Arcfour & RC4

To: ietf-ssh%NetBSD.org@localhost
Subject: Arcfour & RC4
From: Chris Lonvick <clonvick%cisco.com@localhost>
Date: Wed, 9 Mar 2005 12:49:09 -0800 (PST)

Hi,

I went to the IPR WG meeting on Monday and learned lots.  But enough about
me...

The current [TRANS] document references Arcfour as an acceptable
algorithm.  It also references RC4 in a somewhat oblique way as follows:

   The "arcfour" is the Arcfour stream cipher with 128 bit keys.  The
   Arcfour cipher is believed to be compatible with the RC4 cipher
   [SCHNEIER].  Arcfour (and RC4) has problems with weak keys, and
   should be used with caution.

The parts about RC4 sound editorial to me.  I also don't think that the
document should say that there is a "belief" in compatability; they either
are provably compatible, or the document should remain silent on that
point.  As such, I propose to change the text to the following:

   The "arcfour" cipher is the Arcfour stream cipher with 128 bit keys
   [SCHNEIER].  Arcfour has problems with weak keys, and should be used
   with caution.

Please let me know if you disagree with this proposal.

Thanks,
Chris

Follow-Ups:
- Re: Arcfour & RC4
  - From: Ben Harris
- Re: Arcfour & RC4
  - From: Jeffrey Hutzelman
- Re: Arcfour & RC4
  - From: Rodney Thayer
- Re: Arcfour & RC4
  - From: Sam Hartman

Prev by Date: moving dh-group-exchange forward.
Next by Date: "Host name" definition somewhere in the ID set?
Previous by Thread: moving dh-group-exchange forward.
Next by Thread: Re: Arcfour & RC4
Indexes:

Home | Main Index | Thread Index | Old Index