[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IPSEC Security Gateways & NAT

To: Derek Atkins <warlord@mit.edu>
Subject: Re: IPSEC Security Gateways & NAT
From: Hugo Krawczyk <hugo@ee.technion.ac.il>
Date: Thu, 14 Jun 2001 02:22:19 +0300 (IDT)
cc: ipsec list <ipsec@lists.tislabs.com>
In-Reply-To: <sjm7kygf2c3.fsf@rcn.ihtfp.org>
Sender: owner-ipsec@lists.tislabs.com

Derek, I have not seen Radia's paper so I can't comment on it.
However, what you say here:

> Think about the process this way:
> 
> 	1) Compute a key agreement using DH
> 	2) Encrypt the identities in the agreed-upon key
> 	3) Authenticate step 1 (and 2) using the shared secret with the
> 	   peer (now that you know the identity).

is indeed a good explanation of the rationale for the change to pre-shared
mode I suggested in a previous message. 
This is why I changed SKEYID_e to depend on g^xy only but left the
HASH_I/R computations to depend on the preshared key (SKEYID)

Hugo

Follow-Ups:

RE: IPSEC Security Gateways & NAT

From: "sankar ramamoorthi" <sankar@nexsi.com>

References:

Re: IPSEC Security Gateways & NAT

From: Derek Atkins <warlord@mit.edu>

Prev by Date: RE: IPSEC Security Gateways & NAT (3 issues)
Next by Date: Re: MTU and IPSec VPN's
Prev by thread: Re: IPSEC Security Gateways & NAT
Next by thread: RE: IPSEC Security Gateways & NAT
Index(es):
- Main
- Thread