[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SOI QUESTIONS: 2.3 Perfect forward secrecy (PFS)

To: allison@securecomputing.com, mcr@sandelman.ottawa.on.ca, sfanning@cisco.com
Subject: Re: SOI QUESTIONS: 2.3 Perfect forward secrecy (PFS)
From: Ran Canetti <canetti@watson.ibm.com>
Date: Fri, 21 Jun 2002 01:12:03 -0400
Cc: ipsec@lists.tislabs.com, pkoning@equallogic.com
Sender: owner-ipsec@lists.tislabs.com

Not necessarily. In JFK each party locally tunes its own PFS interval (from full
session-by-session PFS to no PFS at all), independently of the other side,
and without need for negotiation. (You can mandate that a party reveals its 
PFS policy to the peer, so that the peer will be able to make its respective 
policy decisions. But this is not necessary for interoperability.)

The same can be done with IKEv2, with the exception of the question 
whether the phase 2 exchange should support PFS. This seems to require
negotiation. (Please correct me if I'm wrong here.)

Ran


> From: "Scott Fanning" <sfanning@cisco.com>
> 
> As for PFS, if its there, it has to be negotiated. I would prefer that it be
> optional so that the widest possible platforms can support IKE/IPsec (CPU
> constraints, memory etc).
>

Prev by Date: Re: SOI QUESTIONS: 2.3 Authentication styles
Next by Date: RE: PFS + rekeying interconnection
Prev by thread: Re: SOI QUESTIONS: 2.3 Perfect forward secrecy (PFS)
Next by thread: history and why does IKE need a successor
Index(es):
- Date
- Thread