|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: IPS-All: Reminder - Security draft last call ends Monday, Jul y 1 at 8am ESTExcerpt of message (sent 28 June 2002) by Black_David@emc.com: > The term "preshared keying" describes situations in which the preconfigured > keys are used to derive multiple session keys in a fashion that compromise > of a session key does not imply compromise or serious weakening of the > preconfigured keys (IKE uses a keyed prf [usually a hash] to obtain this > property). Pre-shared keying is REQUIRED (MUST implement). That's not quite accurate. "Preshared key" is really a misnomer; "authentication via shared secret" would be more accurate. The shared secret is not used to derive session keys. Session keys are derived from a Diffie-Hellman exchange. The shared secret is used after the D-H exchange to have each side prove to the other that it holds the shared secret. The use of a hash for key derivation occurs in Quick Mode (IKE phase 2) when PRF is not used; it derives the session key from the D-H value obtained in Phase 1. paul
Home Last updated: Fri Jun 28 20:18:43 2002 11017 messages in chronological order |