[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Shared Secret mismatch in AM3/MM5

To: Andrew Krywaniuk <akrywaniuk@TimeStep.com>
Subject: Re: Shared Secret mismatch in AM3/MM5
From: Dan Harkins <dharkins@network-alchemy.com>
Date: Fri, 29 Oct 1999 14:58:40 -0700
cc: ipsec@lists.tislabs.com
In-reply-to: Your message of "Fri, 29 Oct 1999 15:07:01 EDT." <319A1C5F94C8D11192DE00805FBBADDFEEE28C@exchange>
Sender: owner-ipsec@lists.tislabs.com

  This has come up on the list before and been rejected before. It is
a fundamental change to a protocol that is just now getting some serious
analysis. The only justification seems to be the desire to use 
pre-shared key authentication with a dynamicly-assigned IP address.
This was not justification enought to change things before and nothing
has changed.

  Dan.

On Fri, 29 Oct 1999 15:07:01 EDT you wrote
> 
> The solution, as was already pointed out on this list is to redefine SKEYID
> and the signature payloads for shared secrets.
> 
> I believe Jianying already suggested:
> 
> SKEYID = prf (Ni_b|Nr_b, g^xy)  [the same as for signatures]
> AUTH_I = prf (pre-shared-key, HASH_I)
> AUTH_R = prf (pre-shared-key, HASH_R)
>

Follow-Ups:

Re: Shared Secret mismatch in AM3/MM5

From: Tero Kivinen <kivinen@ssh.fi>

References:

RE: Shared Secret mismatch in AM3/MM5

From: Andrew Krywaniuk <akrywaniuk@TimeStep.com>

Prev by Date: RE: Shared Secret mismatch in AM3/MM5
Next by Date: Encrypting Notify Messages
Prev by thread: RE: Shared Secret mismatch in AM3/MM5
Next by thread: Re: Shared Secret mismatch in AM3/MM5
Index(es):
- Main
- Thread