ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Last Call: 'Key Change Strategies for TCP-MD5' to Informational RFC (draft-bellovin-keyroll2385)

2006-10-02 19:22:54
from [Steven M. Bellovin] [Permanent Link] 
On Tue, 03 Oct 2006 01:18:52 +0200, Jefsey_Morfin <jefsey(_at_)jefsey(_dot_)com>
wrote:


I like it. Any security issue in having the same content sent twice 
with old and then new key?


Probably not a problem for an authentication-only key.  If it were a
secrecy key, there'd be some cause for concern, though using a different
IV would mitigate it somewhat.


                --Steven M. Bellovin, http://www.cs.columbia.edu/~smb

_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/ietf
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Last Call: 'Key Change Strategies for TCP-MD5' to Informational RFC (draft-bellovin-keyroll2385), Jefsey_Morfin
Next by Date:  MLTF meeting before IGF, Jefsey_Morfin
Previous by Thread:  Re: Last Call: 'Key Change Strategies for TCP-MD5' to Informational RFC (draft-bellovin-keyroll2385), Jefsey_Morfin
Next by Thread:  Re: Last Call: 'Key Change Strategies for TCP-MD5' to Informational RFC (draft-bellovin-keyroll2385), Iljitsch van Beijnum
Indexes:  [Date] [Thread] [Top] [All Lists]