[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Crypto-agility work item

To: <radiusext@ops.ietf.org>
Subject: RE: Crypto-agility work item
From: "Nelson, David" <dnelson@enterasys.com>
Date: Fri, 24 Feb 2006 16:47:58 -0500

> The existing RADIUS security mechanisms include:
> 
> -- The MD5-based stream cipher used to obscure the User-Password
> attribute.
> 
> -- The MD5-based MAC used to create the Response-Authenticator header
> field.
> 
> -- The HMAC-MD5 MAC used to create the Message-Authenticator
attribute.

I neglected to mention:

-- The MD5 based stream cipher used to obscure MS-MPPE-Send-Key and
MS-MPPE-Recv-Key attributes.

-- The MD5 based stream cipher used to obscure the Tunnel-Password
attribute.

Are there others I've overlooked?


--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

Follow-Ups:
- Re: Crypto-agility work item
  - From: "Alan DeKok" <aland@ox.org>

Prev by Date: Re: Crypto-agility work item
Next by Date: Re: Crypto-agility work item
Previous by thread: Re: Crypto-agility work item
Next by thread: Re: Crypto-agility work item
Index(es):
- Date
- Thread