[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: Counter Mode: Proposed Way Forward
Pual:
As I said last time you raised this question, I would like to keep it for
aligment with CCM. Since CCM never uses the value of all zero, it allows a
straightforward implementation of both algorithms. It is not a big deal.
Russ
-----Original Message-----
From: Paul Koning
To: Housley, Russ
Cc: ipsec@lists.tislabs.com
Sent: 11/27/02 12:52 PM
Subject: Re: Counter Mode: Proposed Way Forward
>>>>> "Russ" == Russ Housley <Housley> writes:
Russ> ...
Russ> I propose the replacement of the truncated SPI with the 24 most
Russ> significant bits form the IKE nonces. I propose that the
Russ> initiator use 24 bits from its own nonce, and the responder use
Russ> 24 bits from its own nonce. ...
Russ> Unless I hear an uproar on the list, I will update the draft to
Russ> reflect this way forward.
Sounds good.
How about losing the flags field, since it appears to serve no
purpose, and using 32 bits of nonce?
paul