Re: [IPsec] Working Group Last Call: draft-ietf-ipsecme-aes-ctr-ikev2-02.txt

From: Paul Hoffman <paul.hoffman_at_nospam>
Date: Thu Sep 17 2009 - 14:44:11 GMT
To: Tero Kivinen <kivinen@iki.fi>

At 2:23 PM +0300 9/17/09, Tero Kivinen wrote:
>When reading the roadmap I noticed that camellia-ctr is also not
>defined for IKEv2 SAs, so I was wondering if the text in this document
>could be made generic enough so any counter mode cipher could be used.

It is not clear to me that future counter modes will fit today's generic definition. I don't think it is bad to require a specific definition for each application of counter mode.

>Other option is of course to include text to ikev2bis which specifies
>how to use counter mode ciphers when protecting IKEv2 SAs.

This seems like overkill and possibly limiting to future applications of counter mode.

--Paul Hoffman, Director
--VPN Consortium

IPsec mailing list
IPsec@ietf.org
https://www.ietf.org/mailman/listinfo/ipsec

This message: [ Message body ]
Next message: Paul Hoffman: "Re: [IPsec] Issue #26: Missing treatment of error cases"
Previous message: Pasi.Eronen_at_nospam: "[IPsec] AD review comments for draft-ietf-ipsecme-traffic-visibility"
In reply to: Tero Kivinen: "[IPsec] Working Group Last Call: draft-ietf-ipsecme-aes-ctr-ikev2-02.txt"
Next in thread: Tero Kivinen: "Re: [IPsec] Working Group Last Call: draft-ietf-ipsecme-aes-ctr-ikev2-02.txt"
Reply: Tero Kivinen: "Re: [IPsec] Working Group Last Call: draft-ietf-ipsecme-aes-ctr-ikev2-02.txt"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]