[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: AES & IPsec questions

To: ipsec@lists.tislabs.com
Subject: Re: AES & IPsec questions
From: Joern Sierwald <joern@f-secure.com>
Date: Fri, 14 Mar 2003 08:57:26 +0100
In-Reply-To: <5.2.0.9.0.20030313220052.03584280@mail.attbi.com>
Sender: owner-ipsec@lists.tislabs.com

At 22:24 13.03.2003 -0800, you wrote:

>Some big vendors have incorporated AES into their IPsec VPN offerings.
>I have some questions about these that I hope someone on this list can answer.
>
>1. Are these proprietary extensions or based on one of the AES drafts?

drafts.

>2. Are they supported by proprietary or draft extensions to IKE?

Well, the algorithm numbers in IKE for AES are not draft, but really 
official, I believe.

>3. What performance has actually been achieved in practice, in software, on
>     a Intel PC?  (It would be helpful to specify the GHz of the CPU in 
> your answer.)

70mbps/Ghz for ESP tunnel with md5, which is just a bit better than CAST, our
previously fastest algorithm.

>I'm particularly interested in Cisco's implementation, however info about 
>other
>vendors or Linux open source is also welcome.
>
>Thanks in advance,
>
>- Alex
>
>Alex Alten
>Alten@ATTBI.com
>

J–rn Sierwald

References:
- AES & IPsec questions
  - From: Alex Alten <Alten@attbi.com>

Prev by Date: Re: Another field for traffic selector?
Next by Date: RE: draft-ietf-ipsec-ikev2-05.txt comments
Prev by thread: AES & IPsec questions
Next by thread: RE: AES & IPsec questions
Index(es):
- Date
- Thread