ipsec-6 Page:7
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20
|
Number of messages 4 Messages unless: Messages lost on network (all) Initiator misguesses DH group (JFK & OIKEv2) Initiator deciding he’s “under attack” (OIKEv2) Cost of 4 Messages: Complexity of “statelessness” Complexity of Message 3 partly encrypted Messages are larger / UDP Fragmentation issues May impact “Legacy Authentication” (next) |