[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

ike2: SAi1 in msg 3

To: ipsec@xxxxxxxxxxxxxxxxx
Subject: ike2: SAi1 in msg 3
From: "jpickering%creeksidenet.com" <jpickering@xxxxxxxxxxxxxxxx>
Date: Wed, 08 Jan 2003 11:45:23 -0500
Sender: owner-ipsec@xxxxxxxxxxxxxxxxx
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; m18) Gecko/20001108 Netscape6/6.0

In Ike2, section 3.1 for msg 3 the text reads:

The initial payloads in message three are identical to the payloads in message 1.

While this may be true for payload types, it is clearly not required for payload contents since the key may differ if Bob chooses a proposal that changes the DH group. This brings up the question of the contents of SAi1 in message 3: Should this payload contain the original proposal set or the single proposal chosen by Bob? And what should Bob do when receiving the payload?

Another question regards Bob's nonce contents in message 2: if Bob places state information in message 2, eg. which suite he chose, what is the advantage of encrypting this state if Bob's cookie effectively signs the nonce?

Always grateful for helpful clarification.

Jeff

Prev by Date: Re: ike2 ambiguities?
Next by Date: Re: ike2: SAi1 in msg 3
Previous by thread: I-D ACTION:draft-ietf-ipsec-ciph-aes-ctr-02.txt
Next by thread: Re: ike2: SAi1 in msg 3
Index(es):
- Date
- Thread