[IPsec] #116: The AUTH payload signature

To: IPsecme WG <ipsec at ietf.org>
Subject: [IPsec] #116: The AUTH payload signature
From: Yaron Sheffer <yaronf at checkpoint.com>
Date: Fri, 30 Oct 2009 01:18:07 +0200
Accept-language: en-US
Acceptlanguage: en-US
Delivered-to: ipsec at core3.amsl.com
List-archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-help: <mailto:ipsec-request@ietf.org?subject=help>
List-id: Discussion of IPsec protocols <ipsec.ietf.org>
List-post: <mailto:ipsec@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
Thread-index: AcpY7JIWsaUaiVnDRVWi32jyvGpWeA==
Thread-topic: #116: The AUTH payload signature

The definition of the payload (sec. 3.8) should mention explicitly that the payload hash algorithm is unrelated to the one used in the certificate, or the algorithm used to sign the IKE Encrypted Payload.

Moreover, the words "by default" are confusing and should be deleted.

Follow-Ups:
- Re: [IPsec] #116: The AUTH payload signature
  - From: Yaron Sheffer
- [IPsec] #116: The AUTH payload signature
  - From: Tero Kivinen

Prev by Date: [IPsec] Certificate-related issues
Next by Date: [IPsec] #117: Hash and URL interop
Previous by thread: [IPsec] Certificate-related issues
Next by thread: [IPsec] #116: The AUTH payload signature
Index(es):
- Date
- Thread

[IPsec] #116: The AUTH payload signature

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.