RE: Bruce Schneier on IPsec

["Mason, David" <David_Mason@nai.com>]

I thought ESPNULL might be useful for things like IETF web sites where you
might be retrieving public documents that you want to make sure you receive
unaltered but aren't concerned about the confidentiality of the traffic.

-dave

-----Original Message-----
From: Phil Karn [mailto:karn@ka9q.ampr.org]
Sent: Tuesday, February 01, 2000 8:04 PM
To: rgm-sec@htt-consult.com
Cc: ipsec@lists.tislabs.com
Subject: Re: Bruce Schneier on IPsec


>it took a while to admit that and develop a NULL encrypt mode for ESP.  The

>ONLY arguements for AH in v4 space were political/administrative.  I will 
>drop this line of reason at this point before I dig a fight line :)

I point out that those political/administrative arguments were made
largely obsolete two weeks ago when the US crypto export rules were
finally relaxed.  As I understand it, US export controls were the
primary motivation both for AH (or an authentication-only ESP) and
for single-key DES.

Phil

---

Follow-Ups:

• RE: Bruce Schneier on IPsec
• From: Paul Koning <pkoning@xedia.com>
• Re: Bruce Schneier on IPsec
• From: Phil Karn <karn@ka9q.ampr.org>
• RE: Bruce Schneier on IPsec
• From: Robert Moskowitz <rgm-sec@htt-consult.com>

---

• Prev by Date: RE: Future ISAKMP Denial of Service Vulnerablity Needs Addressing
• Next by Date: RE: Bruce Schneier on IPsec
• Prev by thread: Re: Bruce Schneier on IPsec
• Next by thread: RE: Bruce Schneier on IPsec
• Index(es):
  • Main
  • Thread