[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Comments on draft-ietf-ipsec-ike-01.txt (long)
>>>>> "Sandy" == Sandy Harris <sandy.harris@sympatico.ca> writes:
Sandy> My query would have been whether they should be prohibited from
Sandy> REJECTING a key length greater than they've configured.
Sandy> You configure for, say 128-bit Blowfish. I offer 448. The
Sandy> algorithm costs no more to run with the longer key. Clearly you
Sandy> SHOULD accept. I'd like to see the standard say you MUST accept.
I think the text should say SHOULD.
Despite Blowfish being able to do flexible key lengths, not all hardware
may be configured to do that.
:!mcr!: | Network and security consulting/contract programming
Michael Richardson | ...working from my front lawn with a long cord...
Personal: http://www.sandelman.ottawa.on.ca/People/Michael_Richardson/Bio.html
Corporate: http://www.sandelman.ottawa.on.ca/SSW/
ON HUMILITY: To err is human, to moo bovine.
Follow-Ups:
References: