[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

evaluation: draft-ietf-ipsec-esp-v3

To: iesg-secretary@ietf.org
Subject: evaluation: draft-ietf-ipsec-esp-v3
From: Steve Bellovin <smb@research.att.com>
Date: Wed, 01 Oct 2003 22:02:25 -0400
Cc: iesg@ietf.org

Please record me as a DISCUSS on draft-ietf-ipsec-esp-v3.

Comments:

2.6 says that the transmitter MUST be capable of generating dummy 
packets.  Without saying how this is controlled, that's meaningless.
Must there be some API to control generation of dummy packets?

2.7: The UDP header contains an explicit length, and thus can be used 
with TFC in transport mode.  To be sure, the document says "e.g." when 
I think it means "i.e.", but the implication of the text is clear:  TFC 
is for tunnel mode only.  But given UDP (and given other possible next 
protocols), the spec should state the tunnel mode-only restriction 
explicitly.

Section 6 can't be evaluated until 2401bis shows up.




		--Steve Bellovin, http://www.research.att.com/~smb

Prev by Date: draft-ietf-ipsec-rfc2402bis-05.txt
Next by Date: evaluation: draft-ietf-dnsext-keyrr-key-signing-flag
Previous by thread: draft-ietf-ipsec-rfc2402bis-05.txt
Next by thread: Comments on draft-ietf-nomcom-rfc2727bis
Index(es):
- Date
- Thread