[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: AES-based PRF for IKEv2
At 6:36 AM +0200 3/25/03, Hugo Krawczyk wrote:
>Moreover, ikev2 already offers a solution to the problem of how to get a
>prf key out of the DH key g^xy (see page 25 of the draft).
>And ikev2 does not really have a need to deal with too-short keys.
>The only places where this could potentially be an issue is when
>(1) you key the prf with Ni|Nr and (2) when authenticating with a
>pre-shared key.
I'm confused by this statement. Where is the preshared key used in
the SKEYSEED calculation in IKEv2?
--Paul Hoffman, Director
--VPN Consortium