RE: ISCSI: Required Crytographic transforms for iSCSI

To: "'Bill Strahm'" <bill@sanera.net>, "Ips@Ece. Cmu. Edu" <ips@ece.cmu.edu>
Subject: RE: ISCSI: Required Crytographic transforms for iSCSI
From: "Herbert, Howard C" <howard.c.herbert@intel.com>
Date: Wed, 29 Aug 2001 17:38:38 -0700
Content-Type: text/plain;charset="iso-8859-1"
Sender: owner-ips@ece.cmu.edu

Would the following wording capture the results of yesterday's meeting?

IPsec ESP Authentication-Only:

SHA-1 HMAC and NULL confidentiality - Must implement
AES in CBC MAC mode with XCBC extensions** and NULL confidentiality - Should
implement

IPsec ESP Authentication and Confidentiality:
   
SHA-1 HMAC and Triple DES in CBC mode - Must implement
AES in CBC MAC mode with XCBC extensions** and AES in CTR mode - Should
implement

**Pending closure with NIST and IPsec working group chairs (AR Howard
Herbert)

-----Original Message-----
From: Bill Strahm [mailto:bill@sanera.net]
Sent: Wednesday, August 29, 2001 8:34 AM
To: Ips@Ece. Cmu. Edu
Subject: ISCSI: Required Crytographic transforms for iSCSI


When we were talking about required transforms yesterday in Los Angeles, I
believe that we forgot a VERY important transform that need to be a MUST
implement for ESP.  That is the NULL Encryption Algorithm (RFC2410).

I propose that this algorithm is a MUST implement for all iSCSI
implementations

Bill
Sanera Systems Inc.

Prev by Date: Re: iSCSI: reusing ISID for recovery
Next by Date: Re: iSCSI: draft 7: remove S bit and Status field from the Data-i (fwd)
Prev by thread: Re: ISCSI: Required Crytographic transforms for iSCSI
Next by thread: RE: ISCSI: Required Crytographic transforms for iSCSI
Index(es):
- Date
- Thread

Home

Last updated: Tue Sep 04 01:03:51 2001
6315 messages in chronological order