[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: IPSec for IP Telephony

To: "'Stephen Kent'" <kent@bbn.com>, "Costantini, Frank " <Frank.Costantini@ccmail.l-3com.com>
Subject: RE: IPSec for IP Telephony
From: Scott Cadzow <Scott.Cadzow@etsi.fr>
Date: Tue, 30 Mar 1999 09:20:19 +0200
Cc: ipsec@lists.tislabs.com
Sender: owner-ipsec@lists.tislabs.com

Note that most digital radio telephone systems (DECT, GSM, TETRA) use
streaming ciphers for link encryption, the analysis of each showing that
block ciphers by having potential to induce delay are unacceptable to
maintain QoS. If we extend the TDMA models of such systems to general packet
mode speech then I believe the same conclusions will be reached - stream
cipher is preferred. The derivation of a Time Variant Parameter is however
for further study in IP telephony.

Regards,

Scott

-----Original Message-----
From: Stephen Kent [mailto:kent@bbn.com]
Sent: Tuesday, March 30, 1999 1:10 AM
To: Costantini, Frank 
Cc: ipsec@lists.tislabs.com
Subject: RE: IPSec for IP Telephony


Frank,

We have had a number of other, optional, algorithms defined for IPsec. A
stream cipher would be fine, so long as it carries an IV to deal with
dropped or re-ordered packets.  Also, note that ESP usually employs
authentication, in the form of HMAC, which would introduce latency as well.
if one omits authentication, and uses a stream cipher of the sort you
describe, than an attacker could modify packets with complete control,
which might be a concern.

Steve

Prev by Date: RSA claiming trademark on all uses of "RSA" to describe algorithm
Next by Date: Commit Bit Processing
Prev by thread: RE: IPSec for IP Telephony
Next by thread: Re: IPSec for IP Telephony
Index(es):
- Main
- Thread