[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Question on IPSec protocol

To: Raghunath Tilak <tilak@ambernetworks.com>
Subject: Re: Question on IPSec protocol
From: "Steven M. Bellovin" <smb@research.att.com>
Date: Wed, 26 Sep 2001 10:12:15 -0400
Cc: "'ipsec@lists.tislabs.com'" <ipsec@lists.tislabs.com>
Sender: owner-ipsec@lists.tislabs.com

In message <B0080705FCBED41187750050DA1C154A030731@amindmail.india.ambernetwork
s.com>, Raghunath Tilak writes:
>This message is in MIME format. Since your mail reader does not understand
>this format, some or all of this message may not be legible.
>
>------_=_NextPart_001_01C14657.2784ACB0
>Content-Type: text/plain;
>	charset="iso-8859-1"
>
>Hello All,
>
>I came across a paper by Bruce Schneier & Neals Ferguson.
>
>The title is "Cryptographic Evaluation of IPsec".
>The URL is http://www.counterpane.com/ipsec.html
>
>The paper suggests some improvements to IPSec protocol.
>
>Are those (suggested improvements) already considered in 
>the present suite of RFCs? (RFC 2401-2412)
>Will those be considered in the future revisions of RFCs in 
>case they are not? 
>
>Please don't feel offended by the question. Consider it as a
>doubt from a newbie to IPSec.

Check the archives -- it's been discussed a number of times.

		--Steve Bellovin, http://www.research.att.com/~smb
				  http://www.wilyhacker.com

Prev by Date: Re: Why can't ESP authenticate IP header?
Next by Date: Re: [Users] Re: cisco rsa key - openssl read
Prev by thread: Question on IPSec protocol
Next by thread: delete grace timers
Index(es):
- Main
- Thread