[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: What is the standardization status of AES in IPSec?

To: "Hilarie Orman, Purple Streak Development" <hilarie@xmission.com>, <Mark.Winstead@NetOctave.com>
Subject: Re: What is the standardization status of AES in IPSec?
From: "Jari Arkko" <jari.arkko@kolumbus.fi>
Date: Sun, 3 Feb 2002 08:42:35 +0200
Cc: <ipsec@lists.tislabs.com>
References: <E16X575-0000VG-00@xmission.xmission.com>
Sender: owner-ipsec@lists.tislabs.com


> I'm curious as to how many people believe that a MUST for a 128-bit AES
> key means a MUST for 128 bits of entropy in the key.

I don't. While I believe we should move to AES as soon as possible, I
don't necessarily believe in the statement that all components of the
protocol set must be equally strong; you should be able to take advantage
of a new good algorithm even if you can't for e.g. computational reasons
increase Diffie-Hellman key lengths quite as much.

Thus, I believe we should standardize groups matching AES strength,
but not make them mandatory. And we need to explain the strength
issues somewhere.

Jari

Follow-Ups:
- Re: What is the standardization status of AES in IPSec?
  - From: Paul Koning <pkoning@equallogic.com>
- Re: What is the standardization status of AES in IPSec?
  - From: "Hilarie Orman, Purple Streak Development" <hilarie@xmission.com>

References:
- RE: What is the standardization status of AES in IPSec?
  - From: "Hilarie Orman, Purple Streak Development" <hilarie@xmission.com>

Prev by Date: RE: What is the standardization status of AES in IPSec?
Next by Date: Re: What is the standardization status of AES in IPSec?
Prev by thread: RE: What is the standardization status of AES in IPSec?
Next by thread: Re: What is the standardization status of AES in IPSec?
Index(es):
- Date
- Thread