[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Last ditch proposal for crypto suites

To: Radia.Perlman@sun.com
Subject: Re: Last ditch proposal for crypto suites
From: Paul Koning <pkoning@equallogic.com>
Date: Thu, 29 Aug 2002 15:00:39 -0400
Cc: ipsec@lists.tislabs.com
References: <200208291703.g7TH3UL02850@sydney.East.Sun.COM>
Sender: owner-ipsec@lists.tislabs.com

>>>>> "Radia" == Radia Perlman <- Boston Center for Networking <Radia.Perlman@sun.com>> writes:

 Radia> I remember in person, and at the mike at meetings, enough
 Radia> people arguing for a la carte that we didn't switch, but I
 Radia> don't remember who was arguing for it. I think the argument
 Radia> was that the number of suites defined tends to grow
 Radia> exponentially, especially with new vanity crypto algorithms, ...

That sounds like an *excellent* argument in favor of suites.

Based on previous experience, I can see an argument right now for at
most 3 mandatory suites (esp sha1 alone, sha1 with 3des, sha1 with
aes) and less than 10 optional ones (the above with md5 instead of
sha1, basically).  The "exponential" argument sounds like a red
herring.

     paul

References:
- Re: Last ditch proposal for crypto suites
  - From: Radia Perlman - Boston Center for Networking <Radia.Perlman@sun.com>

Prev by Date: RE: Last ditch proposal for crypto suites
Next by Date: Re: Last ditch proposal for crypto suites
Prev by thread: Re: Last ditch proposal for crypto suites
Next by thread: Re: Last ditch proposal for crypto suites
Index(es):
- Date
- Thread