> On 3 Mar 2021, at 21:36, Dan Harkins wrote:
>
>
> Faster and more secure seem to be compelling reasons. Those reasons are
> probably more compelling for ESP than they are for IKE.
Yes. If we were back in 2008 and figuring out which AEAD we should be using and
they were both as unencumbe
to individual IETF WGs to define
how to use that cipher mode in their particular protocols.
That's where we come in.
regards,
Dan.
Dan
*From:* IPsec *On Behalf Of *Dan Harkins
*Sent:* Wednesday, March 3, 2021 2:37 PM
*To:* ipsec@ietf.org
to regain trust
in OCB3 relative to OCB2?
From: Dan Harkins
Sent: Mar 4, 2021 5:29 PM
To: Dan Brown ; ipsec@ietf.org
Subject: Re: [IPsec] [Cryptography] Direct public confirmation from Dr. Rogaway
(fwd)
Hi Dan,
On 3/4/21 11:04 AM, Dan Brown wrote:
Deciding whet
n.
Dan
*From:* IPsec *On Behalf Of *Dan Harkins
*Sent:* Wednesday, March 3, 2021 2:37 PM
*To:* ipsec@ietf.org
*Subject:* Re: [IPsec] [Cryptography] Direct public confirmation from
Dr. Rogaway (fwd)
Faster and more secure seem to be compelling reasons. Those reasons are
probably more com
problem.
Dan
From: IPsec On Behalf Of Dan Harkins
Sent: Wednesday, March 3, 2021 2:37 PM
To: ipsec@ietf.org
Subject: Re: [IPsec] [Cryptography] Direct public confirmation from Dr. Rogaway
(fwd)
Faster and more secure seem to be compelling reasons. Those reasons are
probably
Dan Harkins writes:
> If an individual draft was to appear would the WG adopt it as a work item?
Can't say what WG would decide, but I would support such work, and
would be willing to start a process to adding such item to charter if
WG feels that is something we want to do.
--
kivi...@iki.fi
_
Hi Dan
Glad you replied to this, OCB seems to be a hot topic at the moment. There
seems to be some interest in this simply due to the potential speed
increase.
Would anyone know the potential % difference in speed compared to GCM ?
In summary I think it should be discussed.
cheers
On Wed, Mar
Faster and more secure seem to be compelling reasons. Those reasons are
probably more compelling for ESP than they are for IKE.
The license for OCB always had some caveats like the code could not
be used
for military purposes which is something of a nightmare for a
manufacturer of
general
IIRC the license has allowed OCB to be used for TLS for several years. They
haven’t taken it up. There are no AES-OCB ciphersuites
inhttps://www.iana.org/assignments/tls-parameters/tls-parameters.xml#tls-parameters-4
https://www.iana.org/assignments/tls-parameters/tls-parameters.xml#tls-paramet
