[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: IPSec for IP Telephony

To: "Costantini, Frank " <Frank.Costantini@ccmail.l-3com.com>
Subject: RE: IPSec for IP Telephony
From: Stephen Kent <kent@bbn.com>
Date: Mon, 29 Mar 1999 18:10:25 -0500
Cc: ipsec@lists.tislabs.com
In-Reply-To: <199903292228.RAA19009@lists.tislabs.com>
Sender: owner-ipsec@lists.tislabs.com

Frank,

We have had a number of other, optional, algorithms defined for IPsec. A
stream cipher would be fine, so long as it carries an IV to deal with
dropped or re-ordered packets.  Also, note that ESP usually employs
authentication, in the form of HMAC, which would introduce latency as well.
if one omits authentication, and uses a stream cipher of the sort you
describe, than an attacker could modify packets with complete control,
which might be a concern.

Steve

References:

RE: IPSec for IP Telephony

From: "Costantini, Frank " <Frank.Costantini@ccmail.l-3com.com>

Prev by Date: RE: info request
Next by Date: Re: 3DES with 40-bit key?
Prev by thread: RE: IPSec for IP Telephony
Next by thread: RE: IPSec for IP Telephony
Index(es):
- Main
- Thread