[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: 10 years and no ubiquitous security

To: ietf@ietf.org
Subject: Re: 10 years and no ubiquitous security
From: William Allen Simpson <wsimpson@greendragon.com>
Date: Sat, 16 Mar 2002 20:17:32 -0500
CC: ipsec@lists.tislabs.com
Organization: DayDreamer
References: <0D7FC1D8D861D511AEA70002A52CE5E601A77519@zcard0ke.ca.nortel.com> <3C92525A.8020907@alum.mit.edu>
Sender: owner-ipsec@lists.tislabs.com

"The Purple Streak (Hilarie Orman)" wrote:
> Mild-mannered S. Kent is in reality SuperNoSecMan.  He adds
> the essential anti-replay counter to IPsec protocols and, ...
> causes people to NOT adopt them? 

Actually, of course, Steve Kent did not add the counter.  It was in 
swIPe, from the beginning.  It was in my drafts, from the beginning.

It was certain members of the WG who insisted we didn't need the 
counter.  At least one has admitted he was wrong.  Are you ever going to 
admit you were?

Anyway, when we published the first set of RFCs, I carefully documented 
the need for a Replay Protection sequence number in 1995:
  "Internet Security Transform Enhancements"

This was in the old IETF tradition of posting minority positions when 
the main WG disagrees.

Perhaps you missed reading it?

-- 
William Allen Simpson
    Key fingerprint =  17 40 5E 67 15 6F 31 26  DD 0D B9 9B 6A 15 2C 32

References:
- RE: 10 years and no ubiquitous security
  - From: "Dennis Beard"<beardd@nortelnetworks.com>
- Re: 10 years and no ubiquitous security
  - From: "The Purple Streak (Hilarie Orman)" <ho@alum.mit.edu>

Prev by Date: Re: 10 years and no ubiquitous security
Next by Date: Re: Choosing between IKEv2 and JFK
Prev by thread: Re: 10 years and no ubiquitous security
Next by thread: RE: 10 years and no ubiquitous security
Index(es):
- Date
- Thread