[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

evaluation: draft-ietf-ipsec-nat-reqts

To: iesg-secretary@ietf.org
Subject: evaluation: draft-ietf-ipsec-nat-reqts
From: Steve Bellovin <smb@research.att.com>
Date: Tue, 14 Oct 2003 22:32:05 -0400
Cc: iesg@ietf.org

Minor error:  the text currently says 

   For
   example, there are security risks relating to IP source routing that are
   precluded by AH, but not by ESP with null encryption.

That's only true for IPv6.  Per RFC 2402, source routing options are 
zeroed before calculation the AH ICV.  I suggest changing "IP" to 
"IPv6" in that sentence.

		--Steve Bellovin, http://www.research.att.com/~smb

Prev by Date: evaluation: draft-ietf-pkix-pi
Next by Date: Re: Recommendations for Automatic Responses to Electronic Mail - <draft-moore-auto-email-response-04.txt>
Previous by thread: evaluation: draft-ietf-pkix-pi
Next by thread: discuss: draft-vida-mld-v2-07.txt
Index(es):
- Date
- Thread