[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Please kill preshared key.

To: IP Security List <ipsec@lists.tislabs.com>
Subject: Re: Please kill preshared key.
From: Henry Spencer <henry@spsystems.net>
Date: Thu, 6 Dec 2001 23:45:15 -0500 (EST)
In-Reply-To: <200112061847.fB6IlsjM003590@thunk.east.sun.com>
Sender: owner-ipsec@lists.tislabs.com

On Thu, 6 Dec 2001, Bill Sommerfeld wrote:
> There's no need for it, it adds complexity.  Kill it.

The FreeS/WAN project concurs, especially about the "one more way for
users to shoot themselves in the foot" part. 

One thing... As I've been known to rant about :-), many of the people
arguing for its retention seem to confuse public keys with the horrors of
PKI.  It would be a service to mankind if we referred to the feature under
discussion as "shared secret" or "preshared secret key", to distinguish it
from healthier approaches like preshared public keys.

                                                          Henry Spencer
                                                       henry@spsystems.net

References:

Please kill preshared key.

From: Bill Sommerfeld <sommerfeld@east.sun.com>

Prev by Date: Re: compare-jfk-sigma.txt
Next by Date: Re: Please kill preshared key.
Prev by thread: Re: Please kill preshared key.
Next by thread: Re: Please kill preshared key.
Index(es):
- Main
- Thread