Re: [psg.com #460] IESG - Transport - Oakley

To: Jeffrey Hutzelman <jhutz%cmu.edu@localhost>
Subject: Re: [psg.com #460] IESG - Transport - Oakley
From: Jon Bright <jon%siliconcircus.com@localhost>
Date: Wed, 16 Jun 2004 11:24:00 +0200

Hi,

I'd argue for text more like this:

-----
As stated in Section 7.1 of [TRANS], each device will send a list of
methods for key exchange.  The most-preferred method is the first
in the list.  Implementations are free to determine their default
preferences based upon relative cryptographic security, performance

or other criteria. If only the two methods defined in Section 8.1 of[TRANS] are are implemented, it is RECOMMENDED thatdiffie-hellman-group14-sha1 be listed before

diffie-hellman-group1-sha1 in the kex list.
----

Where this text belongs is a different question - [ARCH] is probablywrong, in my opinion. This seems more like an issue for the SecurityConsiderations section of [TRANS]. The text above would obviously needreformatting if it were moved there.


--
Jon Bright
Silicon Circus Ltd.
http://www.siliconcircus.com

References:
- Re: [psg.com #460] IESG - Transport - Oakley
  - From: Chris Lonvick
- Re: [psg.com #460] IESG - Transport - Oakley
  - From: Niels Möller
- Re: [psg.com #460] IESG - Transport - Oakley
  - From: Jeffrey Hutzelman

Prev by Date: Re: I-D ACTION:draft-ietf-secsh-transport-18.txt
Next by Date: RE: I-D ACTION:draft-ietf-secsh-transport-18.txt
Previous by Thread: Re: [psg.com #460] IESG - Transport - Oakley
Next by Thread: question related to the DH-GEX draft
Indexes:

Home | Main Index | Thread Index | Old Index