| < draft-mglt-ipsecme-implicit-iv-03.txt | draft-mglt-ipsecme-implicit-iv-04.txt > | |||
|---|---|---|---|---|
| IPSECME D. Migault, Ed. | IPSECME D. Migault, Ed. | |||
| Internet-Draft Ericsson | Internet-Draft Ericsson | |||
| Intended status: Standards Track T. Guggemos, Ed. | Intended status: Standards Track T. Guggemos, Ed. | |||
| Expires: December 22, 2017 LMU Munich | Expires: December 22, 2017 LMU Munich | |||
| Y. Nir | Y. Nir | |||
| Check Point | Dell EMC | |||
| June 20, 2017 | June 20, 2017 | |||
| Implicit IV for Counter-based Ciphers in IPsec | Implicit IV for Counter-based Ciphers in IPsec | |||
| draft-mglt-ipsecme-implicit-iv-03 | draft-mglt-ipsecme-implicit-iv-04 | |||
| Abstract | Abstract | |||
| IPsec ESP sends an initialization vector (IV) or nonce in each | IPsec ESP sends an initialization vector (IV) or nonce in each | |||
| packet, adding 8 or 16 octets. Some algorithms such as AES-GCM, AES- | packet, adding 8 or 16 octets. Some algorithms such as AES-GCM, AES- | |||
| CCM, AES-CTR and ChaCha20-Poly1305 require a unique nonce but do not | CCM, AES-CTR and ChaCha20-Poly1305 require a unique nonce but do not | |||
| require an unpredictable nonce. When using such algorithms the | require an unpredictable nonce. When using such algorithms the | |||
| packet counter value can be used to generate a nonce, saving 8 octets | packet counter value can be used to generate a nonce, saving 8 octets | |||
| per packet. This document describes how to do this. | per packet. This document describes how to do this. | |||
| skipping to change at page 7, line 25 ¶ | skipping to change at page 7, line 25 ¶ | |||
| Tobias Guggemos (editor) | Tobias Guggemos (editor) | |||
| LMU Munich | LMU Munich | |||
| Oettingenstr. 67 | Oettingenstr. 67 | |||
| 80538 Munich, Bavaria | 80538 Munich, Bavaria | |||
| Germany | Germany | |||
| Email: guggemos@mnm-team.org | Email: guggemos@mnm-team.org | |||
| URI: http://mnm-team.org/~guggemos | URI: http://mnm-team.org/~guggemos | |||
| Yoav Nir | Yoav Nir | |||
| Check Point Software Technologies Ltd. | Dell EMC | |||
| 5 Hasolelim st. | 9 Andrei Sakharov St | |||
| Tel Aviv 6789735 | Haifa 3190500 | |||
| Israel | Israel | |||
| Email: ynir.ietf@gmail.com | Email: ynir.ietf@gmail.com | |||
| End of changes. 3 change blocks. | ||||
| 5 lines changed or deleted | 5 lines changed or added | |||
This html diff was produced by rfcdiff 1.48. The latest version is available from http://tools.ietf.org/tools/rfcdiff/ | ||||