[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Q] AUTHENTICATION_FAILED Notification

To: "Yoshihiro Ohba" <yohba@tari.toshiba.com>, <ipsec@lists.tislabs.com>
Subject: RE: [Q] AUTHENTICATION_FAILED Notification
From: "Charlie Kaufman" <charliek@microsoft.com>
Date: Thu, 5 Feb 2004 15:04:25 -0800
Sender: owner-ipsec@lists.tislabs.com
Thread-index: AcPsHuxbfAkE7zXmSGWDl5dvccFyigAHR9hA
Thread-topic: [Q] AUTHENTICATION_FAILED Notification

Yes, all messages except for the first two are cryptographically
protected with the IKE SA. Of course, since authentication has not
occurred, the cryptographic protection may not in practice provide much
assurance to the transaction.

	--Charlie

-----Original Message-----
From: owner-ipsec@lists.tislabs.com
[mailto:owner-ipsec@lists.tislabs.com] On Behalf Of Yoshihiro Ohba
Sent: Thursday, February 05, 2004 11:05 AM
To: ipsec@lists.tislabs.com
Subject: [Q] AUTHENTICATION_FAILED Notification

Hi,

I have a question about the usage of AUTHENTICATION_FAILED Notification 
of IKEv2.

draft-ietf-ipsec-ikev2-12.txt says:

        AUTHENTICATION_FAILED                    24
 

            Sent in the response to an IKE_AUTH message when for some
            reason the authentication failed. There is no associated
            data.
 

Is the Notify payload of this type cryptographycally protected with
IKE_SA?  

Regards,

Yoshihiro Ohba

Prev by Date: [Q] AUTHENTICATION_FAILED Notification
Next by Date: Certicom IP Statement Regarding IKE
Previous by thread: [Q] AUTHENTICATION_FAILED Notification
Next by thread: Non-ipsec IANA allocations for IKEv2 needed
Index(es):
- Date
- Thread