[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Encryption bit of Isakmp header

To: ietf-xauth@xxxxxxxx
Subject: Encryption bit of Isakmp header
From: vamsi <vamsi@xxxxxxxxxxxxx>
Date: Wed, 20 Dec 2000 14:34:52 +0530
List-archive: <http://www.vpnc.org/ietf-xauth/mail-archive/>
List-id: <ietf-xauth.vpnc.org>
List-unsubscribe: <mailto:ietf-xauth-request@vpnc.org?body=unsubscribe>
Sender: owner-ietf-xauth@xxxxxxxxxxxxx

Hi,

 The following is the Isakmp Header

     0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
    +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
    !                          Initiator                            !
    !                            Cookie                             !
    +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
    !                          Responder                            !
    !                            Cookie                             !
    +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
    !  Next Payload ! MjVer ! MnVer ! Exchange Type !     Flags     !
    +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
    !                          Message ID                           !
    +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
    !                            Length                             !
    +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+

 I am enabling the encryption bit  of the 'Flags' field  in the Isakmp Header
during the  'Transaction exchange' for Xauth,  when we require  the protected
exchanges.(This is what I am doing in my implemetation)

My doubt is,by just  enabling the Encryption bit  in the 'flags ' field of 
Isakmp header  would fullfill our requirement or else what about the other
bits
like 'Commit bit' and 'Authentication bit'.?

bye




**************************************************************
Wealth is lost            Nothing is lost
Health is lost            Something is lost
Character is lost      Everything is lost 

****************************************************************

Prev by Date: CHAP XAuth draft contradiction?
Next by Date: Transaction Exchange Packet Format
Previous by thread: CHAP XAuth draft contradiction?
Next by thread: Transaction Exchange Packet Format
Index(es):
- Date
- Thread