[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Editorial: Use of MAY in draft-ietf-ipsec-ikev2-algorithms

To: "Lee Dilkie" <lee_dilkie@mitel.com>
Subject: RE: Editorial: Use of MAY in draft-ietf-ipsec-ikev2-algorithms
From: Russ Housley <housley@vigilsec.com>
Date: Mon, 16 Jun 2003 16:28:28 -0400
Cc: "'IP Security List'" <ipsec@lists.tislabs.com>
In-Reply-To: <005301c33436$247a0280$8a3bc786@software.mitel.com>
References: <000301c3342f$1b6e3320$6401a8c0@RussLaptop>
Sender: owner-ipsec@lists.tislabs.com

Lee:

>I thought also that RC4 was not a restartable(seekable?) stream cipher and
>thus cannot tolerate lost or out of order packets unless special steps were
>taken (re-gen the key schedule for each packet?).

All stream ciphers use a key to produce a key stream.  WEP needs a 
different key stream for each packet, as would IPsec ESP if one tried to 
use RC4 in this context.  WEP achieved this by constructing a per-packet 
key.  An IV was simply concatenated with the rest of the key.  This is how 
the first three bytes of the packet key are "published."

Russ

References:
- RE: Editorial: Use of MAY in draft-ietf-ipsec-ikev2-algorithms
  - From: "Russ Housley" <housley@vigilsec.com>
- RE: Editorial: Use of MAY in draft-ietf-ipsec-ikev2-algorithms
  - From: "Lee Dilkie" <lee_dilkie@mitel.com>

Prev by Date: AHbis comments
Next by Date: WG Last Call: draft-ietf-ipsec-esp-v3-05
Prev by thread: RE: Editorial: Use of MAY in draft-ietf-ipsec-ikev2-algorithms
Next by thread: RE: Editorial: Use of MAY in draft-ietf-ipsec-ikev2-algorithms
Index(es):
- Date
- Thread