Re: additional core draft nits in need of WG attention.

To: Bill Sommerfeld <sommerfeld%east.sun.com@localhost>
Subject: Re: additional core draft nits in need of WG attention.
From: Markus Friedl <markus%openbsd.org@localhost>
Date: Sat, 15 Nov 2003 17:17:45 +0100

On Mon, Nov 10, 2003 at 02:12:10AM -0500, Bill Sommerfeld wrote:
> immediately after this text:
> 
>    The ciphers in each direction MUST run independently of each other,
>    and implementations MUST allow independently choosing the algorithm
>    for each direction (if multiple algorithms are allowed by local
>    policy.
> 
> insert:
> 
>    Note that there is no security advantage to using different
>    algorithms in each direction; implementations SHOULD use the same
>    algorithm in both directions when allowed by policy.

In IPsec the algorithms are unidirectional.  Why
should it be a SHOULD for SSH?

References:
- additional core draft nits in need of WG attention.
  - From: Bill Sommerfeld

Prev by Date: Re: additional core draft nits in need of WG attention.
Next by Date: Re: additional core draft nits in need of WG attention.
Previous by Thread: Re: additional core draft nits in need of WG attention.
Next by Thread: Re: additional core draft nits in need of WG attention.
Indexes:

Home | Main Index | Thread Index | Old Index