draft-mglt-ipsecme-implicit-iv-03.txt   draft-mglt-ipsecme-implicit-iv-04.txt 
IPSECME D. Migault, Ed. IPSECME D. Migault, Ed.
Internet-Draft Ericsson Internet-Draft Ericsson
Intended status: Standards Track T. Guggemos, Ed. Intended status: Standards Track T. Guggemos, Ed.
Expires: December 22, 2017 LMU Munich Expires: December 22, 2017 LMU Munich
Y. Nir Y. Nir
Check Point Dell EMC
June 20, 2017 June 20, 2017
Implicit IV for Counter-based Ciphers in IPsec Implicit IV for Counter-based Ciphers in IPsec
draft-mglt-ipsecme-implicit-iv-03 draft-mglt-ipsecme-implicit-iv-04
Abstract Abstract
IPsec ESP sends an initialization vector (IV) or nonce in each IPsec ESP sends an initialization vector (IV) or nonce in each
packet, adding 8 or 16 octets. Some algorithms such as AES-GCM, AES- packet, adding 8 or 16 octets. Some algorithms such as AES-GCM, AES-
CCM, AES-CTR and ChaCha20-Poly1305 require a unique nonce but do not CCM, AES-CTR and ChaCha20-Poly1305 require a unique nonce but do not
require an unpredictable nonce. When using such algorithms the require an unpredictable nonce. When using such algorithms the
packet counter value can be used to generate a nonce, saving 8 octets packet counter value can be used to generate a nonce, saving 8 octets
per packet. This document describes how to do this. per packet. This document describes how to do this.
skipping to change at page 7, line 25 skipping to change at page 7, line 25
Tobias Guggemos (editor) Tobias Guggemos (editor)
LMU Munich LMU Munich
Oettingenstr. 67 Oettingenstr. 67
80538 Munich, Bavaria 80538 Munich, Bavaria
Germany Germany
Email: guggemos@mnm-team.org Email: guggemos@mnm-team.org
URI: http://mnm-team.org/~guggemos URI: http://mnm-team.org/~guggemos
Yoav Nir Yoav Nir
Check Point Software Technologies Ltd. Dell EMC
5 Hasolelim st. 9 Andrei Sakharov St
Tel Aviv 6789735 Haifa 3190500
Israel Israel
Email: ynir.ietf@gmail.com Email: ynir.ietf@gmail.com
 End of changes. 3 change blocks. 
5 lines changed or deleted 5 lines changed or added

This html diff was produced by rfcdiff 1.45. The latest version is available from http://tools.ietf.org/tools/rfcdiff/