IETF-SSH archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

RE: applying AES-GCM to secure shell: proposed "tweak"

To: James Blaisdell <JBlaisdell%mocana.com@localhost>
Subject: RE: applying AES-GCM to secure shell: proposed "tweak"
From: Damien Miller <djm%mindrot.org@localhost>
Date: Thu, 16 Apr 2009 07:10:01 +1000 (EST)

On Wed, 15 Apr 2009, James Blaisdell wrote:

> It doesn't need to be ignored, but the order does matter. AEAD-*
> algorithms must appear first in the order list. And AEAD-* algos must
> match cipher and MAC in order as well. It's easy to detect, if there
> is a mismatch between cipher and hmac.

-1

That has the nasty side effect of specifying Cipher/MAC policy to server
operators.

References:
- applying AES-GCM to secure shell: proposed "tweak"
  - From: Tim Polk
- Re: applying AES-GCM to secure shell: proposed "tweak"
  - From: Niels Möller
- Re: applying AES-GCM to secure shell: proposed "tweak"
  - From: der Mouse
- Re: applying AES-GCM to secure shell: proposed "tweak"
  - From: Nicolas Williams
- RE: applying AES-GCM to secure shell: proposed "tweak"
  - From: James Blaisdell

Prev by Date: Re: applying AES-GCM to secure shell: proposed "tweak"
Next by Date: Re: applying AES-GCM to secure shell: proposed "tweak"
Previous by Thread: Re: applying AES-GCM to secure shell: proposed "tweak"
Next by Thread: RE: applying AES-GCM to secure shell: proposed "tweak"
Indexes:

Home | Main Index | Thread Index | Old Index