[122634] in cryptography@c2.net mail archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: User interface, security, and "simplicity"

daemon@ATHENA.MIT.EDU (Jack Lloyd)
Tue May 6 14:26:05 2008

Date: Tue, 6 May 2008 13:53:49 -0400
From: Jack Lloyd <lloyd@randombit.net>
To: cryptography@metzdowd.com
Mail-Followup-To: cryptography@metzdowd.com
In-Reply-To: <20080506154046.6a23cf8f@yellowstone.machshav.com>

On Tue, May 06, 2008 at 03:40:46PM +0000, Steven M. Bellovin wrote:

> In particular, with TLS the session key can be negotiated between
> two user contexts; with IPsec/IKE, it's negotiated between a user
> and a system.  (Yes, I'm oversimplifying here.)

Is there any reason (in principle) that IPsec/IKE could not be done
entirely in userspace / application space, though?

-Jack

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[122634] in cryptography@c2.net mail archive

Re: User interface, security, and "simplicity"

daemon@ATHENA.MIT.EDU (Jack Lloyd)Tue May 6 14:26:05 2008

daemon@ATHENA.MIT.EDU (Jack Lloyd)
Tue May 6 14:26:05 2008