[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

SOI QUESTION: 3.2 Number of messages in all scenarios

To: ipsec@lists.tislabs.com
Subject: SOI QUESTION: 3.2 Number of messages in all scenarios
From: "Theodore Ts'o" <tytso@mit.edu>
Date: Fri, 21 Jun 2002 16:56:31 -0400
Phone: (781) 391-3464
Sender: owner-ipsec@lists.tislabs.com


Notes from the chair:

Fundamentally, this a philosophical issue about how negotiations should
be handled.   

Please discuss and answer:


3.2 Number of messages in all scenarios

3.2.A)In both IKEv2 and JFK, Alice chooses a Diffie-Hellman group in 
message one. In IKEv2 if Bob doesn't accept what Alice offers the 
negotiation starts again. In JFK if Bob doesn't accept what Alice offers 
but Alice can live with what Bob offers, they continue. Otherwise they 
start over. Is this an important feature for SOI?

Implications from the scenarios: 

SRA: <<<This means that the key management mechanism must be able to
rapidly establish both the SOI and IPsec connections, without undue
impact on CPU and memory overhead. It's also desirable for each
exchange to have as few messages as possible, to help alleviate the
burst load on the RAS.>>> [[[3]]] See also 4.2, 2.4

Follow-Ups:
- Re: SOI QUESTION: 3.2 Number of messages in all scenarios
  - From: Jean-Jacques Puig <jean-jacques.puig@int-evry.fr>

Prev by Date: SOI QUESTION: 3.1 DoS protection
Next by Date: SOI QUESTION: 3.3 Size of messages
Prev by thread: Re: SOI QUESTION: 3.1 DoS protection
Next by thread: Re: SOI QUESTION: 3.2 Number of messages in all scenarios
Index(es):
- Date
- Thread