[18953] in cryptography@c2.net mail archive
Re: "ISAKMP" flaws?
daemon@ATHENA.MIT.EDU (Paul Hoffman)
Tue Nov 15 16:58:26 2005
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
In-Reply-To: <20051115192921.F35A83BFE5C@berkshire.machshav.com>
Date: Tue, 15 Nov 2005 13:06:12 -0800
To: "Steven M. Bellovin" <smb@cs.columbia.edu>
From: Paul Hoffman <paul.hoffman@vpnc.org>
Cc: cryptography@metzdowd.com
At 2:29 PM -0500 11/15/05, Steven M. Bellovin wrote:
>I mostly agree with you, with one caveat: the complexity of a spec can
>lead to buggier implementations.
Well, then we fully agree with each other. Look at the message
formats used in the protocols they have attacked successfully so far.
Humorously, security folks seem to have ignored this when designing
our protocols.
--Paul Hoffman, Director
--VPN Consortium
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
