[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Another pothole in ISAKMP/Oakley

To: Daniel Harkins <dharkins@xxxxxxxxx>
Subject: Re: Another pothole in ISAKMP/Oakley
From: "David P. Jablon" <dpj@xxxxxxxxxxxxx>
Date: Wed, 16 Apr 1997 11:57:29 -0400
Cc: :@world.std.com
In-reply-to: <>
References: <Your message of "Tue, 15 Apr 1997 16:07:49 EDT." <>
Sender: owner-ipsec@xxxxxxxxxx

Dan,

Regarding:
>  Is this really a pothole in ISAKMP/Oakley?
>> Another pothole of note in ISAKMP is Diffie-Hellman
>> small-subgroup confinement.

Well, it's a problem in Diffie-Hellman itself, on which
ISAKMP/Oakley depends.  Apparently not enough people
know about it.

> Are you suggesting a reference to X9.42 in the ISAKMP/Oakley
> document? Also, for the benefit of those of us who are not
> cryptographers, can you elaborate on the problem of "small
> sub-group confinement" and how ISAKMP/Oakley fails to address it?

Yes.  See my reply to Hilarie's message for more elaboration.

-- David

References:
- Another pothole in ISAKMP/Oakley
  - From: David P. Jablon
- Re: Another pothole in ISAKMP/Oakley
  - From: Daniel Harkins

Prev by Date: Re: Predictable SPIs (was: Re: A pothole in ISAKMP/Oakley)
Next by Date: Re: Another pothole in ISAKMP/Oakley
Previous by thread: Re: Another pothole in ISAKMP/Oakley
Next by thread: Re: A pothole in ISAKMP/Oakley
Index(es):
- Date
- Thread