On Thu, 11 Nov 2021, Tero Kivinen wrote:
My suggestion (as an individual not as a chair) is to add text to
security considerations section where we point out that
implementations should limit the number of IKE_INTERMEDIATE exchanges
they allow to something sensible, like 10 or so.
These are
Valery Smyslov writes:
> So, the question to the WG is - what should we do with this:
>
> 1. Re-define calculation of IntAuth to make it constant in size.
> This will most probably require another WGLC and will break
> interoperablity of existing products. The latter seems not so
>
Hi,
I have had off the list discussion with Tobias Brunner and he has pointed out
to one potential issue
with draft-ietf-ipsecme-ikev2-intermediate. Currently the authentication of
IKE_INTERMEDIATE
exchanges is performed as follows:
InitiatorSignedOctets = RealMsg1 | NonceRData |
