[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Safety of pre-shared keys? (Re: Reliable delete notifies)

To: Hugo Krawczyk <hugo@ee.technion.ac.il>
Subject: RE: Safety of pre-shared keys? (Re: Reliable delete notifies)
From: Stephen Kent <kent@bbn.com>
Date: Mon, 30 Oct 2000 19:25:29 -0500
Cc: ipsec <ipsec@lists.tislabs.com>
In-Reply-To: <Pine.GSO.4.21.0010241926140.16430-100000@ee.technion.ac.il>
References: <Pine.GSO.4.21.0010241926140.16430-100000@ee.technion.ac.il>
Sender: owner-ipsec@lists.tislabs.com

Hugo,

In principle pre-shared keys could be strong, but in practice folks 
tend to use weak keys, e.g.,  passwords. So, the question before us 
is whether to remove  support for pre-shared keys as a means of 
trying to save people from themselves. Of course, many vendors are 
eager to accommodate perceived user requirements, and so some may 
elect to offer the facility anyway, despite any standards compliance 
issues.

Steve

Follow-Ups:

RE: Safety of pre-shared keys? (Re: Reliable delete notifies)

From: Hugo Krawczyk <hugo@ee.technion.ac.il>

References:

RE: Safety of pre-shared keys? (Re: Reliable delete notifies)

From: Hugo Krawczyk <hugo@ee.technion.ac.il>

Prev by Date: Re: UTF-8
Next by Date: RE: Safety of pre-shared keys? (Re: Reliable delete notifies)
Prev by thread: RE: Safety of pre-shared keys? (Re: Reliable delete notifies)
Next by thread: RE: Safety of pre-shared keys? (Re: Reliable delete notifies)
Index(es):
- Main
- Thread