Re: MUST implement AES-CBC for IPsec ESP

To: Russ Housley <housley at vigilsec.com>
Subject: Re: MUST implement AES-CBC for IPsec ESP
From: Lakshminath Dondeti <ldondeti at qualcomm.com>
Date: Sat, 20 Jan 2007 13:34:54 -0800
Cc: ipsec at ietf.org, saag at mit.edu, ietf at ietf.org
In-reply-to: <7.0.0.16.2.20070117095212.04035c38@vigilsec.com>
List-help: <mailto:ietf-request@ietf.org?subject=help>
List-id: IETF-Discussion <ietf.ietf.org>
List-post: <mailto:ietf@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
References: <7.0.0.16.2.20070117095212.04035c38@vigilsec.com>
User-agent: Thunderbird 2.0b1 (Windows/20061206)

What are the export implications due to this? A compliant ESP implementation MUST include the DES cipher due to this change. With status quo, a compliant ESP implementation can be used for integrity protection alone with NULL encryption.

regards,
Lakshminath

Russ Housley wrote:

During the IETF Last Call for draft-manral-ipsec-rfc4305-bis-errata, we received a comment that deserves wide exposure.

For ESP encryption algorithms, the document that was sent out for Last Call contains the following table:
      Requirement    Encryption Algorithm (notes)
      -----------    --------------------
      MUST           NULL (1)
      MUST-          TripleDES-CBC [RFC2451]
      SHOULD+        AES-CBC with 128-bit keys [RFC3602]
      SHOULD         AES-CTR [RFC3686]
      SHOULD NOT     DES-CBC [RFC2405] (3)
The Last Call comment suggests changing the "SHOULD+" for AES-CBC to "MUST."

I support this proposed change, and I have asked the author to make this change in the document that will be submitted to the IESG for consideration on the Telechat on January 25th. If anyone has an objection to this change, please speak now. Please send comments on this proposed change to the iesg at ietf.org or ietf at ietf.org mailing lists by 2007-01-24.
Russ Housley
Security AD
_______________________________________________
Ietf mailing list
Ietf at ietf.org
https://www1.ietf.org/mailman/listinfo/ietf


_______________________________________________
Ietf mailing list
Ietf at ietf.org
https://www1.ietf.org/mailman/listinfo/ietf

Follow-Ups:
- RE: MUST implement AES-CBC for IPsec ESP
  - From: Yaakov Stein
- Re: MUST implement AES-CBC for IPsec ESP
  - From: Steven M. Bellovin
- [Ipsec] Re: MUST implement AES-CBC for IPsec ESP
  - From: Paul Hoffman
- RE: MUST implement AES-CBC for IPsec ESP
  - From: Lawrence Rosen

References:
- MUST implement AES-CBC for IPsec ESP
  - From: Russ Housley

Prev by Date: Re: Last Call: draft-ietf-webdav-rfc2518bis (HTTP Extensions for Distributed Authoring - WebDAV) to Proposed Standard
Next by Date: RE: MUST implement AES-CBC for IPsec ESP
Previous by thread: MUST implement AES-CBC for IPsec ESP
Next by thread: RE: MUST implement AES-CBC for IPsec ESP
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.

Re: MUST implement AES-CBC for IPsec ESP

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.