Re: Some questions about "SSH Transport Layer Encryption Modes"

To: Markus Friedl <markus%openbsd.org@localhost>
Subject: Re: Some questions about "SSH Transport Layer Encryption Modes"
From: Bill Sommerfeld <sommerfeld%east.sun.com@localhost>
Date: Sun, 19 Oct 2003 19:51:58 -0400

So, it looks like the proper repair here is to clearly document what's
actually implemented and deployed -- implementations must suspend
transport of user data while rekey negotiation is in progress.

This is not optimal but it works.

For those still not satisfied, I invite anyone who wants
"seamless"/non-blocking rekeying to write and submit a draft
documenting how to negotiate the use of a different key cutover
strategy with a consenting peer.

						- Bill

Follow-Ups:
- Re: Some questions about "SSH Transport Layer Encryption Modes"
  - From: Jacob Nevins
- Re: Some questions about "SSH Transport Layer Encryption Modes"
  - From: Derek Fawcus

References:
- Re: Some questions about "SSH Transport Layer Encryption Modes"
  - From: Markus Friedl

Prev by Date: Re: Some questions about "SSH Transport Layer Encryption Modes"
Next by Date: Re: Some questions about "SSH Transport Layer Encryption Modes"
Previous by Thread: Re: Some questions about "SSH Transport Layer Encryption Modes"
Next by Thread: Re: Some questions about "SSH Transport Layer Encryption Modes"
Indexes:

Home | Main Index | Thread Index | Old Index