[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

IPSec SA's contents

To: <ipsec@lists.tislabs.com>
Subject: IPSec SA's contents
From: "Masafumi Tsuruta" <tsuruta@insi.co.jp>
Date: Mon, 29 Oct 2001 18:23:41 +0900
Importance: Normal
Reply-To: <tsuruta@insi.co.jp>
Sender: owner-ipsec@lists.tislabs.com

Hi.

I have a question about IPSec SA. Please give me any suggestion if you don't
worry.

In Phase 2, Quickmode, according to RFC 2409 <5.5 Phase 2 - Quick Mode> an
ascii art explains how works quickmode as below.

-----------------------begin-----------------------------------
Initiator                             |            Responder
HDR*, HASH (1), SA, Ni,
	[, KE] [, IDci, IDcr] -->
                                      <--   HDR*, HASH (2), SA, Nr
                                            [, KE] [, IDci, IDcr]
HDR*, HASH (3)                 -->
-----------------------end-------------------------------------

In this figure, I can't understand what is in the "SA". Some components (ex.
Nonce payload) are part from "SA", so I can't understand "SA" contents.

Please tell me the contents of "SA". Thank you.

Masafumi Tsuruta
tsuruta@insi.co.jp

Follow-Ups:

Re: IPSec SA's contents

From: Gwangsoo Rhee <rhee@sookmyung.ac.kr>

Prev by Date: Re: Does anyone care about IPcomp with IKE? (IPcomp=IP compression)
Next by Date: CBC makes Implementations too Slow.
Prev by thread: Re: Does anyone care about IPcomp with IKE? (IPcomp=IP compression)
Next by thread: Re: IPSec SA's contents
Index(es):
- Main
- Thread