[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Ipsec] Algorithm numbers mismatch between IPsec and IKE forAES-XCBC-MAC-96

To: ipsec@lists.tislabs.com
Subject: [Ipsec] Algorithm numbers mismatch between IPsec and IKE forAES-XCBC-MAC-96
From: Ganesan R <rganesan@myrealbox.com>
Date: 29 Jul 2004 21:51:25 +0530
Cc:
List-help: <mailto:ipsec-request@ietf.org?subject=help>
List-id: IP Security <ipsec.ietf.org>
List-post: <mailto:ipsec@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>,<mailto:ipsec-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>,<mailto:ipsec-request@ietf.org?subject=unsubscribe>
Sender: ipsec-bounces@ietf.org
User-agent: Gnus/5.09 (Gnus v5.9.0) Emacs/21.3


RFC 3566 (The AES-XCBC-MAC-96 Algorithm and Its Use With IPsec) says

======
6.  IANA Considerations

   IANA has assigned AH Transform Identifier 9 to AH_AES-XCBC-MAC.  IANA
   has assigned AH/ESP Authentication Algorithm Value 9 to AES-XCBC-MAC.
======

whereas, draft-ietf-ipsec-ikev2-algorithms-05.txt (Cryptographic Algorithms
for use in the Internet Key Exchange Version 2) says

======
      Name                     Number       Defined In           Status
      NONE                     0
      AUTH_HMAC_MD5_96         1            [RFC2403]            MAY
      AUTH_HMAC_SHA1_96        2            [RFC2404]            MUST
      AUTH_AES_XCBC_96         5            [AES-MAC]            SHOULD+
======

Is there a good reason the values different, especially since the rest of
the IKEv2 algorithm numbers are the same as the ones for ESP?

Ganesan



_______________________________________________
Ipsec mailing list
Ipsec@ietf.org
https://www1.ietf.org/mailman/listinfo/ipsec

Prev by Date: Re: [Ipsec] lists of protocols in 2401-bis
Next by Date: Re: [Ipsec] a new draft
Previous by thread: Re: [Ipsec] lists of protocols in 2401-bis
Index(es):
- Date
- Thread