[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IKEv2 and SIGMA



In message <001101c18281$9f77b8a0$2dc6830c@andrewk3.ca.newbridge.com>, "Andrew 
Krywaniuk" writes:


>The issue here is that one of the protocols (SIGMA) has been specifically
>designed to have repudiation in the phase 1. For JFK and IKEv2, I don't
>think either repudiation or non-repudiation were design constraints. JFK
>always provides non-repudiation, but that is most likely by convenience
>rather than by design. 

Correct -- it never entered our discussions, one way or another.

		--Steve Bellovin, http://www.research.att.com/~smb
		Full text of "Firewalls" book now at http://www.wilyhacker.com