[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Crypto-agility requirement and draft-zorn-radius-encattr/draft-zorn-radius-keywrap

To: "David B. Nelson" <dnelson@elbrysnetworks.com>
Subject: RE: Crypto-agility requirement and draft-zorn-radius-encattr/draft-zorn-radius-keywrap
From: "Dan Harkins" <dharkins@lounge.org>
Date: Wed, 1 Aug 2007 13:26:19 -0700 (PDT)
Cc: radiusext@ops.ietf.org
In-reply-to: <00fb01c7d477$c56229d0$5d1216ac@xpsuperdvd2>
References: <AC1CFD94F59A264488DC2BEC3E890DE5042E2953@xmb-sjc-225.amer.cisco.com> <50956.69.12.173.8.1185991451.squirrel@www.trepanning.net> <4C0FAAC489C8B74F96BEAD85EAEB262504B6491E@xmb-sjc-215.amer.cisco.com> <00fb01c7d477$c56229d0$5d1216ac@xpsuperdvd2>
User-agent: SquirrelMail/1.4.8

  I agree completely. I'd also request that, to the fullest extent
possible, this information address some of the more unexplained parts of
the draft, like key ids. If NIST requires a KEK ID and a KM ID as well
as (the more obvious requirement of) using an approved cipher in an
approved mode then I'd like to know why.

  Dan.

On Wed, August 1, 2007 1:08 pm, David B. Nelson wrote:
> Glen Zorn writes...
>
>> There are multiple interoperable implementations which
>> have been NIST (& at in least one case) Common Criteria certified,
>> however, so we'll just be leaving it as is for now.
>
> I has previously asked if information on the implementations and the
> certifications you mention could (and would) be made available to the WG.
> I
> didn't get a response, so I'll ask again.
>
> Since the "certifyability" seems to be a selling point for this approach,
> it
> seems relevant for the WG to evaluate that information, in deciding on a
> solution.
>
>
>
> --
> to unsubscribe send a message to radiusext-request@ops.ietf.org with
> the word 'unsubscribe' in a single line as the message text body.
> archive: <http://psg.com/lists/radiusext/>
>



--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

References:
- Crypto-agility requirement and draft-zorn-radius-encattr/draft-zorn-radius-keywrap
  - From: "Joseph Salowey $jsalowey$" <jsalowey@cisco.com>
- Re: Crypto-agility requirement and draft-zorn-radius-encattr/draft-zorn-radius-keywrap
  - From: "Dan Harkins" <dharkins@lounge.org>
- RE: Crypto-agility requirement and draft-zorn-radius-encattr/draft-zorn-radius-keywrap
  - From: "Glen Zorn $gwz$" <gwz@cisco.com>
- RE: Crypto-agility requirement and draft-zorn-radius-encattr/draft-zorn-radius-keywrap
  - From: "David B. Nelson" <dnelson@elbrysnetworks.com>

Prev by Date: RE: Crypto-agility requirement and draft-zorn-radius-encattr/draft-zorn-radius-keywrap
Next by Date: RE: Crypto-agility requirement and draft-zorn-radius-encattr/draft-zorn-radius-keywrap
Previous by thread: RE: Crypto-agility requirement and draft-zorn-radius-encattr/draft-zorn-radius-keywrap
Next by thread: RE: Crypto-agility requirement and draft-zorn-radius-encattr/draft-zorn-radius-keywrap
Index(es):
- Date
- Thread