Re: [IPsec] review of draft-ietf-ipsecme-aes-ctr-ikev2-02

To: sean.s.shen at gmail.com
Subject: Re: [IPsec] review of draft-ietf-ipsecme-aes-ctr-ikev2-02
From: Alfred Hönes <ah at TR-Sys.de>
Date: Fri, 23 Oct 2009 15:05:14 +0200 (MESZ)
Cc: ipsec at ietf.org
Delivered-to: ipsec at core3.amsl.com
In-reply-to: <80b5a9190910230538h2a46e6e8i98235ea3529d45de at mail.gmail.com> from Sean Shen at Oct "23, " 2009 "08:38:45" pm
List-archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-help: <mailto:ipsec-request@ietf.org?subject=help>
List-id: Discussion of IPsec protocols <ipsec.ietf.org>
List-post: <mailto:ipsec@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>

Sean Shen wrote:

>> ...
>>
> [Sean] The IKEv2 requirement in the draft is only about key lengths.
> I never pretended that the AES standard allows arbitary conbinations
> of key lengths and rounds.
> I checked the document again and noticed that in the second paragraph
> of section 2:
> "... The choices of Key Size, Rounds and Block Size are defined as
>   following which are compatible with [RFC3686]."

That was one of my initial complaints ...

> If this sentense misleads readers to think that users can choose all
> conbinations, I will rewrite it as:
>  "... The choices of Key Size are defined as following which are
>   compatible with [RFC3686]."

... and that's essentially what I had proposed for that paragraph.

And yes, since that's written in the overview of Section 2, which
lays out the skeleton of the remainder of the section, the immediate
consequence of this change should be to drop sections 2.2 and 2.3
as well, as explained in my original review.
(To recall: The argument presented there was that, after dropping
inappropriate text, the remaining text in 2.2 & 2.3 would be a
simple -- yet verbose -- restatement of the first paragraph of
Section 2, and hence redundant anyway.)

Bingo!  We are converging.  Thanks.

> Best Regards,
>
> Sean

Kind regards,
  Alfred.

-- 

+------------------------+--------------------------------------------+
| TR-Sys Alfred Hoenes   |  Alfred Hoenes   Dipl.-Math., Dipl.-Phys.  |
| Gerlinger Strasse 12   |  Phone: (+49)7156/9635-0, Fax: -18         |
| D-71254  Ditzingen     |  E-Mail:  ah at TR-Sys.de                     |
+------------------------+--------------------------------------------+

Follow-Ups:
- Re: [IPsec] review of draft-ietf-ipsecme-aes-ctr-ikev2-02
  - From: Sean Shen

References:
- Re: [IPsec] review of draft-ietf-ipsecme-aes-ctr-ikev2-02
  - From: Sean Shen

Prev by Date: Re: [IPsec] review of draft-ietf-ipsecme-aes-ctr-ikev2-02
Next by Date: Re: [IPsec] review of draft-ietf-ipsecme-aes-ctr-ikev2-02
Previous by thread: Re: [IPsec] review of draft-ietf-ipsecme-aes-ctr-ikev2-02
Next by thread: Re: [IPsec] review of draft-ietf-ipsecme-aes-ctr-ikev2-02
Index(es):
- Date
- Thread

Re: [IPsec] review of draft-ietf-ipsecme-aes-ctr-ikev2-02

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.