[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

AH is pretty useless and perhaps should be deprecated

Subject: AH is pretty useless and perhaps should be deprecated
From: owen at delong.com (Owen DeLong)
Date: Fri, 13 Nov 2009 16:49:40 -0800
In-reply-to: <[email protected]>
References: <[email protected]>

I've never seen anyone use AH vs. ESP.  I've always used ESP and so has
every other IPSEC implementation I've seen anyone do.

Owen

On Nov 13, 2009, at 4:22 PM, Jack Kohn wrote:

> Hi,
>
> Interesting discussion on the utility of Authentication Header (AH) in
> IPSecME WG.
>
> http://www.ietf.org/mail-archive/web/ipsec/current/msg05026.html
>
> Post explaining that AH even though protecting the source and
> destination IP addresses is really not good enough.
>
> http://www.ietf.org/mail-archive/web/ipsec/current/msg05056.html
>
> What do folks feel? Do they see themselves using AH in the future?
> IMO, ESP and WESP are good enough and we dont need to support AH any
> more ..
>
> Jack

Follow-Ups:
- AH is pretty useless and perhaps should be deprecated
  - From: kohn.jack at gmail.com (Jack Kohn)
- AH is pretty useless and perhaps should be deprecated
  - From: joelja at bogus.com (Joel Jaeggli)

References:
- AH is pretty useless and perhaps should be deprecated
  - From: kohn.jack at gmail.com (Jack Kohn)

Prev by Date: AH is pretty useless and perhaps should be deprecated
Next by Date: ESPN360 Access
Previous by thread: AH is pretty useless and perhaps should be deprecated
Next by thread: AH is pretty useless and perhaps should be deprecated
Index(es):
- Date
- Thread