[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Editorial: Use of MAY in draft-ietf-ipsec-ikev2-algorithms

To: Henry Spencer <henry@spsystems.net>
Subject: Re: Editorial: Use of MAY in draft-ietf-ipsec-ikev2-algorithms
From: Bill Sommerfeld <sommerfeld@east.sun.com>
Date: Mon, 16 Jun 2003 11:56:34 -0400
cc: IP Security List <ipsec@lists.tislabs.com>
In-Reply-To: Your message of "Mon, 16 Jun 2003 10:56:38 EDT." <Pine.BSI.3.91.1030616105009.9751A-100000@spsystems.net>
Reply-to: sommerfeld@east.sun.com
Sender: owner-ipsec@lists.tislabs.com

> Correct.  The cipher is RC4, which is (last I heard) still thought to be
> okay.  

Okay, but not great.

RC4 is a stream cipher which comes with additional special handling
recommendations ("For best results, discard first N bytes of output
after keying").

> The problem is that WEP generates keys by a distinctly non-random
> process which produces many closely-related keys, and nobody thought to
> ask whether this was a weakness.  It is.

The WEP related-key attacks exploit the first-byte weaknesses of RC4.

					- Bill

Follow-Ups:
- Re: Editorial: Use of MAY in draft-ietf-ipsec-ikev2-algorithms
  - From: Henry Spencer <henry@spsystems.net>
- RE: Editorial: Use of MAY in draft-ietf-ipsec-ikev2-algorithms
  - From: "Russ Housley" <housley@vigilsec.com>

References:
- RE: Editorial: Use of MAY in draft-ietf-ipsec-ikev2-algorithms
  - From: Henry Spencer <henry@spsystems.net>

Prev by Date: RE: Editorial: Use of MAY in draft-ietf-ipsec-ikev2-algorithms
Next by Date: Re: Editorial: Use of MAY in draft-ietf-ipsec-ikev2-algorithms
Prev by thread: RE: Editorial: Use of MAY in draft-ietf-ipsec-ikev2-algorithms
Next by thread: Re: Editorial: Use of MAY in draft-ietf-ipsec-ikev2-algorithms
Index(es):
- Date
- Thread