[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[saag] The use of AES-192 and AES-256 in Secure RTP

From: David McGrew <mcgrew at cisco.com>
To: AVT <avt at ietf.org>, ietf-rtpsec at imc.org, saag at mit.edu
Date: Thu, 4 May 2006 12:15:10 -0700

Hello,

here's some additional text that explains the "hedge" strategy.Perhaps it's worth adding to the draft. Comments welcome.


David

The main motivation for AES-192 and AES-256 is to provide alternativeciphers to AES-128 that can be adopted in event that unforeseenadvances in cryptanalysis significantly erode the security level ofAES-128. The main purpose of this specification is to providealgorithm agility to SRTP, to allow that protocol to easily adopt thealternative ciphers if the need arises in the future. It MUST NOT beinterpreted as discouraging the use of AES-128. Implementers MAYsupport the alternative ciphers in advance of any need to replaceAES-128, in order to facilitate a potential future 'hot swap'replacement, but those implementations MUST be prepared tointeroperate with implementations that do not support the alternativeciphers.

Follow-Ups:
- Re: [saag] The use of AES-192 and AES-256 in Secure RTP
  - From: Paul Hoffman
- Re: [saag] The use of AES-192 and AES-256 in Secure RTP
  - From: Paul Hoffman

Prev by Date: Re: [saag] IPsec spec problems
Next by Date: Re: [saag] Fwd: draft-bonica-tcp-auth
Previous by thread: Re: [saag] The use of AES-192 and AES-256 in Secure RTP
Next by thread: Re: [saag] The use of AES-192 and AES-256 in Secure RTP
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.