> On 3 Mar 2021, at 21:36, Dan Harkins wrote:
>
>
> Faster and more secure seem to be compelling reasons. Those reasons are
> probably more compelling for ESP than they are for IKE.
Yes. If we were back in 2008 and figuring out which AEAD we should be using and
they were both as
> On Feb 27, 2021, at 3:14 PM, Michael Richardson wrote:
>
> Signed PGP part
>
> Christian Hopps wrote:
>>> I still don't really see enough explanation of:
>>>
>>> 1) what do my probe packets look like? Can I, for instance, send
>>> regular traffic, padded to the extra size? That's an
Hi Dan^2
The OCB2 attack clearly states that ”Our attacks do not apply to OCB1 and
OCB3”. The attack is only applicable to OCB2 because of the particular way it
combines the XE and XEX modes. The technical details of the OCB2 attack should
not erode trust in OCB3.
Note that OCB3 was chosen
