I would prefer maintain using Au Type = 2 for the new algo's as well. With a thought ; as there is a possibility of more algo's to be added in te same scheme with Au Type = 2, and there is some talk about MD5 being the most used in implementations.
Can we have a default algo. concept?? Regds, Sujay G My Location; http://maps.google.com/maps?ll=14.626109,76.959229&spn=4.724852,7.525085&t=h &hl=en This e-mail and attachments contain confidential information from HUAWEI, which is intended only for the person or entity whose address is listed above. Any use of the information contained herein in any way (including, but not limited to, total or partial disclosure, reproduction, or dissemination) by persons other than the intended recipient's) is prohibited. If you receive this e-mail in error, please notify the sender by phone or email immediately and delete it! -----Original Message----- From: Russ White [mailto:[EMAIL PROTECTED] Sent: 2006年8月23日 2:38 To: Acee Lindem Cc: [email protected] Subject: Re: [OSPF] Revised OSPF HMAC SHA Authentication Draft -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 > I'd also vote against this since the standardized definition of > cryptographic authentication (AuType = 2) was designed to accommodate > different hash algorithms. Based on the discussion heretofore, it > seems that its definition satisfies this requirement. Additionally, I > don't see any compatibility problems with implementations > unequivocally map AuType 2 to MD5 authentication. As one would expect, > authentication will fail (at least with a very high probability :^) if > there is a mismatch between configured hash algorithms. Agreed--I would agree this is the best way to handle this. :-) Russ - -- [EMAIL PROTECTED] CCIE <>< Grace Alone -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFE63IWER27sUhU9OQRAlQ9AKDMTNxCGSlvsYfm13dimdbPkZUBMwCgxLPO kG7cKpSwagLsx+4T2ZjbB+Q= =wtHk -----END PGP SIGNATURE----- _______________________________________________ OSPF mailing list [email protected] https://www1.ietf.org/mailman/listinfo/ospf _______________________________________________ OSPF mailing list [email protected] https://www1.ietf.org/mailman/listinfo/ospf
