[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Increased sequence number in ESP/AH




 >>>>> "Stephen" == Stephen Kent <kent@bbn.com> writes:
     Stephen> We're looking at 10 Gb/s IPsec implementations. At that speed, if one 
     Stephen> were to send minimum size packets over a single SA (a worst case 
     Stephen> scenario, I admit) the SA would run out of sequence number space

   Yeah, I can buy that for minimum length packets at 10Gb/s. 

   It seems like a trivial new IKE proposal option, as it has no detectable
wire changes, just changes to the documents.

] Train travel features AC outlets with no take-off restrictions|gigabit is no[
]   Michael Richardson, Solidum Systems   Oh where, oh where has|problem  with[
]     mcr@solidum.com   www.solidum.com   the little fishy gone?|PAX.port 1100[
] panic("Just another NetBSD/notebook using, kernel hacking, security guy");  [





References: