[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: What is the standardization status of AES in IPSec?

To: "Andrew Wenlang Zhu" <Andrew_zhu@hp.com>
Subject: Re: What is the standardization status of AES in IPSec?
From: Stephen Kent <kent@bbn.com>
Date: Fri, 1 Feb 2002 15:36:21 -0500
Cc: <ipsec@lists.tislabs.com>
In-Reply-To: <001001c1ab59$11becac0$6f690d0f@AZ735043>
References: <001001c1ab59$11becac0$6f690d0f@AZ735043>
Sender: owner-ipsec@lists.tislabs.com

>Hello:
>
>Can any one give me an update on the standardization status of using AES in
>IPSec?
>
>I am reading ìThe AES Cipher Algorithm and Its Use With IPsecî
><draft-ietf-ipsec-ciph-aes-cbc-03.txt> and read ì Once NIST has published
>the AES FIPS ... AES should become a default and mandatory-to-implement
>cipher algorithm for IPSecî.
>
>FIPS-197 was out in Nov-2001. When an IPSec/AES RFC is expected to come out?
>
>Thanks,
>---------------------------------------
>Andrew Zhu
>HP Systems Networking Solution Lab
>IP Security & System Firewall Project
>Andrew_zhu@hp.com

I anticipate mandating use of AES in ESP, initially in CBC mode.  I 
would anticipate 128 bit key support as the default.

As always, vendors are free to support other modes and key lengths, 
but we have to select a default, mandatory to implement mode and key 
length for the standard.

Steve

References:
- What is the standardization status of AES in IPSec?
  - From: "Andrew Wenlang Zhu" <Andrew_zhu@hp.com>

Prev by Date: RE: interoperability of IPSec between solaris 8 and win2k
Next by Date: Re: What is the standardization status of AES in IPSec?
Prev by thread: Re: What is the standardization status of AES in IPSec?
Next by thread: RE: What is the standardization status of AES in IPSec?
Index(es):
- Date
- Thread