At 11:17 AM -0800 3/8/10, Dan Harkins wrote:
> Let me take this opportunity to point out that RFC 5297 describes
>an AES-CTR variant that does not have the performance benefits that
>GCM has but provides nonce misuse/abuse resistance.
It feels like your comment is unrelated to this thread, unless
Hi,
Let me take this opportunity to point out that RFC 5297 describes
an AES-CTR variant that does not have the performance benefits that
GCM has but provides nonce misuse/abuse resistance. It is a much more
robust alternative than CCM because security is not voided if the
nonce/counter happe
At 8:33 AM -0800 3/8/10, David McGrew wrote:
>The statement that "Although the [RFC4307] specifies that the AES-CTR
>encryption algorithm feature SHOULD be supported by IKEv2, no existing
>document specifies how IKEv2 can support the feature" is not completely
>correct. RFC 5282 specifies how
