Sent from my iPhone
> On Jul 8, 2015, at 04:18, Stephen Farrell <stephen.farr...@cs.tcd.ie> wrote: > > > > >> >>> intro: 3DES may be the "only other widely supported" cipher for >>> IPsec, but that's not true more generally. >> >> Well, this is a document about IPsec. It’s also true for TLS and SSH. >> There’s also the occasional Blowfish and Camelia, but 3DES is more >> common than any of them. There is RC4 and it’s fast, but (1) you >> can’t use that in IPsec, and (2) you don’t want to use that in TLS >> and SSH anyway. > > The problem is the word "only" - that is simply not true in general. > I'm not sure if it's true for VPNs. It is VERY true. There is only aes and 3des of you want to interop with non-opensource IKE or IPsec. > Camellia is widely supported in > browsers for example. So your text ought be fixed. Not in IKE or IPsec. Paul _______________________________________________ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec