[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IKE Public Key Encryption

To: pau@watson.ibm.com
Subject: Re: IKE Public Key Encryption
From: Jim Tiller <jtiller@lucent.com>
Date: Mon, 20 Mar 2000 14:01:20 -0500
CC: ipsec@lists.tislabs.com
In-reply-To: <0003201625.AA24910@secpwr.watson.ibm.com>
Organization: Lucent
References: <0003201625.AA24910@secpwr.watson.ibm.com>
Reply-To: Jim Tiller <jtiller@lucent.com>
Sender: owner-ipsec@lists.tislabs.com

Thankx for answering...

Is this becoming common practise for most vendors? Although optional,
are most including it to avoid complexity and ambiguity? I'm certain
this has come up in the VPNC and interpretability seminars.

Also, one more question, if it is a certificate, why hash it? I'm
assuming to reduce the size of the payload, but this comes at a cost
of processing when the responder is responsible for many certificates.
I might add that I'm assuming alot here and just expressing my
curiosity to the group.

thankx
-jim

Monday, March 20, 2000, 11:25:12 AM, you wrote:

pwic> I would agree. At least our own experience showed that this makes
pwic> it much less ambiguous.

pwic> Pau-Chen

Follow-Ups:

Re: IKE Public Key Encryption

From: Dan Harkins <dharkins@network-alchemy.com>

References:

Re: IKE Public Key Encryption

From: pau@watson.ibm.com

Prev by Date: Re: IKE Public Key Encryption
Next by Date: Re: Heartbeats draft available
Prev by thread: Re: IKE Public Key Encryption
Next by thread: Re: IKE Public Key Encryption
Index(es):
- Main
- Thread