[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SHOULD NOT DES (was RE: Editorial: Use of MAY...)

To: Henry Spencer <henry@spsystems.net>
Subject: Re: SHOULD NOT DES (was RE: Editorial: Use of MAY...)
From: Bill Sommerfeld <sommerfeld@east.sun.com>
Date: Wed, 11 Jun 2003 17:35:50 -0400
cc: IP Security List <ipsec@lists.tislabs.com>
In-Reply-To: Your message of "Wed, 11 Jun 2003 15:33:36 EDT." <Pine.BSI.3.91.1030611152521.25656D-100000@spsystems.net>
Reply-to: sommerfeld@east.sun.com
Sender: owner-ipsec@lists.tislabs.com

> You're still jumping to conclusions -- the fact that you have not heard
> from me about the variable-length ciphers tells you nothing about my
> position on them, so you cannot legitimately infer that I consider dealing
> with them unimportant.  (And your "zero encryption" remark remains odd,
> because none of the RFC 2451 variable-length ciphers goes down to
> zero.)

And the null cipher for ESP is qualitatively different; it's an
alternative to AH for applications where privacy is clearly not
required.

> My position on them actually lines up closely with David Wagner's most
> recent message:  they *are* lower priority -- not because they are better,
> but because they are little-used and do have at least the option of longer
> keys -- but it would nevertheless be good to deal with them too.  Dealing
> properly with DES, however, is *important*.

And, for the record, "What Henry Said".

						- Bill

References:
- Re: SHOULD NOT DES (was RE: Editorial: Use of MAY...)
  - From: Henry Spencer <henry@spsystems.net>

Prev by Date: Re: Fwd: LAST CALL: IKE Crypto documents I-D's
Next by Date: Re: SHOULD NOT DES (was RE: Editorial: Use of MAY...)
Prev by thread: Re: SHOULD NOT DES (was RE: Editorial: Use of MAY...)
Next by thread: Re: SHOULD NOT DES (was RE: Editorial: Use of MAY...)
Index(es):
- Date
- Thread