[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Please kill preshared key.

To: david chen <ietf_davidchen@hotmail.com>
Subject: Re: Please kill preshared key.
From: Henry Spencer <henry@spsystems.net>
Date: Fri, 7 Dec 2001 14:44:34 -0500 (EST)
cc: ipsec@lists.tislabs.com
In-Reply-To: <OE68msVEhlcK2w6jp510000e8f7@hotmail.com>
Sender: owner-ipsec@lists.tislabs.com

On Fri, 7 Dec 2001, david chen wrote:
> What I infered is that
> the pre-shared symmetric key can be used for both authentication and
> encryption without key-exchange (KE) since this key is exchnaged through
> 'out-of-band' secured channel and is *intended* for the two devices only.

Your inference is incorrect.  That is not how today's IPSec PSK works.

                                                          Henry Spencer
                                                       henry@spsystems.net

Follow-Ups:

Re: Please kill preshared key.

From: "david chen" <ietf_davidchen@hotmail.com>

References:

Re: Please kill preshared key.

From: "david chen" <ietf_davidchen@hotmail.com>

Prev by Date: RE: Son-of-IKE Selection Criteria?
Next by Date: Re: Please save the pre-shared key mode
Prev by thread: Re: Please kill preshared key.
Next by thread: Re: Please kill preshared key.
Index(es):
- Main
- Thread