[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IKEv2 and SIGMA

To: hugo@ee.technion.ac.il
Subject: Re: IKEv2 and SIGMA
From: Paul Koning <ni1d@arrl.net>
Date: Tue, 27 Nov 2001 09:28:26 -0500 (EST)
Cc: ipsec@lists.tislabs.com
References: <200111261211.fAQCBRL00559@fatty.lounge.org><Pine.GSO.4.21.0111270023240.11590-100000@ee.technion.ac.il>
Sender: owner-ipsec@lists.tislabs.com

>>>>> "Hugo" == Hugo Krawczyk <hugo@ee.technion.ac.il> writes:
 Hugo> ...
 Hugo> As I said in my note, I believe (and hope that you agree) that
 Hugo> A TRULY SOUND KEY EXCHANGE PROTOCOL SHOULD NOT RELY ON EXTERNAL
 Hugo> MECHANISMS TO PROVIDE ITS MOST ESSENTIAL SECURITY PROPERTIES

 Hugo> In particular, the protocol MUST DEFINE ITS OWN AUTHENTICATION
 Hugo> MECHANISMS.

I completely agree.

 Hugo> By using ESP for the AUTHENTICITY of the protocol you are
 Hugo> violating this principle.

One good reason for insisting on this is that the ESP draft continues
to permit -- and even encourage -- the known-insecure
confidentiality-only mode.  It's a good thing to see it change from
"MUST" to "SHOULD" on that topic, but the right change is to "SHOULD
NOT" and to mark that "feature" historic and deprecated.  

     paul

Follow-Ups:

Re: IKEv2 and SIGMA

From: Michael Thomas <mat@cisco.com>

References:

Re: IKEv2 and SIGMA

From: Dan Harkins <dharkins@tibernian.com>

Re: IKEv2 and SIGMA

From: Hugo Krawczyk <hugo@ee.technion.ac.il>

Prev by Date: ipsec/NAT query
Next by Date: Re: WG LAST CALL: draft-ietf-ipsec-sctp-02.txt
Prev by thread: Re: IKEv2 and SIGMA
Next by thread: Re: IKEv2 and SIGMA
Index(es):
- Main
- Thread