resolution
Next by thread: Re: null encryption
Index(es):
- Main
- Thread