[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Manual keying and replay prevention and ISAKMP negotiation

To: rodney@xxxxxxxxxxxxx
Subject: Re: Manual keying and replay prevention and ISAKMP negotiation
From: ho@xxxxxxxxxxxxx (Hilarie Orman)
Date: Fri, 4 Apr 1997 15:06:56 -0500
Cc: ipsec@xxxxxxx
In-reply-to: Yourmessage <199704041955.MAA09374@baskerville.CS.Arizona.EDU>
Sender: owner-ipsec@xxxxxxxxxx

There are two types of manual keying.  The AH and ESP implementations must
be able to work in the absence of any keying protocols at all. That's
why the drafts mention manual keying: it's all you can count on without
a key exchange protocol.

The ISAKMP/Oakley manual keying is for a different case.  If one party
has a key generated by a method that he is especially fond of
(e.g. hardware), he can securely transmit it to another party and
assign it to an SA.

Hilarie

Prev by Date: Manual keying and replay prevention and ISAKMP negotiation
Next by Date: Re: Manual keying and replay prevention
Previous by thread: Re: Manual keying and replay prevention and ISAKMP negotiation
Next by thread: Re: Manual keying and replay prevention and ISAKMP negotiation
Index(es):
- Date
- Thread