[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Last ditch proposal for crypto suites

To: <Charlie_Kaufman@notesdev.ibm.com>, <ipsec@lists.tislabs.com>
Subject: Re: Last ditch proposal for crypto suites
From: "David Faucher" <dfaucher@lucent.com>
Date: Thu, 29 Aug 2002 11:34:42 -0500
References: <OF710D18BE.04BE38CA-ON85256C24.000F505D-85256C24.001239FC@iris.com>
Sender: owner-ipsec@lists.tislabs.com

|
| The discussion of crypto suites vs. ala carte algorithm negotiation in
| IKEv2 was frustrating. I think most people like suites better (in the
| possibly unrealistic belief that we can keep the number of suites
| manageably small), but the advocates for ala carte negotiation were more
| adament about its necessity. I read the conclusion as leave the
negotiation
| as it is (ala carte). The specification for SA proposal payload in the
| IKEv2 document is 9 pages long, and they are frightening pages. It was a
| message from Angelos Keromytis saying that it gave him a headache that
| inspired me to make one more last ditch proposal.
|

Keep it simple, use suites. For those who think that a la carte
is necessary, create a Vendor ID and use the private namespace.

References:
- Last ditch proposal for crypto suites
  - From: Charlie_Kaufman@notesdev.ibm.com

Prev by Date: Re: Last ditch proposal for crypto suites
Next by Date: RE: Last ditch proposal for crypto suites
Prev by thread: Re: Last ditch proposal for crypto suites
Next by thread: RE: Last ditch proposal for crypto suites
Index(es):
- Date
- Thread