[119320] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

AH is pretty useless and perhaps should be deprecated

daemon@ATHENA.MIT.EDU (Jack Kohn)
Fri Nov 13 19:23:28 2009

Date: Sat, 14 Nov 2009 05:52:51 +0530
From: Jack Kohn <kohn.jack@gmail.com>
To: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org

Hi,

Interesting discussion on the utility of Authentication Header (AH) in
IPSecME WG.

http://www.ietf.org/mail-archive/web/ipsec/current/msg05026.html

Post explaining that AH even though protecting the source and
destination IP addresses is really not good enough.

http://www.ietf.org/mail-archive/web/ipsec/current/msg05056.html

What do folks feel? Do they see themselves using AH in the future?
IMO, ESP and WESP are good enough and we dont need to support AH any
more ..

Jack


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[119320] in North American Network Operators' Group

AH is pretty useless and perhaps should be deprecated

daemon@ATHENA.MIT.EDU (Jack Kohn)Fri Nov 13 19:23:28 2009

daemon@ATHENA.MIT.EDU (Jack Kohn)
Fri Nov 13 19:23:28 2009