[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: What is the standardization status of AES in IPSec?



You would use the Key length attribute to describe the size of the keys in
the proposal for MM and QM (see RFC 2407). Maybe we can use the key rounds
attribute for 3AES :-)

Scott
----- Original Message -----
From: "Kai Martius" <kai@secunet.de>
To: "Scott Fanning" <sfanning@cisco.com>; "Andrew Wenlang Zhu"
<Andrew_zhu@hp.com>; <ipsec@lists.tislabs.com>
Sent: Monday, February 04, 2002 12:48 AM
Subject: Re: What is the standardization status of AES in IPSec?


>
> Hello,
>
> (I was just about to ask a similar / related question...)
>
> At 11:59 01.02.2002 -0800, Scott Fanning wrote:
> >and on that note.. If AES is the MUST implement algorithm, does that
include
> >all key sizes?
>
> ... and how are different key sizes reflected by the identifiers? Will we
> have different identifiers in IKE and IPsec for 128, 192 and 256 bits? For
> the currently IANA-defined identifiers ESP_AES and OAKLEY_AES_CBC, it is
> assumed to be 128bit, I think (?).
>
> Kai
>
> --
> Kai Martius
> secunet Security Networks AG
> Dresden - Germany