[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Evaluation: draft-ietf-ipsec-ciph-aes-xcbc-mac - The

To: jis@mit.edu
Subject: Re: Evaluation: draft-ietf-ipsec-ciph-aes-xcbc-mac - The
From: Erik Nordmark <Erik.Nordmark@sun.com>
Date: Sat, 25 Jan 2003 05:48:21 +0100 (CET)
Cc: iesg-secretary@ietf.org, iesg@ietf.org
In-reply-to: "Your message with ID" <200301231709.h0NH9hq08672@cichlid.adsl.duke.edu>

Thomas included text indicates that they haven't turned off hypehnation
in the draft. That needs to be fixed before this reaches the rfc-editor.

  Erik

>----- Begin Included Message -----<

Date: Thu, 23 Jan 2003 12:09:43 -0500
From: "Thomas Narten" <narten@us.ibm.com>
Subject: Re: Evaluation: draft-ietf-ipsec-ciph-aes-xcbc-mac - The 
To: iesg-secretary@ietf.org, iesg@ietf.org

I'm a no ob, but have one nit:

   tion.  The classic CBC-MAC algorithm, while secure for messages of a
   pre-selected fixed length, has been shown to be insecure across mes-
   sages of varying lengths such as the type found in typical IP data-
   grams.  In fact, it is trivial to produce forgeries for a second mes-
   sage given the MAC of a prior message.

Might be good to include a reference to some of the work mentioned
above.

Thomas

>----- End Included Message -----<

Follow-Ups:
- Re: Evaluation: draft-ietf-ipsec-ciph-aes-xcbc-mac - The
  - From: "Jeffrey I. Schiller" <jis@mit.edu>

References:
- Re: Evaluation: draft-ietf-ipsec-ciph-aes-xcbc-mac - The
  - From: Thomas Narten <narten@us.ibm.com>

Prev by Date: Re: Last Call: CR-LDP Extensions for ASON to Informational
Next by Date: Re: [mobile-ip] Last Call: Mobility Support in IPv6 to Proposed Standard
Previous by thread: Re: Evaluation: draft-ietf-ipsec-ciph-aes-xcbc-mac - The
Next by thread: Re: Evaluation: draft-ietf-ipsec-ciph-aes-xcbc-mac - The
Index(es):
- Date
- Thread