Actually, the SAAG voted to drop DES from IPsec back in, oh, the
Minneapolis IETF in March '99 (IIRC). I think the problem is that
nobody has revved the IPsec docs.
-derek
Paul Crowley <[EMAIL PROTECTED]> writes:
> "L. Sassaman" <[EMAIL PROTECTED]> writes:
> > > > Frankly, I can't understand why the IPsec protocol still allows DES.
> > >
> > > We are waiting for AES.
> >
> > So am I correct in assuming you are saying that DES will be disallowed as
> > part of the IPsec protocol when AES is finalized?
> >
> > This would be good. I still think that DES should be dropped immediately,
> > however.
>
> I'm guessing that they have to have a MUST cipher, and they don't want
> to change twice, so it makes sense to wait until September and then
> make AES (or AES primary) the only MUST cipher.
> --
> __
> \/ o\ [EMAIL PROTECTED] *NOTE NEW EMAIL ADDRESS* \ /
> /\__/ Paul Crowley http://www.cluefactory.org.uk/paul/ /~\
>
--
Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory
Member, MIT Student Information Processing Board (SIPB)
URL: http://web.mit.edu/warlord/ PP-ASEL N1NWH
[EMAIL PROTECTED] PGP key available
