Re: Your DISCUSS on draft-ietf-secsh-newmodes-05

To: Bill Sommerfeld <sommerfeld%sun.com@localhost>
Subject: Re: Your DISCUSS on draft-ietf-secsh-newmodes-05
From: Derek Fawcus <dfawcus%cisco.com@localhost>
Date: Tue, 6 Sep 2005 22:08:39 +0100

On Tue, Sep 06, 2005 at 02:37:23PM -0400, Bill Sommerfeld wrote:
> On Tue, 2005-09-06 at 14:00, Russ Housley wrote:
> > We know that the current REQUIRED algorithm is not as robust as we would 
> > like.  It is not so flawed that we need to rush to a new one, but we should 
> > plan an orderly migration.  By making one of these algorithms REQUIRED, we 
> > are telling implementors where we are going.
> > 
> > I would like to see AES128-CTR be REQUIRED.
> 
> <wg chair hat off>
> "me too."  
> <wg chair hat on>
> 
> Anyone with an opinion on this topic who has *not* yet spoken up should
> do so sooner rather than later.  Please keep Russ CC:ed in this
> discussion.

Oh all right the :-)  I tend to agree - one of the AES ciphers should be
required.

So given that CTR are to be preferred over CBC I'd also support AES128-CTR as REQUIRED.

DF

References:
- [Fwd: [Russ Housley] DISCUSS: draft-ietf-secsh-newmodes-05]
  - From: Bill Sommerfeld
- Your DISCUSS on draft-ietf-secsh-newmodes-05
  - From: Bill Sommerfeld
- Re: Your DISCUSS on draft-ietf-secsh-newmodes-05
  - From: Russ Housley
- Re: Your DISCUSS on draft-ietf-secsh-newmodes-05
  - From: Bill Sommerfeld

Prev by Date: Re: I-D ACTION:draft-ietf-secsh-publickeyfile-09.txt
Next by Date: Re: Your DISCUSS on draft-ietf-secsh-newmodes-05
Previous by Thread: Re: Your DISCUSS on draft-ietf-secsh-newmodes-05
Next by Thread: Re: Your DISCUSS on draft-ietf-secsh-newmodes-05
Indexes:

Home | Main Index | Thread Index | Old Index