[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Comments on Section 3.1 of new IKE draft

To: ipsec@lists.tislabs.com
Subject: Re: Comments on Section 3.1 of new IKE draft
From: Will Price <wprice@cyphers.net>
Date: Sat, 05 Jun 1999 23:02:39 -0700
References: <85256785.0042D6AE.00@zule.shiva.com> <3759F1A0.64B6A1E@sympatico.ca>
Reply-To: wprice@cyphers.net
Sender: owner-ipsec@lists.tislabs.com

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Sandy Harris wrote:
> IPSEC definitely SHOULD support some modern block ciphers, designed
> after DES and building on the experience gained analysing it.
> CAST-128 and Blowfish are the obvious candidates. 
> 
> Sure seems self-evident to me.
> 
> We should add "... MAY support any AES round two candidate cipher
> ..."? 

I think we should add such a thing too, but it isn't really possible
without actually allocating IDs, so it can't be encouraged without
doing so.  I'd like to propose that we allocate ID 7 for Twofish.  We
would like to implement support for that algorithm because it is
faster than CAST-5, has passed muster into AES round two, and allows
stronger security.

- -- 

Will Price, Architect/Sr. Mgr., PGP Client Products
Total Network Security Division
Network Associates, Inc.

-----BEGIN PGP SIGNATURE-----
Version: PGP 6.5

iQA/AwUBN1oOsKy7FkvPc+xMEQKdPQCfT3TzM/Hhk9s2EYzGZv+fQ4OgnC8AoP8W
O7osGg5TLX6pT3fA1Yq+Pxoe
=QfWB
-----END PGP SIGNATURE-----

References:

Comments on Section 3.1 of new IKE draft

From: "Jesse Walker" <jwalker@shiva.com>

Re: Comments on Section 3.1 of new IKE draft

From: Sandy Harris <sandy.harris@sympatico.ca>

Prev by Date: Re: Comments on draft-ietf-ipsec-ike-01.txt (long)
Next by Date: SkipJack numbers?
Prev by thread: Re: Comments on Section 3.1 of new IKE draft
Next by thread: Re: Comments on Section 3.1 of new IKE draft
Index(es):
- Main
- Thread