Re: Core draft last call update.

To: Wei Dai <weidai%eskimo.com@localhost>
Subject: Re: Core draft last call update.
From: RJ Atkinson <rja%extremenetworks.com@localhost>
Date: Thu, 14 Mar 2002 18:36:21 -0500


On Thursday, March 14, 2002, at 12:20 , Wei Dai wrote:

On Wed, Mar 13, 2002 at 09:54:23PM -0500, Bill Sommerfeld wrote:

I made a ruling as working group chair that, because (a) the problem
could be fixed by a separate document introducing new ciphers, and (b)
there clearly did not exist consensus on the a fix, that we should not
hold up advancement of the rest of SSH while we attempted to solve the
problem.

You've missed the train.  The core specs are now out of our hands.


I don't agree with the proposed resolution to the issue I raised. Should
I contact the Area Director now or wait for the general Last-Call?


Wei,

	If your goal is really to improve the deployed security
of the Internet, then you ought to just create the standalone
I-D and let the core drafts go without trying to de-rail
the train.

	Bottom line is some crypto is a higher work function for
an adversary than no crypto (telnet and plain-text).  Crypto
can always be improved.  Trying to optimise IPsec (repeatedly;
along many dimensions) is one of several reasons it was so badly
delayed.

	Also, for my part, I don't (yet) have a comfort level with
your proposal.

IMHO,

Ran
rja%extremenetworks.com@localhost

References:
- Re: Core draft last call update.
  - From: Wei Dai

Prev by Date: Re: a more detailed analysis of "known IV" vulnerability.
Next by Date: Re: a more detailed analysis of "known IV" vulnerability.
Previous by Thread: Re: Core draft last call update.
Next by Thread: Re: Core draft last call update.
Indexes:

Home | Main Index | Thread Index | Old Index