On Tue, 2 Mar 2010 12:12:19 -0800 (PST) "Dan Harkins" <[email protected]> wrote:
> > Hello, > > There are other criteria that should be evaluated in making a > decision, such as how well does the solution fits into IKE(v2) and > does it support "crypto agility". > There are certainly many things that need to be considered, including how, specifically, a particular algorithm can be embedded into an engineered framework. Any solution that requires a single, fixed-for-all-time modulus and base is, to me, unacceptable. (That was the problem with SKIP, way back when.) _______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
