[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Cfrg] Re: [saag] Algorithm upgrades

To: "Hallam-Baker, Phillip" <pbaker at verisign.com>
Subject: Re: [Cfrg] Re: [saag] Algorithm upgrades
From: Sam Hartman <hartmans at mit.edu>
Date: Tue, 02 Nov 2004 12:56:03 -0500
Cc: "<saag at mit.edu> <saag at mit.edu>" <saag at mit.edu>, "'James Hughes'" <James_Hughes at StorageTek.com>, "<cfrg at ietf.org>" <cfrg at ietf.org>
In-reply-to: <C6DDA43B91BFDA49AA2F1E473732113E010BECF3@mou1wnexm05.vcorp.ad.vrsn.com> (Phillip Hallam-Baker's message of "Mon, 1 Nov 2004 17:09:55 -0800")
List-help: <mailto:cfrg-request@ietf.org?subject=help>
List-id: Crypto Forum Research Group <cfrg.ietf.org>
List-post: <mailto:cfrg@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@ietf.org?subject=unsubscribe>
References: <C6DDA43B91BFDA49AA2F1E473732113E010BECF3@mou1wnexm05.vcorp.ad.vrsn.com>
Sender: cfrg-bounces at ietf.org
User-agent: Gnus/5.1006 (Gnus v5.10.6) Emacs/21.3 (gnu/linux)

>>>>> "Hallam-Baker," == Hallam-Baker, Phillip <pbaker at verisign.com> writes:

    >> 1. _New_ protocols that are being design should include the
    >> ability to negotiate algorithms. This is just good hygiene. If
    >> this is not formalized, it should be.

    Hallam-Baker,> I strongly disagree. History has showed that
    Hallam-Baker,> negotiation mechanisms can lead to worse security
    Hallam-Baker,> problems than they are meant to address. The IETF
    Hallam-Baker,> has certainly showed an exceptional ability to
    Hallam-Baker,> overcomplicate them.

I agree there are problems with negotiation layers.  

However so far they seem to be the only mechanism I've found that
work.  Can you explain how we would have handled the conversion from
DES to AES for IPSec in an alternate universe where all the protocols
worked as you desire?  I think that will help me understand what you
propose much better.

--Sam

_______________________________________________
Cfrg mailing list
Cfrg at ietf.org
https://www1.ietf.org/mailman/listinfo/cfrg

Follow-Ups:
- Re: [Cfrg] Re: [saag] Algorithm upgrades
  - From: D. J. Bernstein

References:
- RE: [Cfrg] Re: [saag] Algorithm upgrades
  - From: Hallam-Baker, Phillip

Prev by Date: RE: [Cfrg] Re: [saag] Algorithm upgrades
Next by Date: [Cfrg] Re: universal MACs
Previous by thread: RE: [Cfrg] Re: [saag] Algorithm upgrades
Next by thread: Re: [Cfrg] Re: [saag] Algorithm upgrades
Index(es):
- Date
- Thread