[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[anonsec] BTNS updates

From: Nicolas.Williams at sun.com (Nicolas Williams)
Date: Sun, 19 Mar 2006 16:40:41 -0600
In-reply-to: <20060319222606.GJ27125 at binky.Central.Sun.COM>
References: <20051206000303.GM17884 at binky.Central.Sun.COM> <v0fylecojp.fsf at marajade.sandelman.ca> <20060319222606.GJ27125 at binky.Central.Sun.COM>

On Sun, Mar 19, 2006 at 04:26:06PM -0600, Nicolas Williams wrote:
> On Sun, Mar 19, 2006 at 11:49:46AM -0600, Michael Richardson wrote:
> >   If there are two connections between peers, such as, in some cases, two NFS
> > mounts, but certainly if I used channel binding for two SSH connections for
> > which I had a (probably-non-btns) /32<->/32 tunnel, would both instances see
> > the same binding data?
> 
> Most often, yes, but not necessarily.

To be more specific, provided that the peer IDs do not change then the
*latched* IDs should be the same for all end-to-end connections with the
same ends, but because of key rollovers the channel bindings for any two
such connections may be different.

Follow-Ups:
- [anonsec] BTNS updates
  - From: Michael Richardson

References:
- [anonsec] BTNS updates
  - From: Nicolas Williams
- [anonsec] BTNS updates
  - From: Michael Richardson
- [anonsec] BTNS updates
  - From: Nicolas Williams

Prev by Date: [anonsec] BTNS updates
Next by Date: [anonsec] BTNS updates
Previous by thread: [anonsec] BTNS updates
Next by thread: [anonsec] BTNS updates
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.