authentication and ESP
Perry E. Metzger
perry at piermont.com
Sun Jun 22 18:45:35 EDT 2003
"John S. Denker" <jsd at monmouth.com> writes:
> On 06/19/2003 01:49 PM, martin f krafft wrote:
> > As far as I can tell, IPsec's ESP has the functionality of
> > authentication and integrity built in:
>
> It depends on what you mean by "built in".
> 1) The RFC provides for ESP+authentication but
> does not require ESP to use authentication.
I don't know what you mean. Yes, ESP doesn't per se forbid the
construction of a new algorithm/mode that doesn't do authentication,
but all of the ESP algorithms/modes currently in use do
authentication.
Perry
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list