[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

length of IV in ESP_NULL cipher

To: <ipsec@lists.tislabs.com>
Subject: length of IV in ESP_NULL cipher
From: "Tarun Ahuja" <tarun.ahuja@cavium.com>
Date: Thu, 8 Jan 2004 15:38:59 -0800
Organization: Cavium Networks Inc.
Sender: owner-ipsec@lists.tislabs.com

Hi all

What should be the length of the IV in case of NULL cipher when using ESP
protocol?

As per RFC 2410
"Because of the stateless nature of the NULL encryption algorithm, it is not
necessary to transmit an IV or similar cryptographic
synchronization data on a per packet (or even a per SA) basis".

Which essentially means the length of the IV should be 0 but FreeSWAN uses a
length of 4bytes IV (equal to blocksize) for NULL cipher.

-Tarun

Follow-Ups:
- Re: length of IV in ESP_NULL cipher
  - From: Scott Fluhrer <sfluhrer@cisco.com>
- Re: length of IV in ESP_NULL cipher
  - From: Stephen Kent <kent@bbn.com>

Prev by Date: Re: TFC in IKEv1
Next by Date: Re: length of IV in ESP_NULL cipher
Previous by thread: Re: IKEv1 and multiple SAs ?
Next by thread: Re: length of IV in ESP_NULL cipher
Index(es):
- Date
- Thread